<div dir="ltr"><div><div>Mike's message was stuck in my spam folder so I didn't see this until Phil just responded. I realize it's too late now but looks good to me also. <br><br></div>I think I've updated my filters so I'll see all the messages on this list going forward. <br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Aug 3, 2016 at 9:19 PM, Phil Hunt (IDM) <span dir="ltr"><<a href="mailto:phil.hunt@oracle.com" target="_blank">phil.hunt@oracle.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="auto"><div>Looks good. <br><br>Phil</div><div><div class="h5"><div><br>On Aug 3, 2016, at 7:02 PM, Mike Jones <<a href="mailto:Michael.Jones@microsoft.com" target="_blank">Michael.Jones@microsoft.com</a>> wrote:<br><br></div><blockquote type="cite"><div>
<div>
<p class="MsoNormal">Please let me know if you’d like to see any changes to this. Otherwise I’ll plan to post it sometime tomorrow.<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal"> <wbr> -- Mike<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal"><b>Initial OpenID Connect Enhanced Authentication Profile (EAP) Specifications<u></u><u></u></b></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal">The OpenID <a href="http://openid.net/wg/eap/" target="_blank">Enhanced Authentication Profile (EAP)</a> working group
<a href="http://openid.net/wordpress-content/uploads/2016/03/Enhanced_Authentication_Profile_for_OpenID-Connect_Charter.pdf" target="_blank">
charter</a> states that:<u></u><u></u></p>
<p class="MsoNormal" style="margin-left:.5in">The purpose of this working group is to develop a security and privacy profile of the OpenID Connect specifications that enable users to authenticate to OpenID Providers using strong authentication specifications.
The resulting profile will enable use of IETF Token Binding specifications with OpenID Connect and integration with FIDO relying parties and/or other strong authentication technologies.<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal">I’m pleased to announce that two new draft OpenID specifications have been adopted by the EAP working group to meet those two goals:<u></u><u></u></p>
<p><span style="font-family:Symbol"><span>·<span style="font:7.0pt "Times New Roman"">
</span></span></span><a href="http://openid.net/specs/openid-connect-token-bound-authentication-1_0.html" target="_blank">OpenID Connect Token Bound Authentication 1.0</a> – Defines how to apply Token Binding to OpenID Connect ID Tokens<u></u><u></u></p>
<p><span style="font-family:Symbol"><span>·<span style="font:7.0pt "Times New Roman"">
</span></span></span><a href="http://openid.net/specs/openid-connect-eap-acr-values-1_0.html" target="_blank">OpenID Connect EAP ACR Values 1.0</a> – Enables OpenID Connect RPs to request that specific authentication context classes be applied to authentications
performed and for OPs to inform RPs whether these requests were satisfied<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal">Please give them a read, and give your feedback to the <a href="http://openid.net/wg/eap/" target="_blank">
working group</a>. Or even better yet, implement them (they’re both very straightforward) and send us your feedback!<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
</div>
</div></blockquote></div></div><blockquote type="cite"><div><span>______________________________<wbr>_________________</span><br><span>Openid-specs-eap mailing list</span><br><span><a href="mailto:Openid-specs-eap@lists.openid.net" target="_blank">Openid-specs-eap@lists.openid.<wbr>net</a></span><br><span><a href="http://lists.openid.net/mailman/listinfo/openid-specs-eap" target="_blank">http://lists.openid.net/<wbr>mailman/listinfo/openid-specs-<wbr>eap</a></span><br></div></blockquote></div><br>______________________________<wbr>_________________<br>
Openid-specs-eap mailing list<br>
<a href="mailto:Openid-specs-eap@lists.openid.net">Openid-specs-eap@lists.openid.<wbr>net</a><br>
<a href="http://lists.openid.net/mailman/listinfo/openid-specs-eap" rel="noreferrer" target="_blank">http://lists.openid.net/<wbr>mailman/listinfo/openid-specs-<wbr>eap</a><br>
<br></blockquote></div><br></div>