(Figure 1) OpenID Certified logo
The US OpenID® Foundation announced on the 22nd local time,Announcing OpenID Connect Implementation Conformity Self-Certification ProgramBy submitting evidence to the OpenID Foundation that an implementation has passed the online test provided by the OpenID Foundation and declaring this, users will be able to use the OpenID Certified mark (Figure 1).
There are five types of tests currently being offered: OP Basic, OP Inplicit, OP Hybrid, OP Config, and OP Dynamic. As part of the first wave of tests, implementations from Google, Nomura Research Institute, ForgeRock, PayPal, and Microsoft have passed, as shown in the table below.
(Table 1) List of implementations that have passed the first OpenID Certification
| Company/organization | Implementation Name | OP Basic | OP Implicit | OP Hybrid | OP Config | OP Dynamic |
|---|---|---|---|---|---|---|
| ForgeRock | OpenAM 13 | 13-Apr-2015 | 13-Apr-2015 | 13-Apr-2015 | 13-Apr-2015 | |
| Google Federated Identity | 20-Apr-2015 | 21-Apr-2015 | 15-Apr-2015 | |||
| Microsoft | ADFS for Windows 10 | 7-Apr-2015 | ||||
| Microsoft | Azure Active Directory | 8-Apr-2015 | ||||
| Nomura Research Institute[1] | phpOIDC | 10-Apr-2015 | 10-Apr-2015 | 10-Apr-2015 | 10-Apr-2015 | 10-Apr-2015 |
| Nomura Research Institute (NRI SecureTechnologies) |
Uni-ID | 10-Apr-2015 | ||||
| PayPal | Login with PayPal | 15-Apr-2015 | ||||
| ping identity | PingFederate | 10-Apr-2015 | 10-Apr-2015 | 10-Apr-2015 | 9-Apr-2015 |
Through this program,Open ID ConnectBusinesses that implement OpenID Connect can declare that their implementation meets the OpenID Connect standard specifications. By participating in this certification program, interoperability between different implementations will be more assured.
The OpenID Certification Test Suite was developed as open source software in cooperation with Umeå University in Sweden and the EU GÉANT project with the aim of facilitating interoperability between systems involved in digital identity.
Open ID Connectis an open standard for identity technology that is secure, mobile-friendly, and privacy-conscious. Since the specification was finalized at RSA Conference 2014 last year, this specification has been adopted by many services such as Google Sign-in and Microsoft Azure AD. Now that it is possible to actually test the conformance of implementations, it is expected that interoperability will become easier.
This announcement only covers OpenID Provider implementations, but certification for Relying Parties is scheduled to begin in May 2015.
The results of these certifications were announced on the same day.OIXNetIt is registered and can be accessed from anywhere.
[1] This is an open source implementation developed as a joint research project between Nomura Research Institute and Umeå University as part of the Ministry of Internal Affairs and Communications’ FY24 Strategic International Collaborative R&D Promotion Project.
1 Response to "Implementations from Google, Microsoft, PayPal, Nomura Research Institute, and others pass OpenID Connect conformance test"