Accreditation Service
From MgmtWiki
Full Title or Meme
A list of the enterprises and standards providers of Accreditation of trusted Enterprises or Web Sites.
Context
On the trust page different roles are defined for Entities.
Providers
The following table is the known trust mark providers and some of their characteristics. Updates and corroboration are encouraged.
- Category is --tbd--. The rest are closed in the sense that users have limited control over the release of their information. Some provide OpenID as an option when an alternate is shown.
- Some sites are not Accreditors, but try to create trust by other means.
Company | Location | Cat | Recent News |
AT&T | Cloud | First Responders | |
Airside | Canada | Cloud | mobile passport for entering US from Canada |
Alert Enterprise | |||
Auth0 | Bellevue, WA | Certified OpenID Auth0 raises $55M to fuel the identity management company’s international expansion 2018-05-15 | |
NVLAP | NIST - originally just crypto devices from FIPS 140 and now common criteria | ||
Amazon | Seattle | Closed | Mostly for ecommerce sites |
CA Technologies | Closed and OpenID | SiteMinder (SSO and API gateway is Certified OpenID) part of Broadcom | |
MorphoTrust eID | IDEF registered - now part of IDEMIA | ||
Okta | Okta shares rise as sales top estimates in first report since IPO 2017-07-07 | ||
Omada | |||
One Identity | |||
One Logon | SV | Premise Cloud | https://www.onelogin.com/status |
Open Consent | NY + UK | Sal + Mark | KI demo |
Oracle | Premise Cloud | Certified OpenID for federation services | |
Ping Identity | SV | Premise OpenID | Certified OpenID for federation services |
Privo | IDEF registered | ||
Radiant Logic | Premise | also federated ID & CRM | |
Raidiam | UK | ||
Safenet | France | MFA, cloud | Part of Gemalto and now Thales, in lots of security markets, including smart cards, absorbed Rainbow and Aladdin ID tokens |
SailPoint | |||
Salesforce | Certified OpenID, perhaps only for federation | ||
Savint | |||
Spec-Ops | Password management | ||
spring.io | cloud | java same? https://www.baeldung.com/spring-security-authentication-provider | |
Symantec VIP | various | IDEF registered - used by Fidelity, Ebay, PayPal and others | |
Tozny, LLC | IDEF registered | ||
Trunomi | KI demo | ||
OpenID | |||
UbiSecure | Europe | oauth or SAML | KI demo - authorization |
VASCO DataSecurity | IDEF registered as MYDIGIPASS | ||
Veres | Verif Claims | From Digital Bazaar Creates, resolves, validates verifiable claims | |
Verizon | VZConnect | Certified OpenID, perhaps only for federation | |
Yahoo Verizon | OpenID | Provider based on email account |
Non-profits
Note that some of these organizations are just associations of large Enterprises.
Name | Type | Category | Notes |
AAMVA | Attribute | driver's license | just verifies information at state Identity providers |
Better ID Coalition | Large US financial companies issued a Report | ||
Center for Cybersecurity Policy | |||
Distributed ID | One hundred point of identity | ||
FIDO Alliance | UAF U2F | Fast ID Online 1.2 specs dtd 2017 | |
Kantata Initiative | Federations | UMA | also Consent Receipt and IDEF |
OAuth | AuthZ | Release under IETF | |
OpenID Foundation | AuthN+AuthZ | OpenID Connect | OpenID Foundation |
SAML 2.0 | AuthN | SAML2 | OASIS-open.org original single sign on standard |
TSCP | Transglobal Secure Collaboration Participation is a collaborative forum of worldwide stakeholders in the defense industry to address security issues | ||
W3C Credential Community Group | Decentralized | eg Public Ledger | DID, verifiable claims sponsored by blockchain providers |
Web AuthN | IAP or RP | aka FID02 | released under W3C |
Univ. of MD | Closed | IDEF registered, supports Internet2 SAML federation |