PingID unveils online identity service

Ping Identity Monday unveiled the beta of a service that taps the OpenID protocol in order to provide online users with a single identity that can be used to access Web sites.

SignOn.com will provide users with one account used to replace multiple user names and passwords.

Using the user-centric identity model, which allows users to control their own identity, users can link their personal information cards, such as Windows Cardspace or Novell’s Identity Selector, to SignOn.com and use the association to validate their identity to Web sites supporting the OpenID protocol. The steps help eliminate password phishing.

To continue reading, register here and become an Insider. You'll get free access to premium content from CIO, Computerworld, CSO, InfoWorld, and Network World. See more Insider content or sign in.

Ping Identity Monday unveiled the beta of a service that taps the OpenID protocol in order to provide online users with a single identity that can be used to access Web sites.

SignOn.com will provide users with one account used to replace multiple user names and passwords.

Using the user-centric identity model, which allows users to control their own identity, users can link their personal information cards, such as Windows Cardspace or Novell’s Identity Selector, to SignOn.com and use the association to validate their identity to Web sites supporting the OpenID protocol. The steps help eliminate password phishing.

Personal information cards are ones that users create for themselves.

Currently the SignOn.com service is being targeted at consumers. There are approximately 250 Web sites supporting OpenID, and companies such as AOL, Sun, Yahoo and Wikipedia have announced their support for the protocol.

After a user creates an information card on their desktop, they can access SignOn.com and link the card to their account on the site. On subsequent visits, the card is needed for the user to authentication to SignOn.com.

“It’s a form of strong authentication,” says Andre Durand, CEO of Ping Identity.

When the user goes to a Web site supporting OpenID and tries to access the site, they are re-directed to Sign-On.com and asked to authenticate. “SignOn.com becomes the trusted third-party,” says Durand.

Others are working on similar projects including with MyOpenID.com from JanRain and VeriSign wit its PIP (personal identity provider) beta.

Durand says Ping is also working on a managed information card model where cards are issued by a trusted third-party where they can be kept up-to-date and revoked if needed. It also is working to include support for others protocols including the Security Assertion Markup Language (SAML) and WS-Federation.

PingID will show a demo of that service at next week’s Burton Group Catalyst Conference in San Francisco.

Durand says the evolution of Internet identity will be a long road, but should produce a more secure environment for users.

“The user interaction and experience surrounding a trusted ID provider on the Internet is going to require a lot of consumer feedback and education,” he said.