Draft OpenID Certification working group charter

Eric Sachs esachs at google.com
Mon May 10 17:14:53 UTC 2010


What follows is a draft charter for the OpenID Certification working group.
 Feedback is welcome, as are potential working group participants.  There is
also a draft of some specific certification check
lists<http://docs.google.com/View?id=ajkhp5hpp3tt_72gtng7zff> that
I hope will spawn feedback.


(a)  Charter.

(i) WG name:  OpenID Certification

(ii) Purpose:  Produce certification checklists for the use of OpenID in
different use-cases so that neutral certification bodies such as OIX can
validate IDPs against them as opposed to requiring each RP to individual
perform such an analysis of each potential IDP. Specific goals are:


   - Define the checklist for at least one use-case
      - Have at least one IDP certified against that checklist by a
      certification body
      - Have at least one RP who will dynamically support the published list
      of IDP(s) that have been certified

(iii) Scope:  Produce a list of certification use-cases, and checklists for
them.  We expect this work will identify the need for additional
enhancements to the technical standards, but in general this WG will not
directly develop those standards, but will coordinate with other OpenID WGs
to define the necessary standards.

 (iv) Proposed List of Use-Cases: The initial targeted use-cases are listed
below based on discussion<https://sites.google.com/site/oauthgoog/UXFedLogin/whitelisting>
from
the April 2010 OpenID Summit and a later draft
proposal<http://docs.google.com/View?id=ajkhp5hpp3tt_72gtng7zff>
.


   - Trused Email Profile
      - Email Validation Profile
      - Untrusted Email Profile
      - URL only Profile
      - Email Hosting Profile

(v) Anticipated audience or users of the work:  Implementers of OpenID
Providers, Relying Parties, and certification bodies.

(vi) Language in which the WG will conduct business:  English.
(vii) Method of work:  E-mail discussions on the working group mailing list,
working group conference calls, and face-to-face meetings at the Internet
Identity Workshop and OpenID summits.

 (viii) Basis for determining when the work of the WG is completed:  Work
will not be deemed to be complete until there is a consensus that the
resulting set of use-caess (and checklists) are sufficient to meet the
market needs for OpenID certification. Additional proposed use-cases behond
the initial list are expected.

(b)  Background Information.

(i) Related work being done in other WGs or organizations:  ICAM, InCommon,
Open Identity Exchange (OIX), Kantara

(ii) Proposers:

 Eric Sachs, esachs at google.com, Google (chair)
Allen Tom, atom at yahoo-inc.com

  Additional proposers to be added here

(iii) Anticipated Contributions:  None.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs/attachments/20100510/35266080/attachment.htm>


More information about the specs mailing list