[Openid-specs-mobile-profile] new revision of authentication draft

Axel.Nennker at telekom.de Axel.Nennker at telekom.de
Sun Nov 15 19:35:32 UTC 2015

I created a PR using BitBuckets Edit function, which includes some of the comments


From: Openid-specs-mobile-profile [mailto:openid-specs-mobile-profile-bounces at lists.openid.net] On Behalf Of Torsten Lodderstedt
Sent: Sonntag, 15. November 2015 19:37
To: Connotte, Jörg; openid-specs-mobile-profile at lists.openid.net
Subject: Re: [Openid-specs-mobile-profile] new revision of authentication draft

Hi Jörg,

thanks for producing the new revision. Here are my comments:

In my opinion, this section should focus on the intention of this spec - profile OIDC authentication to the needs of MNOs. I would suggest to move the iteration of the different features to the intro section.

Mobile Profile -> MODRNA Profile

Please remove lonely "T" after the MSISDN definition

§2 Overview
What's the difference between Intro and Overview? I personaly think §2 and §3 could be combined.


"The acr_values reflect the level of assurance as specified in ISO 29115 [ISO.29115]." Would it make sense to more explicitely refer to ISO 29115 for the actual definition of the LOAs?

"A urn is used to be able to register to IANA." please refer to respective registry.

What do you mean by "actual methodologies"? Are you refering to particular authentication methods?

Def of loa2 says "Some confidence in the asserted identifier.", whereas the intro of this sections states "Identity or claim assurance is not included in this specification." Which way are we pursuing for MODRNA?


"the users OpenID Provider" -> "the user's OpenID Provider"

I think the example contains one closing curly brace to much.


We should discuss in the group whether account chooser support goes to discovery or stays here. Independent of this discussion, I would suggest to remove it from the current revision as account choose is not in scope for delivery to GSMA.

I think acr_values is currently the onle mandatory feature of this spec.

>From my perspective, the big changes/extensions needed for delivery by end of Nov are:

- privacy and security considerations
- context parameter spec
- clean up of MTI section

best regards,
Am 13.11.2015 um 11:00 schrieb Connotte, Joerg:
Hi all,

you can find the new revision of the authentication draft under

Kind Regards
Jörg Connotte

Deutsche Telekom AG
Group Innovation+ / Products & Innovation
Jörg Connotte
Technology / Demand Management
T-Online-Allee 1, 64295 Darmstadt
+49 6151 680-7288 (Tel.)
+49 151 184-15517 (Mobil)
E-Mail: j.connotte at telekom.de<mailto:j.connotte at telekom.de>

Life is for sharing.

You can find the obligatory information on www.telekom.com/compulsory-statement<http://www.telekom.com/compulsory-statement>

Big changes start small - conserve resources by not printing every e-mail.


Openid-specs-mobile-profile mailing list

Openid-specs-mobile-profile at lists.openid.net<mailto:Openid-specs-mobile-profile at lists.openid.net>


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-mobile-profile/attachments/20151115/3a4d3629/attachment.html>

More information about the Openid-specs-mobile-profile mailing list