[B! id] teppeisã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

teppeis id:teppeis

idã«é–¢ã™ã‚‹teppeisã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (28)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

âº é–“äº‹æ¥è€…å‘ã‘ ãƒ‡ã‚¸ã‚¿ãƒ«æœ¬â¼ˆç¢ºèªã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ ç¬¬1.0ç‰ˆ
teppeis 2024/09/25
id

auth

openid
ãƒªãƒ³ã‚¯
NIST SP800-63-4 ãƒ‡ã‚¸ã‚¿ãƒ«ã‚¢ã‚¤ãƒ‡ãƒ³ãƒ†ã‚£ãƒ†ã‚£ã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³æ›´æ–°ï¼šã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã¨åˆ©ä¾¿æ€§ã®ä¸¡ç«‹ã‚’ç›®æŒ‡ã—ã¦
æ¦‚è¦ è¿‘å¹´ã€ãƒ‡ã‚¸ã‚¿ãƒ«ç¤¾ä¼šã®æ€¥é€Ÿãªé€²å±•ã«ä¼´ã„ã€ã‚ªãƒ³ãƒ©ã‚¤ãƒ³ã§ã®æœ¬äººç¢ºèªã‚„èªè¨¼ã®é‡è¦æ€§ãŒé«˜ã¾ã£ã¦ã„ã¾ã™ã€‚ã“ã®åº¦ã€ç±³å›½å›½ç«‹æ¨™æº–æŠ€è¡“ç ”ç©¶æ‰€ï¼ˆNISTï¼‰ãŒã€ãƒ‡ã‚¸ã‚¿ãƒ«ã‚¢ã‚¤ãƒ‡ãƒ³ãƒ†ã‚£ãƒ†ã‚£ã«é–¢ã™ã‚‹ã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ã€ŒSP 800-63-4ã€ã®æ›´æ–°æ¡ˆ(2nd Public Draft)ã‚’ç™ºè¡¨ã—ã¾ã—ãŸã€‚ã“ã®æ›´æ–°ã¯ã€ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®å¼·åŒ–ã¨ã€èª°ã‚‚ãŒå…¬å¹³ã«ãƒ‡ã‚¸ã‚¿ãƒ«ã‚µãƒ¼ãƒ“ã‚¹ã«ã‚¢ã‚¯ã‚»ã‚¹ã§ãã‚‹ç’°å¢ƒã®æ•´å‚™ã‚’ç›®æŒ‡ã—ã¦ã„ã¾ã™ã€‚ ä»Šå›žã®æ›´æ–°ã®ç‰¹ç†ã™ã¹ãç‚¹ã¯ã€æœ€æ–°ã®ãƒ‡ã‚¸ã‚¿ãƒ«æŠ€è¡“ã¸ã®å¯¾å¿œã§ã™ã€‚ä¾‹ãˆã°ã€ã€ŒåŒæœŸå¯èƒ½ãªèªè¨¼å™¨ã€ï¼ˆãƒ‘ã‚¹ã‚ãƒ¼ï¼‰ã‚„ã€Œãƒ¦ãƒ¼ã‚¶ãƒ¼ç®¡ç†åž‹ã‚¦ã‚©ãƒ¬ãƒƒãƒˆã€ã¨ã„ã£ãŸæ–°ã—ã„æ¦‚å¿µãŒå°Žå…¥ã•ã‚Œã¦ã„ã¾ã™ã€‚ãƒ‘ã‚¹ã‚ãƒ¼ã¯å¾“æ¥ã®ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã‚ˆã‚Šã‚‚é«˜åº¦ãªã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚’æä¾›ã—ã€ãƒ¦ãƒ¼ã‚¶ãƒ¼ç®¡ç†åž‹ã‚¦ã‚©ãƒ¬ãƒƒãƒˆã¯å„ç¨®ãƒ‡ã‚¸ã‚¿ãƒ«è¨¼æ˜Žæ›¸ã‚’å®‰å…¨ã«ä¿ç®¡ã™ã‚‹ã“ã¨ãŒã§ãã¾ã™ã€‚ ä¸€æ–¹ã§ã€NISTã¯å¾“æ¥ã®æœ¬äººç¢ºèªæ–¹æ³•ã‚‚é‡è¦–ã—ã¦ã„ã¾ã™ã€‚ã‚¹ãƒžãƒ¼ãƒˆãƒ•ã‚©ãƒ³ã‚’æŒãŸãªã„äººã‚„ã€ãƒ‡ã‚¸ã‚¿ãƒ«è¨¼æ˜Žæ›¸ã‚’æŒãŸãªã„äººã€…
teppeis 2024/08/23
passkey

nist

id
ãƒªãƒ³ã‚¯
ãƒžã‚¤ãƒŠãƒ³ãƒãƒ¼ã‚«ãƒ¼ãƒ‰ã‚’ç”¨ã„ãŸæœ¬äººç¢ºèªã¨iPhoneã¸ã®æ©Ÿèƒ½æè¼‰ã€éˆ´æœ¨æ·³ä¹Ÿã®Pay Attentionã€‘
teppeis 2024/05/10
ãƒžã‚¤ãƒŠã‚«ãƒ¼ãƒ‰ã®iPhoneæè¼‰ã¨mdoc/mDLã«ã¤ã„ã¦ã€‚ã‚¹ã‚±ã‚¸ãƒ¥ãƒ¼ãƒ«ã¯æ—©ãã¦ä»Šç§‹10æœˆã®ã‚¢ãƒƒãƒ—ãƒ‡ãƒ¼ãƒˆã‹

mynumber

kyc

id
ãƒªãƒ³ã‚¯
ç¤¾å†…ã‚·ã‚¹ãƒ†ãƒ ã«eKYC(=æœ¬äººç¢ºèªã‚·ã‚¹ãƒ†ãƒ ï¼‰ã‚’å°Žå…¥ã—ãŸè©±
ã‚·ãƒ³ã‚¸ã§ã™ã€‚ã„ã¤ã ã£ãŸã‹çŸ¥äººã‹ã‚‰ã€ã€Œå…¥ç¤¾åˆæ—¥ã«ãƒ‡ãƒ¼ã‚¿æŠœã‹ã‚Œã¦ç¿Œæ—¥ã‹ã‚‰é€£çµ¡ãŒå–ã‚Œãªããªã£ãŸäººãŒã„ã¦ã€ã¨ã„ã£ãŸè©±ã‚’ ä»Šã¾ã§å¼Šç¤¾ã§ã¯äººææŽ¡ç”¨æ´»å‹•ã«ãŠã‘ã‚‹ãƒªã‚½ãƒ¼ã‚¹ã‚’è‡ªç¤¾ãƒ¡ã‚¤ãƒ³ã§ã€Œæ›¸é¡žé¸è€ƒã€ã‹ã‚‰ã€Œé¢æŽ¥ã€ã¾ã§å¹…åºƒãã‚«ãƒãƒ¼ã—ã¦ã„ã¾ã—ãŸãŒã€å½“ç¤¾ã§ã¯â€ã“ã‚Œã¾ã§â€ã‚‚â€ã“ã‚Œã‹ã‚‰â€ã‚‚ã€Œå¤šæ§˜ãªåƒãæ–¹ã€ã‚’æŽ¨é€²ã—ã¦ã„ããŸã‚ã®ä¸€æ©ã¨ã—ã¦ã€è‡ªç¤¾ã®æŽ¡ç”¨æ¥å‹™ã‚’å¤§ããè¦‹ç›´ã™äº‹ã¨ãªã‚Šã¾ã—ãŸã€‚ ä¸€ä¼æ¥ã®äººææŽ¡ç”¨ã«ãŠã„ã¦eKYCã‚’å°Žå…¥ã—ã¦ã„ã‚‹ä¾‹ã¯å¤šããªã„ã¨æ€ã„ã¾ã™ãŒã€eKYCã®å°Žå…¥ã‚’æ¤œè¨Žã•ã‚Œã¦ã„ã‚‹ä»–ç¤¾æ§˜ã®å‚è€ƒã«ãªã£ãŸã‚‰å¬‰ã—ã„é™ã‚Šã§ã™ã€‚ ãã£ã‹ã‘ å½“ç¤¾ã®æˆé•·ã«åˆã‚ã›ã¦å¾“æ¥å“¡ãŒå¢—ãˆã¦ã„ãä¸ã§ã€å ´æ‰€ã«æ•ã‚‰ã‚ã‚Œãªã„ã€Œãƒ•ãƒ«ãƒªãƒ¢ãƒ¼ãƒˆãƒ¯ãƒ¼ã‚¯ã€ã¨ã„ã†åƒãæ–¹ã‹ã‚‰ã€é æ–¹ã«å¼•ã£è¶Šã™å¾“æ¥å“¡ã€ã¾ãŸé æ–¹ã‹ã‚‰æ¥å‹™ã«å¾“äº‹ã™ã‚‹å¾“æ¥å“¡ãŒå¢—ãˆã‚‹ã¨å…±ã«ã€Œã‚ˆã‚Šç¢ºå®Ÿã«å¾“æ¥å“¡ã®èº«å…ƒç¢ºèªã‚’è¡Œã†ã€ã¨ã„ã†äº‹ã§ç™ºè¶³ã—ãŸãƒ—ãƒã‚¸ã‚§ã‚¯ãƒˆã§ã™ã€‚ ã‚·ãƒ³ã‚¸ã®ãƒ–ãƒã‚°ã«ã‚‚æ›¸ã„ã¦ã‚ã‚Šã¾ã™ãŒã€Œæœ¬äººæƒ…å ±ã‚’ã”ã¾
teppeis 2024/05/09
kyc

enterprise

id
ãƒªãƒ³ã‚¯
GitHub - ai/nanoid: A tiny (124 bytes), secure, URL-friendly, unique string ID generator for JavaScript
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
teppeis 2023/12/21
id

uuid
ãƒªãƒ³ã‚¯
The WebAuthn Wall of Shame
Skip to the content. Why does this exist? The products in this list do not support WebAuthn when used with an external identity provider. This lack of support means an organization cannot make WebAuthn a mandatory part of their authentication flow; a single incompatible app can prevent an entire oganization from moving forward. This is the typical deployment for these products in an Enterprise env
teppeis 2023/07/22
ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã‚¢ãƒ—ãƒªã‹ã‚‰SSOã™ã‚‹ã¨ãã«WebViewã‚’ä½¿ã£ã¦ã„ã‚‹ãŸã‚ã«IdPã®WebAuthnãŒåˆ©ç”¨ã§ããªã„ã‚µãƒ¼ãƒ“ã‚¹ã®ãƒªã‚¹ãƒˆ

auth

fido

passkey

id
ãƒªãƒ³ã‚¯
Passkey (FIDO2) authentication matrix with Microsoft Entra ID - Microsoft Entra ID
Considerations for each platform Windows Sign-in with security key requires one of the following it ems: Windows 10 version 1903 or later Chromium-based Microsoft Edge Chrome 76 or later Firefox 66 or later macOS Sign-in with passkey requires macOS Catalina 11.1 or later with Safari 14 or later because Microsoft Entra ID requires user verification for multifactor authentication. Near-field communic
teppeis 2023/07/20
microsoft

ad

passkey

fido

id

auth
ãƒªãƒ³ã‚¯
å½ã® ID (è˜åˆ¥å) ã®ã‚¢ãƒ³ãƒãƒ‘ã‚¿ãƒ¼ãƒ³
ã“ã‚“ã«ã¡ã¯ã€Azure Identity ã‚µãƒãƒ¼ãƒˆ ãƒãƒ¼ãƒ ã® é«˜ç”° ã§ã™ã€‚ æœ¬è¨˜äº‹ã¯ã€2023 å¹´ 6 æœˆ 20 æ—¥ã«ç±³å›½ã® Azure Active Directory Identity Blog ã§å…¬é–‹ã•ã‚ŒãŸ The False Identifier Anti-pattern ã‚’æ„è¨³ã—ãŸã‚‚ã®ã«ãªã‚Šã¾ã™ã€‚ã”ä¸æ˜Žç‚¹ç‰ã”ã–ã„ã¾ã—ãŸã‚‰ã‚µãƒãƒ¼ãƒˆ ãƒãƒ¼ãƒ ã¾ã§ãŠå•ã„åˆã‚ã›ãã ã•ã„ã€‚ æœ¬æ—¥ã¯ã€ID ã®ä¸–ç•Œã«ãŠã‘ã‚‹å±é™ºãªã‚¢ãƒ³ãƒãƒ‘ã‚¿ãƒ¼ãƒ³ã§ã‚ã‚‹ å½ã® ID (è˜åˆ¥å) ã®ã‚¢ãƒ³ãƒãƒ‘ã‚¿ãƒ¼ãƒ³ ã‚’å–ã‚Šä¸Šã’ã¾ã™ã€‚ã‚¢ãƒ³ãƒãƒ‘ã‚¿ãƒ¼ãƒ³ ã¨ã¯ã€ç¹°ã‚Šè¿”ã—ç™ºç”Ÿã™ã‚‹å•é¡Œã«å¯¾ã™ã‚‹ä¸€èˆ¬çš„ãªå¯¾å¿œç–ã®ã“ã¨ã§ã€ã“ã†ã„ã£ãŸå•é¡Œã¯å¤šããŒæ‚ªã„çµæžœã‚’ã‚‚ãŸã‚‰ã—ã€æƒ³å®šã¨åå¯¾ã®çµæžœã‚’ã‚‚ãŸã‚‰ã™ãƒªã‚¹ã‚¯ã¨ãªã‚‹ã‚‚ã®ã§ã™ã€‚ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã®ã‚¢ãƒ³ãƒãƒ‘ã‚¿ãƒ¼ãƒ³ ã‚‚èžã„ãŸã“ã¨ãŒã‚ã‚‹ã‹ã‚‚ã—ã‚Œã¾ã›ã‚“ã€‚æœ¬æ—¥ãŠè©±ã—ã™ã‚‹å†…å®¹ã¯ã€ã‚‚ã—ã‹ã—ãŸã‚‰ã‚ˆã‚Šå±é™ºãªãƒ‘ã‚¿ãƒ¼ãƒ³ã‹ã‚‚ã—ã‚Œã¾ã›ã‚“ã€‚ å½ã® ID (
teppeis 2023/07/03
id

openid

saml
ãƒªãƒ³ã‚¯
The False Identifier Anti-pattern
Today, weâ€™d like to highlight a dangerous anti-pattern in the identity world: theÂ false identifier anti-pattern. â€¯An anti-pattern is a common response to a recurring probl em thatâ€™s usually ineffective and risks being highly counter-productive. You may have also heard of theâ€¯password anti-pattern.â€¯Today's discussion represents a possibly even more dangerous practice. The false identifier anti-patte
teppeis 2023/06/28
id

saml

openid

security

pattern

oauth
ãƒªãƒ³ã‚¯
ãƒ‰ã‚³ãƒ¢ã€Œdã‚¢ã‚«ã‚¦ãƒ³ãƒˆã€ã®ã€Œãƒ‘ã‚¹ã‚ãƒ¼èªè¨¼ã€ã€4æ—¥ã«æä¾›é–‹å§‹
teppeis 2023/04/04
docomo

passkey

id

auth
ãƒªãƒ³ã‚¯
ã€Žãƒžãƒãƒ¼ãƒ•ã‚©ãƒ¯ãƒ¼ãƒ‰ IDã€ã€Œãƒ‘ã‚¹ã‚ãƒ¼ã€å¯¾å¿œã®ãŠçŸ¥ã‚‰ã›
ã‚ˆã‚Šå®‰å…¨ã§åˆ©ä¾¿æ€§ã®é«˜ã„ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ãƒ¬ã‚¹ãƒã‚°ã‚¤ãƒ³ãŒé¸æŠžå¯èƒ½ã« æ ªå¼ä¼šç¤¾ãƒžãƒãƒ¼ãƒ•ã‚©ãƒ¯ãƒ¼ãƒ‰ã¯ã€å½“ç¤¾ãŒæä¾›ã™ã‚‹ã‚µãƒ¼ãƒ“ã‚¹ã‚’ã”åˆ©ç”¨ã„ãŸã ããŸã‚ã®å…±é€šIDã€Žãƒžãƒãƒ¼ãƒ•ã‚©ãƒ¯ãƒ¼ãƒ‰ IDã€ãŒã€ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã‚’ä½¿ã‚ãšã«ãƒã‚°ã‚¤ãƒ³ã§ãã‚‹èªè¨¼æŠ€è¡“ã€Œãƒ‘ã‚¹ã‚ãƒ¼ã€ã«å¯¾å¿œã—ãŸã“ã¨ã‚’ãŠçŸ¥ã‚‰ã›ã—ã¾ã™ã€‚ ã“ã‚Œã«ã‚ˆã‚Šã€ãƒã‚°ã‚¤ãƒ³æ–¹æ³•ã¨ã—ã¦ã€Œãƒ‘ã‚¹ã‚ãƒ¼ã€ã‚’é¸æŠžã—ãŸå ´åˆã€ãƒ‘ã‚½ã‚³ãƒ³ã‚„ã‚¹ãƒžãƒ¼ãƒˆãƒ•ã‚©ãƒ³ãƒ»ã‚¿ãƒ–ãƒ¬ãƒƒãƒˆç«¯æœ«ã«æè¼‰ã•ã‚Œã¦ã„ã‚‹ç”Ÿä½“èªè¨¼æ©Ÿèƒ½ï¼ˆé¡”èªè¨¼ãƒ»æŒ‡ç´‹èªè¨¼ï¼‰ãªã©ã‚’ä½¿ã£ã¦ãƒã‚°ã‚¤ãƒ³ã™ã‚‹ã“ã¨ãŒå¯èƒ½ã¨ãªã‚Šã€ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰å…¥åŠ›ãŒçœç•¥ã§ãã‚‹ãŸã‚åˆ©ä¾¿æ€§ãŒå‘ä¸Šã—ã¾ã™ã€‚ã¾ãŸã€ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰èªè¨¼ã®ä¸€èˆ¬çš„ãªèª²é¡Œã¨ã•ã‚Œã¦ã„ã‚‹ã€IDã‚„ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã®ä¸æ£å…¥æ‰‹ã«ã‚ˆã‚‹ç¬¬ä¸‰è€…ã®ä¸æ£ãƒã‚°ã‚¤ãƒ³ã®ãƒªã‚¹ã‚¯ã‚’æŠ‘ãˆã‚‹ã“ã¨ãŒã§ãã¾ã™ã€‚ ãªãŠã€å¼•ãç¶šãå¾“æ¥ã®ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰èªè¨¼ã‚’ãƒã‚°ã‚¤ãƒ³æ–¹æ³•ã¨ã—ã¦é¸æŠžã™ã‚‹ã“ã¨ã‚‚å¯èƒ½ã§ã™ã€‚ â– UIã«ã¤ã„ã¦ ã€Žãƒžãƒãƒ¼ãƒ•ã‚©ãƒ¯ãƒ¼ãƒ‰ IDã€ã§ã¯ã€Œãƒ‘ã‚¹ã‚ãƒ¼ã€å¯¾å¿œã¨åŒæ™‚ã«ã€ãƒ¦ãƒ¼ã‚¶ãƒ“ãƒªãƒ†ã‚£ã®å‘ä¸Š
teppeis 2023/04/04
moneyforward

id

fido

passkey
ãƒªãƒ³ã‚¯
OpenID BizDay #16 - NIST SP800-63-4 (Draft) (2023/03/16 19:00ã€œ)
æ–°æ©Ÿèƒ½ æŠ€è¡“ã‚«ãƒ³ãƒ•ã‚¡ãƒ¬ãƒ³ã‚¹ã‚’ã‚ˆã‚Šè¦‹ã¤ã‘ã‚„ã™ãã€å‚åŠ ã—ã‚„ã™ãã™ã‚‹ãŸã‚ã®æ–°æ©Ÿèƒ½ã€Œã‚«ãƒ³ãƒ•ã‚¡ãƒ¬ãƒ³ã‚¹ç‰¹é›†ãƒšãƒ¼ã‚¸ã€ã‚’ãƒªãƒªãƒ¼ã‚¹ã—ã¾ã—ãŸã€‚ã€ŒæŠ€è¡“ã€ã‚„ã€Œãƒ†ãƒ¼ãƒžã€ãªã©ã®ãƒˆãƒ”ãƒƒã‚¯åˆ¥ã«æŽ¢ã›ã‚‹ã»ã‹ã€ç›´è¿‘é–‹å‚¬äºˆå®šã®ã‚«ãƒ³ãƒ•ã‚¡ãƒ¬ãƒ³ã‚¹ãŒä¸€è¦§ã§ç¢ºèªã§ãã¾ã™ã®ã§ã”æ´»ç”¨ãã ã•ã„ã€‚è©³ã—ã„æ©Ÿèƒ½èª¬æ˜Žã‚„æŽ²è¼‰æ–¹æ³•ã«ã¤ã„ã¦ã¯ã“ã¡ã‚‰ã‚’ã”ç¢ºèªãã ã•ã„ã€‚
teppeis 2023/02/08
security

auth

id
ãƒªãƒ³ã‚¯
ã€ãƒªãƒªãƒ¼ã‚¹äºˆå‘Šã€‘ã‚¬ãƒãƒŠãƒ³ã‚¹ã‚’ä¸€å±¤å¼·åŒ–ï¼ç®¡ç†å¯¾è±¡ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã§åˆ¥çµ„ç¹”ã¸ã®ã‚¢ã‚¯ã‚»ã‚¹ãŒå¯èƒ½ã« | æ ªå¼ä¼šç¤¾ãƒŒãƒ¼ãƒ©ãƒœ(Nulab inc.)
ç®¡ç†å¯¾è±¡ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã¨ã¯ ç®¡ç†å¯¾è±¡ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã¨ã¯ã€ã€ŒNulab Passã€ã‚’å¥‘ç´„ä¸ã®çµ„ç¹”ã§åˆ©ç”¨ã§ãã‚‹ç®¡ç†è€…ãŒåŽ³æ ¼ã«ç®¡ç†ã§ãã‚‹ãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã§ã™ã€‚ ãƒ¦ãƒ¼ã‚¶ãƒ¼è‡ªèº«ã§ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚’ç®¡ç†ã™ã‚‹ãƒŒãƒ¼ãƒ©ãƒœã‚¢ã‚«ã‚¦ãƒ³ãƒˆã¨ã¯ç•°ãªã‚Šã€çµ„ç¹”ã®ç®¡ç†è€…ã«ã‚ˆã‚‹ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã®ç®¡ç†ã¨ã€SAMLã«ã‚ˆã‚‹èªè¨¼ã®åˆ¶å¾¡ãŒå¯èƒ½ã§ã™ã€‚ æ©Ÿèƒ½æ”¹å–„ã®å†…å®¹ã«ã¤ã„ã¦ æ©Ÿèƒ½æ”¹å–„ã®å†…å®¹ã¯å¤§ãã4ã¤ã§ã™ã€‚ä»¥ä¸‹ã§ãã‚Œãžã‚Œè©³ã—ãèª¬æ˜Žã—ã¦ã„ãã¾ã™ã€‚ ç®¡ç†è€…ãŒè¤‡æ•°ã®çµ„ç¹”ã«å‚åŠ ã™ã‚‹ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚’ç®¡ç†ã§ãã‚‹ã‚ˆã†ã«ãªã‚Šã¾ã™ å¾“æ¥ã®ç®¡ç†å¯¾è±¡ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã¯ã€ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚’ä½œæˆã—ãŸçµ„ç¹”ã§ã®ã¿åˆ©ç”¨ã§ãã¾ã—ãŸãŒã€ã‚¢ãƒƒãƒ—ãƒ‡ãƒ¼ãƒˆã•ã‚ŒãŸç®¡ç†å¯¾è±¡ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã¯è¤‡æ•°ã®çµ„ç¹”ã§åˆ©ç”¨ã§ãã‚‹ã‚ˆã†ã«ãªã‚Šã¾ã™ã€‚ å¤–éƒ¨ã®çµ„ç¹”ã«æ‹›å¾…ã•ã‚ŒãŸå ´åˆã€ã“ã‚Œã¾ã§ã¯ç®¡ç†å¯¾è±¡ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã¨ã¯åˆ¥ã®ãƒŒãƒ¼ãƒ©ãƒœã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚’ä½œæˆã™ã‚‹å¿…è¦ãŒã‚ã‚Šã¾ã—ãŸã€‚ ã‚¢ãƒƒãƒ—ãƒ‡ãƒ¼ãƒˆã•ã‚ŒãŸã‚¢ã‚«ã‚¦ãƒ³ãƒˆã¯ã€å¤–éƒ¨çµ„ç¹”ã«æ‹›å¾…ã•ã‚ŒãŸã¨ãã«ç®¡ç†å¯¾è±¡ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã®ã¾ã¾å‚
teppeis 2022/10/20
nulab

id
ãƒªãƒ³ã‚¯
OSSã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£æŠ€è¡“ã®ä¼šã€€ç¬¬11å›žå‹‰å¼·ä¼š (2022/10/14 18:30ã€œ)
2022å¹´10æœˆ15æ—¥ã«ã€Keycloakã®åŒ…æ‹¬çš„è§£èª¬æ›¸ã®ç¿»è¨³ã§ã‚ã‚‹ å®Ÿè·µ Keycloak â€•OpenID Connectã€OAuth 2.0ã‚’åˆ©ç”¨ã—ãŸãƒ¢ãƒ€ãƒ³ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ¼ä¿è· ãŒç™ºå£²ã¨ãªã‚Šã¾ã™ã€‚ ã¾ãŸã€2022å¹´9æœˆ30æ—¥ã‚ˆã‚ŠIDã‚¬ãƒãƒŠãƒ³ã‚¹ï¼†ç®¡ç†ã®åŸºç¤Žã¨OSSã§ã‚ã‚‹midPointã‚’è§£èª¬ã™ã‚‹é€£è¼‰ ã€ŒmidPointã§å¦ã¶IDã‚¬ãƒãƒŠãƒ³ã‚¹ï¼†ç®¡ç†(IGA)ã®åŸºç¤Žã€ ãŒã‚¹ã‚¿ãƒ¼ãƒˆã—ã¾ã™ã€‚ â†‘ midPointã®é€£è¼‰ãƒšãƒ¼ã‚¸ãŒå…¬é–‹ã•ã‚Œã¾ã—ãŸï¼ ãã“ã§ã€ ã€ŽOSSã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£æŠ€è¡“ã®ä¼šã€€ç¬¬11å›žå‹‰å¼·ä¼šã€ ã¨é¡Œã—ã¦è‘—è€…é™£ã«ã‚ˆã‚‹KeycloakãŠã‚ˆã³midPointã®å‹‰å¼·ä¼šã‚’é–‹å‚¬ã™ã‚‹ã“ã¨ã«ãªã‚Šã¾ã—ãŸã€‚ ä»Šå›žã¯zoomã‚’åˆ©ç”¨ã—ã¦é–‹å‚¬äºˆå®šã§ã™ã€‚ ï¼œé‡è¦ï¼ž äº‹å‰ç™»éŒ²ã¯10æœˆ13æ—¥ä¸ã«ãŠé¡˜ã„ã—ã¾ã™ã€‚äº‹å‰ç™»éŒ²ã—ãŸæ–¹ã®ã¿ã«ä¼šè°IDã¨ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã‚’connpassã‹ã‚‰ã®ãƒ¡ãƒ¼ãƒ«ã«ã¦ã”é€£çµ¡ã—ã¾ã™ã€‚ å½“æ—¥ã®ãƒãƒƒ
teppeis 2022/10/01
keycloak

midpoint

id

auth

event
ãƒªãƒ³ã‚¯
IDã‚¬ãƒãƒŠãƒ³ã‚¹ï¼†ç®¡ç†ï¼ˆIGAï¼‰ã‚’å®Ÿç¾ã™ã‚‹OSSã€ŒmidPointã€ã¨ã¯
çš†ã•ã‚“ã¯ã€ŒIDã‚¬ãƒãƒŠãƒ³ã‚¹ï¼†ç®¡ç†ã€ï¼ˆIdentity Governance and Administrationï¼šIGAï¼‰ã¨ã„ã†è¨€è‘‰ã‚’ã”å˜ã˜ã§ã—ã‚‡ã†ã‹ã€‚ãƒ¦ãƒ¼ã‚¶ãƒ¼ã®IDã‚„ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã€æ‰€å±žã™ã‚‹çµ„ç¹”ã‚„ä¿æŒã™ã‚‹ã‚¢ã‚¯ã‚»ã‚¹æ¨©é™ãªã©ã‚’ç®¡ç†ã™ã‚‹å¾“æ¥ã®ã€ŒIDç®¡ç†ã€ï¼ˆIdentity Managementï¼šIDMï¼‰ã®æ¦‚å¿µã‚’åŒ…å«ã™ã‚‹ã€ã‚ˆã‚Šçµ±åˆ¶ï¼ˆã‚¬ãƒãƒŠãƒ³ã‚¹ï¼‰ã‚’æ„è˜ã—ãŸæ¦‚å¿µã§ã™ã€‚ä¼æ¥ã®å†…éƒ¨çµ±åˆ¶å¯¾å¿œã‚„ã‚¼ãƒãƒˆãƒ©ã‚¹ãƒˆãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ã¸ã®å¯¾å¿œã‚’å—ã‘ã¦è¿‘å¹´éžå¸¸ã«æ³¨ç›®ã•ã‚Œã¦ãŠã‚Šã€ä¸»è¦ãªIDMè£½å“ãŒIGAã¸ã®å¯¾å¿œã‚’æ¬¡ã€…ã«è¡¨æ˜Žã—ã¦ã„ã¾ã™ã€‚ æœ¬é€£è¼‰ã€ŽmidPointã§å¦ã¶ã€ŒIDã‚¬ãƒãƒŠãƒ³ã‚¹ï¼†ç®¡ç†ã€ï¼ˆIGAï¼‰ã®åŸºç¤Žã€ã§ã¯ã€ã‚ªãƒ¼ãƒ—ãƒ³ã‚½ãƒ¼ã‚¹ã‚½ãƒ•ãƒˆã‚¦ã‚§ã‚¢ï¼ˆOSSï¼‰ã§ã‚ã‚ŠãªãŒã‚‰IGAæ©Ÿèƒ½ã‚’å‚™ãˆãŸã€ŒmidPointã€ã‚’ä½¿ã£ã¦ã€ãƒãƒ³ã‚ºã‚ªãƒ³çš„ã«IGAã«ã¤ã„ã¦å¦ã³ã¾ã™ã€‚ç¬¬1å›žã¨ãªã‚‹ä»Šå›žã¯ã€ã€ŒIGAã¨ã¯ä½•ã‹ã€ã‹ã‚‰å§‹ã‚ã€ãã®å¿…è¦æ€§ã«ã¤ã„ã¦è€ƒãˆã¦ã¿ã¾ã™ã€‚ IDã‚¬ãƒ
teppeis 2022/10/01
id

iga

oss

midpoint
ãƒªãƒ³ã‚¯
Resecurity | EvilProxy Phishing-as-a-Service with MFA Bypass Emerged in Dark Web
Back EvilProxy Phishing-as-a-Service with MFA Bypass Emerged in Dark Web Cybercrime Intelligence 5 Sep 2022 MFA, Dark Web, Phishing, PhaaS, ATO, BEC, PyPi, supply chain Following the recent Twilio hack leading to the leakage of 2FA (OTP) codes, cybercriminals continue to upgrade their attack arsenal to orchestrate advanced phishing campaigns targeting users worldwide. Resecurity has recently ident
teppeis 2022/09/07
æœˆé¡400ãƒ‰ãƒ«ã§ãƒ•ã‚£ãƒƒã‚·ãƒ³ã‚°ã‚µã‚¤ãƒˆã‚’ä½œã‚Œã‚‹SaaSã ã¨...

security

phishing
ãƒªãƒ³ã‚¯
æ¨™æº–åŒ–ã§ã©ã†å¤‰ã‚ã‚‹!? è©±é¡Œã®æ¬¡ä¸–ä»£åˆ†æ•£IDè¦æ ¼ã€ŒDIDsã€ã®ãƒãƒ†ãƒ³ã‚·ãƒ£ãƒ«ã‚’ãˆãƒ¼ã˜ã•ã‚“ã«èžã„ã¦ã¿ãŸ!
Webã®ä¸–ç•Œã‚’å¤§ããå¤‰ãˆã‚‹ã‹ã‚‚ã—ã‚Œãªã„åˆ†æ•£IDæ¨™æº–è¦æ ¼ã€ŒDIDsã€ã«ã¤ã„ã¦ãˆãƒ¼ã˜ã•ã‚“ã«èžã„ã¦ã¿ã¾ã—ãŸã€‚ WebæŠ€è¡“ã®æ¨™æº–åŒ–å›£ä½“ã€ŒWorld Wide Web Consortium(W3C)ã€ã¯7æœˆ19æ—¥ã€åˆ†æ•£IDã®æ¨™æº–è¦æ ¼ã€ŒDIDs(Decentralized Identifiers)ã€ã®v1.0ã‚’å‹§å‘Šã—ã¾ã—ãŸã€‚ã“ã®å‹§å‘Šã‚’ãã£ã‹ã‘ã«ã€DIDsã ã‘ã§ã¯ãªãã€Web3ã‚„Web5ã¨å‘¼ã°ã‚Œã‚‹éžä¸å¤®é›†æ¨©çš„ãªWebä¸–ç•Œã‚„ãã®è¦ç´ æŠ€è¡“ã§ã‚ã‚‹ãƒ–ãƒãƒƒã‚¯ãƒã‚§ãƒ¼ãƒ³ã¸ã®é–¢å¿ƒãŒé«˜ã¾ã£ã¦ã„ã¾ã™ã€‚ä¸€æ–¹ã§ã€ã“ã‚Œã¾ã§ã®ã„ã‚ã‚†ã‚‹ä¸å¤®é›†æ¨©çš„ãªWebã®ä¸–ç•Œã§ä½¿ã‚ã‚Œã¦ããŸIDç®¡ç†ã¨DIDsã¯ä½•ãŒç•°ãªã‚‹ã®ã‹ã€ä¸€èˆ¬ã®äººã€…ã«ã¯ã¾ã ã‚ã¾ã‚Šç†è§£ãŒæµ¸é€ã—ã¦ã„ãªã„ã‚ˆã†ã§ã™ã€‚ DIDsãŒæ¨™æº–è¦æ ¼ã¨ãªã£ãŸã“ã¨ã§ã€Webã®ä¸–ç•Œã«ã¯ã©ã‚“ãªå½±éŸ¿ãŒã‚ã‚‰ã‚ã‚Œã‚‹ã®ã‹ - ä»Šå›žã®ã€ŒAsk the Expertã€ã§ã¯Webã®æ¨™æº–æŠ€è¡“ã«ç²¾é€šã—ãŸã‚¨ã‚ã‚¹ãƒ‘ãƒ¼ãƒˆã®ãˆãƒ¼ã˜(
teppeis 2022/08/22
id

w3c

auth
ãƒªãƒ³ã‚¯
Google ã¯çš†ã•ã‚“ãŒä½¿ã‚ãªããªã£ãŸã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚‚ä¿è·ã—ã¦ã„ã¾ã™
.app 1 .dev 1 #11WeeksOfAndroid 13 #11WeeksOfAndroid Android TV 1 #Android11 3 #DevFest16 1 #DevFest17 1 #DevFest18 1 #DevFest19 1 #DevFest20 1 #DevFest21 1 #DevFest22 1 #DevFest23 1 #hack4jp 3 11 weeks of Android 2 A MESSAGE FROM OUR CEO 1 A/B Testing 1 A4A 4 Accelerator 6 Accessibility 1 accuracy 1 Actions on Google 16 Activation Atlas 1 address validation API 1 Addy Osmani 1 ADK 2 AdMob 32 Ads
teppeis 2021/11/24
ä¸€å®šæœŸé–“ä½¿ã‚ã‚Œã¦ã„ãªã„Googleã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚’ç„¡åŠ¹ã«ã—ãŸã‚Šç‰¹å®šãƒ¦ãƒ¼ã‚¶ãƒ¼ã«ä¸€éƒ¨æ¨©é™ã‚’æ¸¡ã—ãŸã‚Šã§ãã‚‹

google

id

security
ãƒªãƒ³ã‚¯
BtoB SaaSã«ãŠã‘ã‚‹IDaaSã®é¸æŠžãŒé›£ã—ã„
Leaner Techno logies ã§ã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ã‚’ã—ã¦ã„ã‚‹ @corocn ã§ã™ã€‚ ç¤¾å†…ã§ã¯ IDaaS åˆ©ç”¨ã—ã¦ã„ããŸã„ãã¨ã„ã†æ©Ÿé‹ãŒé«˜ã¾ã£ã¦ã„ã‚‹ã®ã§ã™ãŒã€toB ã§ SAML å¯¾å¿œã® IDaaS ã«ã¤ã„ã¦æ¯”è¼ƒæ¤œè¨Žã—ã¦ã¿ã¦é›£ã—ã„ãªã€œã¨æ€ã£ãŸã¨ã“ã‚ã‚’ã¾ã¨ã‚ã¦ã¿ã¾ã—ãŸã€‚ å‰æ BtoB SaaS ã§ã¯ã€åˆæœŸã®ãƒ—ãƒãƒ€ã‚¯ãƒˆã®é ˜åŸŸã‚’èµ·ç‚¹ã«äº‹æ¥é ˜åŸŸã‚’éš£æŽ¥ã™ã‚‹é ˜åŸŸã«åºƒã’ã¦ã„ãã“ã¨ãŒå¤šã„ã§ã™ã‚ˆãã€‚ãƒãƒƒã‚¯ã‚ªãƒ•ã‚£ã‚¹å‘ã‘ã® SaaS ã‚’é–‹ç™ºã—ã¦ã„ã‚‹ãƒ¡ã‚¬ãƒ™ãƒ³ãƒãƒ£ãƒ¼ã‚’è¦‹ã¦ã„ã‚‹ã¨ãã†æ„Ÿã˜ã¾ã™ã€‚ æ–°ã—ãç«‹ã¡ä¸Šã’ãŸãƒ—ãƒãƒ€ã‚¯ãƒˆã‚’æ—¢å˜ã®ãƒ¦ãƒ¼ã‚¶ãƒ¼ã•ã‚“ã«ã‚‚æä¾›ã—ãŸã„ã€‚ãã†ãªã‚‹ã¨ã€å¿…ç„¶çš„ã«è¤‡æ•°ã®ãƒ—ãƒãƒ€ã‚¯ãƒˆã«å¯¾ã—ã¦å…±é€šã§ ID åŸºç›¤ã‚’æŒã¡ãŸããªã‚‹ã¯ãšã€‚èªè¨¼ãƒ‰ãƒ¡ã‚¤ãƒ³ã‚’åˆ†é›¢ã—ã‚ˆã†ã¨ã™ã‚‹ã¨ã€è‡ªå‰ã§ä½œã‚‹ã‹ã€KeyCloack ãªã©ã® OSS ã‚’ãƒ™ãƒ¼ã‚¹ã«é‹ç”¨ã™ã‚‹ã‹ã€IDaaS ã®åˆ©ç”¨ã‚’æ¤œè¨Žã™ã‚‹ã“ã¨ã«ãªã‚‹ã§ã—ã‚‡ã†ã€‚ æœ€åˆã¯èªè¨¼åŸºç›¤ã‚‚å«ã‚ã¦
teppeis 2021/11/15
Auth0ã¯é«˜ã„ã‹ã‚‰åŽ³ã—ã„ã£ã¦è©±ï¼Ÿ

idaas

id

auth

auth0
ãƒªãƒ³ã‚¯
æ–°ã—ã„ Google Identity Services API ã®ãƒªãƒªãƒ¼ã‚¹ã«ã¤ã„ã¦
.app 1 .dev 1 #11WeeksOfAndroid 13 #11WeeksOfAndroid Android TV 1 #Android11 3 #DevFest16 1 #DevFest17 1 #DevFest18 1 #DevFest19 1 #DevFest20 1 #DevFest21 1 #DevFest22 1 #DevFest23 1 #hack4jp 3 11 weeks of Android 2 A MESSAGE FROM OUR CEO 1 A/B Testing 1 A4A 4 Accelerator 6 Accessibility 1 accuracy 1 Actions on Google 16 Activation Atlas 1 address validation API 1 Addy Osmani 1 ADK 2 AdMob 32 Ads
teppeis 2021/08/30
id

google

atode
ãƒªãƒ³ã‚¯
1 2 æ¬¡ã®ãƒšãƒ¼ã‚¸