OpenID Blog

Archive version

Dezember 3rd, 2008

Press Release

AXSionics goes OpenID. The AXSionics InternetPassport combined with OpenID is now available for everyone for free in cooperation with Clavid AG.

In August 2008 the test phase was launched. Now the Clavid service is fully functional and can be used by everone as part of AXSionics public-servicestrategy. By integrating the AXSionics Internet Passport and OpenID, Clavid provides a Single Sign-On system (SSO) based on biometric user data. The services offers the greatest possible security for user identification for all OpenID-supported web services on the Internet.

OpenID nutshell: Today, internet web services are used daily with different user IDs and passwords. Therefore, user’s have often difficulties to remember the variety of IDs and passwords used. As a result, some web services are used only rarely. OpenID eliminates the need for multiple usernames and passwords across different websites, simplifying the online experience through its open specification. In addition it can integrate e.g. the AXSionics Internet Passport easily.

The OpenID Europe Foundation(OIDE) was created in Brussels on June, 2007, to help, promote, protect and enable the OpenID framework in Europe, by participating actively in its development and by facilitating its adoption by the European users and European services. OIDE is a Nonprofit Organization (AISBL) established under the law of Belgium. OIDE is open to all European Companies interested by the development of OpenID. The Association OpenID Switzerland www.openid.ch is an official „Local Chapter“ of OIDE and is in its start-up phase at the moment.

The Clavid AG www.clavid.ch offers professional IT security solutions and is operating since November 2007 the first Internet Identity Provider in Switzerland. In close cooperation with AXSionics and based on SAML as well as OpenID, Clavid offers access to thousands of web services through biometric fingerprint user identification.

For any further question please do not hesitate to contact Alain Rollier (alain.rollier @ axsionics.ch) or Mobile +41 79 693 3236…

AXSionics was founded in 2003 as a Spin-off from the Berne University of Applied Sciences, department of engineering and informatics in Biel/Bienne. The company develops and maintains an IT-security-infrastructure, that allows companies independently from each other to verify identifications and transactions within the world-wide-web in a very simple, easy-to-use and economical way – with just one single card – the AXS-card. The card at the same time protects the user’s privacy, as the biometric data remains exclusively on the card itself and therefore under the users’ control. AXSionics was a finalist of the TV-Show “Start-up” on Swiss National TV SF1 in Spring 2007, winner of Swiss Technology Award 2007 and winner of the Swiss ICT Award 2008. The IT-high-tech company has created around 30 jobs and succeed in managing its first capital increase with around CHF 10 Mio in additional funds in summer 2008.

November 19th, 2008

Many users are already equipped with client-side SSL certificates. Such client-side certificates might be provided by an employer, by the government or a user bought a SSL client certificate from an issuer or a user might even have created a own, self-signed client certificate.

Users of the Clavid OpenID provider can now add their existing client-side SSL certificates to their Clavid Account and use it to access all OpenID enabled services. A user can even add multiple certificates (e.g. one from the employer, one from the government and a private one) to one single account and combine all these certificates in one OpenID.

This is an important step in user-centric, strong OpenID authentication giving the users free choice of their issuer of client-side SSL certificates.

Oktober 30th, 2008

On Wednesday Google formally announced its support as a provider for the OpenID 2.0 protocol, offering some site owners a way to let users log-in and register for new accounts using existing Google account information. More importantly, Google will be letting these same users manage all their linked account information in one central location.

This new log-in offering is not available to all site owners just yet. Google has set up a sign-up form where developers can apply with their URL and OpenID identification to get access. Plaxo and Zoho are two of the first sites to already have the new system in place, with Zoho having offered a similar option since mid-April.

As many have already noted this isn’t OpenID proper. Microsoft’s usage of OpenID, announced on Tuesday at PDC, will let users simply drop in their special OpenID URL as their identifier, forsaking the need for a Google account. Google’s foray into this is strictly as a provider, adding extra value for those who register for a Google account, while keeping users with OpenIDs from other providers out.

Google’s OpenID implementation doesn’t just give sites your OpenID identifier, instead it acts as a bit of a middleman, authorizing you through it before it hands it over.

(Credit: Google Inc.)

OpenID enthusiasts shouldn’t fret though. Just because Google isn’t opening up its own sites to OpenID log-ins from others doesn’t mean it’s not around the corner. Google’s Eric Sachs notes that the company is working to try and combine OpenID and identity management service OAuth, which means there’s still work to be done on the personal information front. Google is unlikely to jump into being a service provider for OpenID until this is squared away.

More information: http://code.google.com/intl/de-DE/apis/accounts/docs/OpenID.html , analysed and aggregated by testroom.de.