[OpenID-Specs-eKYC-IDA] revision -11 - feedback
Francis Pouatcha
fpo at adorsys.de
Fri Jul 10 23:11:41 UTC 2020
Just read through revision-11:
9. Transaction-specific Purpose: purpose as key instead of free text
For I18N and injection prevention, it might be meaningful to work with a
predefined list of purpose keys instead of free text fields.
11. Security Consideration: OP PoP for external claims
In order to prevent replay of external claims, external claims source shall
add OP PoP (public) key to the signed external claim and OP therefore must
prove possession of external claim to RP.
On Mon, Jul 6, 2020 at 12:33 PM Torsten Lodderstedt via
Openid-specs-ekyc-ida <openid-specs-ekyc-ida at lists.openid.net> wrote:
> Hi all,
>
> I just published revision -11.
>
> It can be accessed via
> https://openid.net/specs/openid-connect-4-identity-assurance-1_0.html or
> https://openid.net/specs/openid-connect-4-identity-assurance-1_0-11.html.
>
> Changes:
>
> * Added support for requesting different sets of claims with different
> requirements regarding trust_framework and other verification elements
> (e.g. evidence)
> * Added msisdn claim
> * Clarified scope of this specification
>
> Thanks to all contributors!
>
> best regards,
> Torsten. --
> Openid-specs-ekyc-ida mailing list
> Openid-specs-ekyc-ida at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-ekyc-ida
>
--
Francis Pouatcha
Co-Founder and Technical Lead
adorsys GmbH & Co. KG
https://adorsys-platform.de/solutions/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ekyc-ida/attachments/20200710/73025186/attachment.html>
More information about the Openid-specs-ekyc-ida
mailing list