Rumors are swirling that OpenID is working on a new standard called OpenID Connect that will be built on top of OAuth. This would allow a single handshake for both identification and data transfer.

OAuth 2.0 and OpenID Connect: The Professional Guide Authentication and authorization are critical parts of any application. They evolved over the years to meet the challenging requirements of the ...

OpenID Connect builds on the foundation of open identity and security standards like OAuth 2.0 and TLS – also known as SSL or “https.” As a result, it has the advantage of being easier for developers ...

Unlike previous versions of the OpenID Foundation’s login standards, OpenID Connect uses OAuth in addition to using the secure SSL connections.

OpenID Connect is described as a "widely-adopted identity protocol built on OAuth 2.0 that enables third-party login to applications." The Foundation that develops it includes the likes of Google ...

Is it reasonable to think that a webapplication that performs standard OIDC login (using an Identity service) should be able to * either get multiple access tokens for multiple audiences * or one ...

A serious vulnerability in both the OAuth and OpenID protocols could lead to complications for those who use the services to login to websites like Facebook, Google, LinkedIn, Yahoo, Microsoft ...

Today, Google and Plaxo released a hybrid protocol that combines OpenID, the open online identity standard, with OAuth, the secure data portability standard. Too often, when a Website wants to ...