Gluu, a leading open source cloud identity provider saml, today unveiled its plan for multi-party federations based on OpenID Connect. Details of the proposed design have been published on the OpenID Wiki. This move reflects Gluu’s developmental roadmap for OpenID Connect, and is also a call to the OpenID developer community en masse for support on this important project.
“Currently, multi-party federations are only achievable via the SAML protocol,“ said Gluu CEO Michael Schwartz. “By designing multi-party federations in OpenID Connect, we are hoping to make it easier for organizations, websites, and applications to provide a simpler cloud identity experience to business people, developers and end users. We need both tools and rules to enable privacy and security on the internet, and this proposed enhancement to the OpenID Connect standard will be an important tool for the Internet community.”
InCommon is a good example of SAML multi-party federations in the higher education sector. When a University joins InCommon, they agree to operating policies, procedures, and schema that allows them to establish single sign-on with resource providers that have also agreed to certain level of privacy and trust. This simplifies the process of establishing trust with multiple entities by eliminating the need to structure individual SSO agreements one by one.
Gluu’s goal is to make managing trust with clients easier for organizations, and publishing numerous active directory single sign on endpoints easier for resource providers. Much of the conceptualization and design for this has been completed, and Gluu expects to implement active directory single sign on in its open source OpenID Connect platform, OX, by the end of 2012.
Gluu is an Austin, TX start up that provides open source and on demand cloud identity and trust management. Gluu leverages standards such as OpenID Connect, SAML 2.0, and SCIM to make achieving single sign-on (SSO) secure and easy. Deployed quickly on public and private cloud servers, Gluu’s cloud identity platform helps organizations addresses the installation and operational issues of an organizational identity provider at a predictable annual cost.