OpenID

When OpenID was first created and starting to be used by major companies as their go-to single sign-on solution, people were skeptical. Today, it is used just about everywhere and people do not usually think twice before using it to log into their favorite website. We will explore how the improvements OpenID has made over the years have caused it along with OAuth to become some of the most widely used cross-site authentication protocols. In this paper, we will also touch on what flaws still exist in these protocols and if their benefits outweigh those flaws. This work is relevant because OpenID Connect and OAuth are used so widely today, both internally for companies and for public-facing websites. The security implications that stem from…