[Openid-specs-ab] OpenID Connect for Identity Proofing (Proposal)

Torsten Lodderstedt torsten at lodderstedt.net
Sat Feb 9 12:41:31 UTC 2019

Hi all,

please find attached a document specifying an OpenID Connect Extension for the purpose of strong Identity Proofing. On behalf of yes.com, I would be delighted to contribute this document to the AB/Connect Working Group.

Background: At IIW I held a session about Identity Proofing with OpenID Connect to get a feeling regarding the communities appetite to standardize an OpenID Extension for this important but also challenging topic. The feedback was tremendous so I started to work on this specification. It is based on yes.com’s experience with strong identity attestation in highly regulated contexts in the European Union, mainly in Germany. For example, it will be used to attest user identities in the context of creating Qualified (Remote) Electronic Signature according to eIDAS. This kind of signature is legally equivalent to a traditional (wet) signature on paper. 

The approach taken is focused on fulfilling the business requirements for natural person identification in the EU. So my assumption (and hope) is we together as a WG will refine and enhance the concept to cover the requirements of jurisdictions around the world. I look forward to having productive discussions.

best regards,

-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenID Connect for Identity Proofing_20190209.pdf
Type: application/pdf
Size: 164157 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20190209/3d899ec4/attachment-0001.pdf>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3923 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20190209/3d899ec4/attachment-0001.p7s>

More information about the Openid-specs-ab mailing list