Security
Identity Management Framework Released
Today, Ericsson Labs is launching the Identity Management Framework API.
It can:
• Provide easy sign-in and sign-up functionalities on websites for mobile phone users
• Increase registration and conversion rates
• Access rich user profile data
• Reduce customer care costs
Using the OpenID protocol and GBA-based authentication, the framework provides a secure and simple way to enable user registration and sign-in for your website. All that is needed is to define the identity attributes you wish to receive, the authentication method and the framework does the rest.
Why the Identity Management Framework?
In a recent Social Identity study conducted by Blue Research and released by Janrain in February 2011, 75% of consumers surveyed said that they are bothered by website registrations. The majority of them said they are likely to leave/avoid a website or give false information when required to register. In addition, when login information is forgotten, 45% admit leaving the website instead of recovering their passwords. On the other hand, 66% of respondents considered the ability to sign-in to a website using an existing online identity to be attractive.
The Identity Management Framework tackles this issue, providing sign-up and sign-in functionalities on websites. Using the Identity Management Framework API, developers can enable OpenID on their websites with a few simple steps and can increase registration and conversion rates, access rich user profile data, and reduce customer care costs. In short, the website developer selects the identity attributes the site wishes to receive (such as full name, email and phone), as well as the authentication method (username/password or GBA-based card) for the users, and leaves everything else to the framework.
Technology behind the Identity Management Framework
The framework functionalities are based on two main technologies: OpenID and Generic Bootstrapping Architecture (GBA). OpenID is a standardized protocol for identity management and single sign-on, adopted widely all over the Internet. The GBA standard is the upcoming technology for mutual authentication using Mobile Network Operators' infrastructure, thus allowing mobile users to access secured services in a much easier manner, simply by using their mobile phones.
Click here to learn more about the Identity Management Framework. Feedback welcome!
Comments
Heather,
Hi, I am trying to use my newly issued Labs Identity Management Server OpenID to authenticate to another OpenID-enabled website and I get a "Could not find OpenID server for [https://idm.labs.ericsson.net/portal/id/dwoolfe]." error message. Is this the correct format for my new Labs Identity Management Server OpenID?
Thanks.
dave
Hi Dave
You can use either "https://idm.labs.ericsson.net/portal/id/dwoolfe" or simply "idm.labs.ericsson.net" as the OpenID identifier on any enabled website.
I have just tested https://idm.labs.ericsson.net/portal/id/[myuser] on some sites and it worked as expected. Maybe there is a issue with the website you tried, I have seem some sites that do not implement the relying part thoroughly. Which website you have been trying?
Bests,
Rony
Rony,
Hello, the site I am trying to authenticate to is www.claimid.com. This site seem to support the full OpenId 2.0 spec. I will let them know that this is not working to see what they have to say.
Thanks.
dave