- Tech know how online


OpenID is a security protocol for web services that supports single sign-on( SSO) for authentication and identity management. OpenID is used to uniquely authenticate an individual. With this one-time identity, the end user can use the services of a wide variety of websites. The authentication mechanism of OpenID differs significantly from that of Open Authentication( OAuth), where others can use an end user's access permissions without sharing the end user's identity.

The OpenID protocol is decentralized and uses an Internet address( URL) for identity determination. This can take the form: This means that the identification data of the end user, the End User, only needs to be stored centrally by a single OpenID provider. The URL identity can be used when logging into different websites. The website, referred to as the Relying Party in this constellation, accepts the End User's authentication, which it has the OpenID provider confirm.

With OpenID, in principle the user login is redirected from the web service, the Relying Party, to the OpenID provider. The end user submits the URL identity to the Relying Party when logging in. From the URL identity, the Relying Party extracts the OpenID provider and enters into a connection with it. The subsequent indirect communication takes place only between the Relying Party (web service) and the OpenID provider. In response to the Relying Party's authentication request, the OpenID provider establishes a connection to the End User, who logs in to the OpenIP provider. Then the OpenIP provider delivers the authentication result to the Relying Party, which verifies the result and authenticates the end user so that he can access the web service.

Englisch: OpenID
Updated at: 18.11.2009
#Words: 272
Links: security protocol, single sign on (SSO), authentication, identity management (IM), end user (EU)
Translations: DE

All rights reserved DATACOM Buchverlag GmbH © 2024