Security Podcast

OpenID Connect und SSO

Ausweise im Netz

December 21, 2020

OpenID Connect und SSO werden oft in einem Atemzug genannt. Doch was ist OpenID Connect eigentlich genau? Ein Framework, ein Protokoll oder ein Produkt? Und welche Verbindung gibt es mit OAuth2? Darüber, und wie OpenID Connect im Rahmen von SSO-Verfahren funktioniert, sprechen Christoph Iserlohn, Simon Kölsch und Stefan Bodewig in dieser Folge.

Listen to other episodes

Shownotes & Links

Die OpenID Connect Homepage
Die Core-Spec
Discovery und Dynamic Client Registration
Session Management, Front-Channel Logout, Back-Channel Logout
JOSE, JWT, JWS, JWE und JWK
Identity Management und SSO

Feedback

Falls ihr Fragen oder Anregungen habt, schreibt uns gerne eine E-Mail an [email protected].

TAGS

Christoph Iserlohn Senior Consultant

Christoph Iserlohn is a senior consultant at INNOQ. He has many years of experience in the development and architecture of distributed systems. His main focus is on the topics of scalability, availability, and security.

Simon Kölsch Alumnus

Simon Kölsch worked as a Information Security Officer at INNOQ.

Stefan Bodewig Senior Consultant

Stefan Bodewig works as a Senior Consultant at INNOQ. Stefan became involved with the Apache Software Foundation in 2000 when he started to send patches for Apache Ant. He was the first release manager of Ant and still regularly contributes to it. He is a member of the ASF, the PMC chairman of Apache Gump and can also be found in the Commons, log4net and Lucene.NET projects. During the incubation of Ivy and Lucene.NET Stefan acted as one of the projects' mentors.