OpenID in domain registry CZ.NIC - http://www.nic.cz Ondrej Filip / ondrej.filip @nic.cz Dec 8 2010, Cartagena, Colombia ccNSO Meeting 1
Everybody experienced this ... 2
3
N O I T A S R S T A S I P G / E E M R A N U . 1 4
S S A P / E M A N U . 2 5
N O I T A S R S T A S I P G / E E M R A N U . 3 6
N O I T A S R S T A S I P G / E E M R A N U . 4 7
R E H N T O O I N T A A R S T S S A I G P E / E R M A N U 8
Annoying :( Always same data And what if something changes? 9
Regular internet usage ... A lot of usernames/passwords We forget Obstructions :( 10
Password usage Number of passwords used by users 25% 39% 14% 22% 1 password 2 passwords 3 passwords 4 or more 11
Password usage Common password storage (% users) 25 Mobile phone memory 21 Locked drawer 13 Wallet 12 Board or other visible place 10 Monitor stickie 8 Special file on hard drive 5 Saved in application 5 Other 12
We all know these, right? First name Last name Organization Address - Street Address - City Address – ZIP code Address – Country Email Phone Fax ID number Passpord number VAT ID Birth date Password 13
Open standard Decentralized authentication Digital identities consolidation Safe, faster, and easier way to log in to web sites 14
How OpenID works? End user Service provider Web page 2. Opens web page 4b. Data 1. Creates 3. Forwarded to transfer identity login 4a. Forwarded back CZ.NIC Login Registration page page 15 Identity database
(means myID in English) One username, one password, one identity .cz domain registry + OpenID Extra features and benefits – validation levels 16 Launched October 26, 2010!
mojeID ● Two levels of end users – Identified – phone, e-mail and postal address verified – Validated – physical ID check (Identified + name, address, age) ● Two levels of service providers – Free – no contract, nor personal data by default (but user can change it!), no information about user validation – Contract – many personal data by default (but user can change it!), information about user validation 17
Why registry ● More OpenID providers – Lack of trust by end users and service providers – No validation (user can have multiple identities) ● CZ.NIC – Neutral body – Infrastructure provider – no end user services – No commercial interest in collected data – Trusted by community – Resources to validate 18
Advantages ● End user – Single login/password, no registration – Control over personal data – Data updating ● Service provider – Data updating – No more multiple identities (account blocking) ● CZ.NIC – Up-to-date database 19 ● New services requiring validated identity
Live demo ... 20
One month ● About 3 500 users ● About 100 Czech sites supporting mojeID/OpenID (and many international) ● About 2000 e-shops announced support before the end of the year ● Negotiation with some larger service providers about services requiring validated users – brand new services 21
Thank you for your attention MojeID – One username, one password, one identity Ondřej Filip ondrej.filip@nic.cz 22
Recommend
More recommend