Brussels / 3 & 4 February 2018


DNS-based discovery for OpenID Connect

Taking Single-Sign-On to the next level

OpenID Connect is a widely deployed standard to implement single-sign-on in the web. While the existing protocol discovery mechanisms might be well-suited for the current social media login deployment status (that is, a handful of islands of identity providers and Facebook&Google coping with 90%+ of the market share), a better mechanism would be needed for a real federated, distributed environment.

This lightning talk tries to present the ideas outlined in together with a working demo, looking for feedback from the DNS developer community.


Photo of Marcos Sanz Grossón Marcos Sanz Grossón