The OpenID Foundation stated that “Sign in with Apple” feature is not secure

The non-profit organization OpenID Foundation, which is developing of an open standard for the OpenID decentralized authentication system, sent an open letter to the American corporation Apple.

The letter claims that the recently announced “Sign in with Apple” feature creates certain security and privacy risks for users.

In the letter, the organization says that Apple has built the “Sign in with Apple” function based on the OpenID Connect platform. However, it is emphasized that Apple innovation is not fully compatible withOpenID standard.

As a result, according to representatives of the OpenID Foundation, “the function of Apple threatens security and privacy of users.

“The main differences between OpenID Connect and “Sign in with Apple” lies in the fact that Apple puts the privacy and security of users at undue risk”, — explains OpenID Foundation Chairman Nat Sakimura.

The OpenID Foundation has published a whole list of differences in the function of Apple from the OpenID Connect platform. Sakimura encourages Apple to comply with the OpenID standard.

Recalling, at the WWDC 2019 conference, Apple spoke about its plans to make the authentication process in applications more secure. According to representatives of the corporation, developers are testing the “Sign with Apple” feature, which can be used in the case of all applications that support login with credentials of third-party services.

User Review
0 (0 votes)
Comments Rating 0 (0 reviews)

Daniel Zimmermann

Daniel Zimmermann has been writing on security and malware subjects for many years and has been working in the security industry for over 10 years. Daniel was educated at the Saarland University in Saarbrücken, Germany and currently lives in New York.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *


This site uses Akismet to reduce spam. Learn how your comment data is processed.

Back to top button