Auth0

Identity, Unlocked is the podcast that discusses identity specs and trends from a developer perspective. Identity, Unlocked is powered by Auth0. In this episode, we focus on the Global Assured Identity Network, abbreviated GAIN, a proposal from 150 identity experts that was presented inform of white paper at the European Identity Conference in Munich. Today, we are chatting with two of those 150 authors, Nat Sakimura, chairman of the OpenID Foundation, and we welcome a returning guest, Torsten Lodderstedt, CTO of yes.com.

Dr.-Ing. Torsten Lodderstedt is CTO of yes.com, a startup building an open banking scheme. Before joining yes.com, he served for a decade in different roles at Deutsche Telekom’s identity team, building and operating large-scale consumer identity services. In his previous positions as a consultant and IT architect, he helped customers in several domains (public, banking, railway communication, telecommunication) to implement highly scalable and secure applications. Torsten Lodderstedt received his Ph.D in computer science from Albert-Ludwigs University in Freiburg. 

Torsten regularly contributes to OAuth & OpenID. He is the editor of the OAuth 2.0 Security Best Current Practice and the OpenID Connect for Identity Assurance draft, contributes to OpenID Foundation's FAPI working group, and helps API standardization initiatives, especially in the open banking space, to effectively use OAuth.

Torsten Lodderstedt 

CTO, yes.com

Nat Sakimura

Chairman, OpenID Foundation

Identity, Unlocked is the podcast that discusses identity specs and trends from a developer perspective. Identity, Unlocked is powered by Auth0. In this episode, we focus on the Global Assured Identity Network, abbreviated GAIN, a proposal from 150 identity experts that was presented inform of white paper at the European Identity Conference in Munich.  Today, we are chatting with two of those 150 authors, Nat Sakimura, chairman of the OpenID Foundation, and we welcome a returning guest, Torsten Lodderstedt, CTO of yes.com.


Global Assured Identity Network (GAIN) with Nat Sakimura and Torsten Lodderstedt

Global Assured Identity Network (GAIN) with Nat and Torsten

In this episode, we focus on the Global Assured Identity Network, abbreviated GAIN, a proposal from 150 identity experts that was presented inform of white paper at the European Identity Conference in Munich.  Today, we are chatting with two of those 150 authors, Nat Sakimura, chairman of the OpenID Foundation, and we welcome a returning guest, Torsten Lodderstedt, CTO of yes.com.


In this episode, Dr. Daniel Fett, expert cryptographer, returns to the show to discuss the landscape of privacy-preserving measures (such as selective disclosure, zero-knowledge proofs or ZKP, etc.) that are emerging to augment existing technologies and enable new scenarios. The discussion gets very concrete when Daniel describes selective disclosure JWT, or SD-JWT, a new IETF specification he is coauthoring that offers a simple and easy-to-adopt approach to produce JWTs capable of supporting selective disclosure. Here at Identity, Unlocked, we are huge fans of this new specification, and we hope this episode will help you get started!

Daniel Fett is a security specialist at yes.com where he works on the yes® open banking ecosystem based on OAuth and OpenID Connect. Before that, he received a Ph.D. in Computer Science from the University of Stuttgart, Germany. During his research, he developed new methods to formally analyze the security of web applications and standards. He used these formal methods to find new attack vectors on OAuth, OpenID Connect, and other federated authentication/authorization systems. Daniel is a co-author of the upcoming OAuth Security Best Current Practices RFC, of OpenID Connect for Identity Assurance, and FAPI 2.0.

Daniel Fett

Security Specialist

In this episode, Dr. Daniel Fett, expert cryptographer, returns to the show to discuss the landscape of privacy-preserving measures (such as selective disclosure, zero-knowledge proofs or ZKP, etc.) that are emerging to augment existing technologies and enable new scenarios. The discussion gets very concrete when Daniel describes selective disclosure JWT, or SD-JWT, a new IETF specification he is coauthoring that offers a simple and easy-to-adopt approach to produce JWTs capable of supporting selective disclosure. Here at Identity, Unlocked, we are huge fans of this new specification, and we hope this episode will help you get started!


Daniel Fett on privacy-preserving measures and SD-JWT

Privacy-preserving measures and SD-JWT with Daniel Fett

In this episode, Prateek, Paul, and Joni bring us back to a time in which single sign-on across domains on the web was a brand new problem. With the confidence (and the passion!) of the people who were there and made things happen, the guests take Vittorio and the listeners on a whirlwind tour touching on the technical and political challenges they had to overcome to bring SAML to life and make it the ubiquitous success it is today. From the basics of how the SAML protocol works to the entities and standard bodies that developed it, the discussion eventually reaches modern times and concludes on how in a world where old and new standards coexist, OpenID Connect picked up the innovation torch from SAML.

Paul Madsen works on Sustainability & Identity projects at the HBAR Foundation - the grant funding arm for the public Hedera DLT

Paul Madsen

Head of Identity, HBAR Foundation

Prateek Mishra leads the security team in the Infrastructure Dept at ADP. His team architects and builds security services strategic to ADP and implemented across the enterprise. He has previously helped architect and build security and identity systems at Oracle Corporation. He is an active member of the Application Security (OWASP) and Open Source Security communities (openSSF.org). He is an originator of  the SAML standard - Editor of the SAML 1.0 and SAML 1.1 specifications and organizer of the SAML 1.0 interoperability demonstrations.  Subsequently,  he was OASIS SAML 2.0 Committee Co-Chair and Editor of the SAML 2.0 Conformance Specification. He holds a Ph.D. in Computer Science from the University of Utah. 

Prateek Mishra

Senior Director, Security Services and Architecture, ADP

Joni Brennan is President of the Digital ID & Authentication Council of Canada (DIACC).
Building on 15+ years of experience in Identity Access Management innovation, adoption, and
industry standards development, Joni helps the DIACC to fulfill its vision delivering the
resources needed to establish a digital identity ecosystem that accelerates the digital
economy, grows Canada's GDP and benefits all Canadians. Joni builds diplomatic and
impactful relationships and formalizes strategic partnerships. She has participated in
influential committees from organizations including: SCC Data Governance Initiative, OECD
ITAC, ISOC, IEEE, OASIS, ISO, and ITU-T.

Joni Brennan

President, Digital ID & Authentication Council of Canada (DIACC)

In this episode, Prateek, Paul, and Joni bring us back to a time in which single sign-on across domains on the web was a brand new problem. With the confidence (and the passion!) of the people who were there and made things happen, the guests take Vittorio and the listeners on a whirlwind tour touching on the technical and political challenges they had to overcome to bring SAML to life and make it the ubiquitous success it is today. From the basics of how the SAML protocol works to the entities and standard bodies that developed it, the discussion eventually reaches modern times and concludes on how in a world where old and new standards coexist, OpenID Connect picked up the innovation torch from SAML.


SAML with Joni Brennan, Paul Madsen and Prateek Mishra

On the second episode of the 4th season of Identity Unlocked, host Vittorio Bertocci, Principal Architect at Auth0, is joined by Stuart Kwan, Partner Product Manager in the Azure Active Directory team. He joins the show to discuss Windows CardSpace,&nbsp;how it ignited the user centric identity revolution and how it influenced so much of what we do today, despite failing to be adopted. Like this episode? Be sure to leave a five-star review and share Identity, Unlocked with your community! You can connect with Vittorio on Twitter at @vibronet, Stuart at @stuartkwan, and Auth0 at @auth0.

Stuart Kwan is a Partner Product Manager in the Azure Active Directory team.  He has worked on wide variety of identity-related distributed system technologies since joining Microsoft in 1996, including Active Directory, Active Directory Federation Services (ADFS), Azure Active Directory, Managed Identity for Azure Resources, Windows Identity Foundation, and the Microsoft Authentication Library (MSAL).  Stuart has participated in the development of several standards specifications, and was the lead author of the RFC 3645 secure DNS update protocol.  His current focus area is identity and access management for the Microsoft Azure cloud.  Stuart graduated from the University of Waterloo in Waterloo, Ontario with a Bachelor’s of Applied Science in Computer Engineering.  He lives in Redmond with his wife and two children.  In his spare time he enjoys reading, playing basketball and flag football, and he is an avid follower of the automotive and aerospace industries.

Stuart Kwan

Partner Product Manager, Identity and Network Access Division, Microsoft

On the second episode of the 4th season of Identity Unlocked, host Vittorio Bertocci, Principal Architect at Auth0, is joined by Stuart Kwan, Partner Product Manager in the Azure Active Directory team. He joins the show to discuss Windows CardSpace, how it ignited the user centric identity revolution and how it influenced so much of what we do today, despite failing to be adopted. Like this episode? Be sure to leave a five-star review and share Identity, Unlocked with your community! You can connect with Vittorio on Twitter at @vibronet, Stuart at @stuartkwan, and Auth0 at @auth0.


Windows CardSpace with Stuart Kwan

On the first episode of the 4th season of Identity Unlocked, host Vittorio Bertocci, Principal Architect at Auth0, is joined by Andrew Shikiar, Executive Director &amp; CMO, FIDO Alliance, and Tim Cappalli, Digital Identity Standards Architect at Microsoft. Vittorio, Andrew and Tim discuss the new FIDO multi device credentials, commonly known as passkey,&nbsp;a new FIDO feature that are an alternative to passwords in consumer grade applications.

Tim Cappalli works on identity standards in Microsoft's Identity Division. He focuses on strong authentication, wallet interactions, security event sharing, ecosystem privacy changes, zero trust, and network identity.

Tim Cappalli

Identity Standards Architect, Microsoft

Andrew Shikiar is Executive Director and Chief Marketing Officer at FIDO Alliance, a global consortium working to create open standards and an interoperable ecosystem for simpler, stronger user authentication. He has deep experience in multi-stakeholder organizations, having previously led market development efforts for Tizen Association, LiMo Foundation and Liberty Alliance Project – and also helped structure and launch groups such as the Smart TV Alliance and Open Visual Communications Consortia.

Andrew Shikiar

Executive Director & CMO, FIDO Alliance

On the first episode of the 4th season of Identity Unlocked, host Vittorio Bertocci, Principal Architect at Auth0, is joined by Andrew Shikiar and Tim Cappalli. They join the show to discuss FIDO Multi Device Credentials an upcoming FIDO feature that are an alternative to passwords in consumer grade applications. Like this episode? Be sure to leave a five-star review and share Identity, Unlocked with your community! You can connect with Vittorio on Twitter at @vibronet, Andrew at @andrewshikiar, Tim at @timcappalli, or Auth0 at @auth0.


FIDO Multi Device Credentials with Andrew Shikiar and Tim Cappalli

On the first episode of the 4th season of Identity Unlocked, host Vittorio Bertocci, Principal Architect at Auth0, is joined by Andrew Shikiar and Tim Cappalli. They join the show to discuss FIDO Multi Device Credentials an upcoming FIDO feature that are an alternative to passwords in consumer grade applications.


In this episode, we discussed the mobile driving license, an ISO standard that has the potential to have a direct impact on the daily life of everyone. And to do that, I enlisted my old friend Andrew Hughes, director of Identity Standards and Pink Identity historical figure in the identity industry

Andrew Hughes CISM CISSP is a digital identity strategist contributing to international standards development. He works with international associations and standards bodies as a domain expert, developing standards and related conformity assessment materials. Andrew serves on the Board of Directors of Kantara Initiative, and as the Chair of the Kantara Leadership Council. As a national expert delegate for Standards Canada on digital identity, he contributes to development of international standards at ISO SC 27 for identity management and ISO SC 17 for mobile driving licenses and mobile eID. Andrew is currently investigating how the worlds of Government Issued Photo ID can co-exist with the emerging Verifiable Credentials models, in a mobile-first manner.

Andrew Hughes

Director - Identity Standards

In this episode, we discussed the mobile driving license, an ISO standard that has the potential to have a direct impact on the daily life of everyone. And to do that, I enlisted my old friend Andrew Hughes, director of Identity Standards and Pink Identity historical figure in the identity industry


The Mobile Driving License Spec with Andrew Hughes

Michael B. Jones is a Standards Architect at Microsoft. He is an editor of the OpenID Connect specifications, several IETF OAuth specifications, including JSON Web Token (JWT), the IETF JOSE (JSON cryptography) and Security Events specifications, the FIDO 2.0 specification, and W3C Web Authentication.  He is a contributor to the W3C Decentralized Identifiers (DID) specification.  He was a creator and is a leader of the OpenID Certification program.  He is board secretary of the OpenID Foundation. He has been working to advance the cause of simple, secure, ubiquitous, interoperable digital identity since 2005.  Michael earned his Ph.D. in Computer Science from Carnegie Mellon University in 1992. His interests include digital identity, computer security, privacy, distributed systems, networking, operating systems, musical performance, outdoor activities, and his fellow human beings. He blogs at https://self-issued.info/ and tweets at @selfissued.

Mike Jones

Identity Standards Architect

OpenID Connect with Mike Jones

OpenIDconnect with Mike Jones

Listen on Apple Podcasts

Blog

Visit Auth0

In Partnership with OpenID Foundation and IDPro This is Identity, Unlocked with host Vittorio Bertocci. Identity, Unlocked is the podcast that discusses identity specs and trends from a developer perspective. Identity, Unlocked is powered by Auth0. Vittorio Bertocci is Principal Architect at Auth0 and applies his vast knowledge of the identity industry to Auth0 in all aspects of the company, including internal and external education, product innovation, and customer integration. Prior to Auth0, Bertocci spent 17 years at Microsoft, where he worked on the Azure Active Directory team and focused largely on improving the developer experience. As a published author of four identity books and a highly-trafficked blog: cloudidentity.com, his forward-thinking commentary has enabled him to speak at conferences, such as Identiverse, BUILD, PDC, TechEd, Cloud Identity Summit, and many other industry events around the world.

Global Assured Identity Network (GAIN) with Nat Sakimura and Torsten Lodderstedt

DESCRIPTION

Today's Host

Vittorio Bertocci

Today's Guests

Torsten Lodderstedt

Nat Sakimura

Recent Episodes