https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24798#M1475 <P>It's always been a beef of mine that Apple has thumbed their noses at standards that would guarantee the image of their forward thinking about authentication and the integration of modern MFA options.&nbsp; I love their products. Just not happy with this shortsightedness.&nbsp;</P> Mon, 08 Jul 2019 18:23:41 GMT Flyslinger2 2019-07-08T18:23:41Z https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24791#M1474 <P>When Apple announced their forthcoming iOS 13 "<EM>Sign In with Apple</EM>" service the public rejoiced! Security guaranteed! Privacy preserved!&nbsp;Now, the <U>technical implementation details</U> are coming out we see what a disaster it is in the making. I'm glad to see my friends over at the OpenID Foundation have taken deep technical dive into how the service is implemented and identified a ton of <U>software defects</U>. The list is long. See for yourself <A href="https://bitbucket.org/openid/connect/src/default/How-Sign-in-with-Apple-differs-from-OpenID-Connect.md" target="_blank" rel="noopener">here</A>.&nbsp;</P> Mon, 09 Oct 2023 09:15:35 GMT https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24791#M1474 AppDefects 2023-10-09T09:15:35Z https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24798#M1475 <P>It's always been a beef of mine that Apple has thumbed their noses at standards that would guarantee the image of their forward thinking about authentication and the integration of modern MFA options.&nbsp; I love their products. Just not happy with this shortsightedness.&nbsp;</P> Mon, 08 Jul 2019 18:23:41 GMT https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24798#M1475 Flyslinger2 2019-07-08T18:23:41Z https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24799#M1476 <P>I remember back when Microsoft messed with Kerberos in much the same way ...</P> Mon, 08 Jul 2019 19:27:49 GMT https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24799#M1476 rslade 2019-07-08T19:27:49Z https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24855#M1482 <P>And kerberos is still going strong all of the years (since late 1980's)!</P> Tue, 09 Jul 2019 11:16:36 GMT https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24855#M1482 Flyslinger2 2019-07-09T11:16:36Z https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24922#M1484 &gt; Flyslinger2 (Community Champion) posted a new reply in Tech Talk on 07-09-2019<BR /><BR />&gt; And kerberos is still going strong all of the years (since late 1980's)!<BR /><BR />Such an elegant protocol ...<BR /><BR />====================== (quote inserted randomly by Pegasus Mailer)<BR />rslade@vcn.bc.ca slade@victoria.tc.ca rslade@computercrime.org<BR />It is always the person not in the predicament who knows what<BR />ought to have been done in it - `A Christmas Carol', Charles Dickens<BR />victoria.tc.ca/techrev/rms.htm <A href="http://twitter.com/rslade" target="_blank">http://twitter.com/rslade</A><BR /><A href="http://blogs.securiteam.com/index.php/archives/author/p1/" target="_blank">http://blogs.securiteam.com/index.php/archives/author/p1/</A><BR /><A href="https://is.gd/RotlWB" target="_blank">https://is.gd/RotlWB</A> Tue, 09 Jul 2019 16:52:39 GMT https://community.isc2.org/t5/Tech-Talk/OpenID-Foundation-Taking-a-bite-out-Apple/m-p/24922#M1484 rslade 2019-07-09T16:52:39Z