Liberty Alliance

The group was originally conceived and named by Jeff Veis, at Sun Microsystems based in Menlo Park, California.{{Cite web |title= Jeff Veis: Vice President, Marketing, Protect Solutions, Autonomy |publisher= Hewlett-Packard Company |work= Executive biography |url= http://www.hp.com/hpinfo/newsroom/press_kits/2012/HPDiscover2012/Jeff_Veis_Bio.pdf |accessdate= November 9, 2013 }} The initiative's goal, which was personally promoted by Scott McNealy of Sun, was to unify technology, commercial and government organizations to create a standard for federated, identity-based Internet applications as an alternative to technology appearing in the marketplace controlled by a single entity such as Microsoft's Passport.{{Cite news |title= Do Androids Dream of Electric Single Sign-Ons? Sun's Passport-killer six months away |author= Andrew Orlowski |work= The Register |date= October 24, 2001 |url= https://www.theregister.co.uk/2001/10/24/do_androids_dream_of_electric/ |accessdate= November 9, 2013 }}

Another Microsoft initiative, HailStorm, was renamed My Services but quietly shelved by April 2002.{{Cite news |title= Microsoft Has Quietly Shelved Its Internet 'Persona' Service |author= John Markoff |work= The New York Times |date= April 11, 2002 |url= https://www.nytimes.com/2002/04/11/business/technology-microsoft-has-quietly-shelved-its-internet-persona-service.html |accessdate= November 9, 2013 }} Sun positioned the group as independent, and Eric C. Dean of United Airlines became its president.{{Cite news |title= New Economy: In a shift in the technology business, customers are now the kingmakers |author= Steve Lohr |work= The New York Times |date= April 1, 2002 |url= https://www.nytimes.com/2002/04/01/business/new-economy-shift-technology-business-customers-are-now-kingmakers.html |accessdate= November 9, 2013 }}

Image:Liberty-protocol-history.jpg

In July 2002, the alliance announced Liberty Identity Federation (ID-FF) 1.0.{{Cite press release |title= Industry Leaders Release Details Of Anticipated Liberty Alliance-Enabled Products |publisher= Liberty Alliance |date= July 15, 2002 |url= http://www.projectliberty.org/liberty/news_events/press_releases/industry_leaders_release_details_of_anticipated_liberty_alliance_enabled_products |accessdate= November 8, 2013 }}

At that time, several member companies announced upcoming availability of Liberty-enabled products.

Liberty Federation allowed consumers and users of Internet-based services and e-commerce applications to authenticate and sign-on to a network or domain once from any device and then visit or take part in services from multiple Websites. This federated approach did not require the user to re-authenticate and can support privacy controls established by the user.

The Liberty Alliance subsequently released two more versions of the Identity Federation Framework, and then in November 2003, Liberty contributed its final version of the specification, ID-FF 1.2, to OASIS.{{cite web|url=http://www.projectliberty.org/liberty/strategic_initiatives/federation/?f=liberty/strategic_initiatives/federation |title=Liberty Strategic Initiatives: Federation |publisher=Liberty Alliance |accessdate=2017-08-25}} This contribution formed the basis for SAML 2.0. By 2007, industry analyst firm Gartner claimed that SAML had gained wide acceptance in the community.{{cite report|title=The U.S. Government's Adoption of SAML 2.0 Shows Wide Acceptance|date=October 29, 2007|author=Gregg Kreizman|author2=John Pescatore|author3=Ray Wagner|publisher=Gartner, Inc}}

Liberty Alliance, releasing the Liberty Identity Web Services Framework (ID-WSF) in April 2004 for deploying and managing identity-based web services. Applications included geolocation, contact book, calendar, mobile messaging and People Service, for managing social applications such as bookmarks, blogs, calendars, photo sharing and instant messaging in a secure and privacy-respecting federated social network.

In a 2008 marketing report recommended considering it for federation.{{Cite web |publisher= Burton Group |title= Federated Identity |author= Bob Blakley |date= October 2008 |url= http://www.burtongroup.com/Client/Research/Document.aspx?cid=719 }}{{Dead link |date= November 2013}}

The alliance introduced a certification program in 2003, designed to test commercial and open source products against published standards to assure base levels of interoperability between products. In 2007, the US General Services Administration began requiring this certification for participating in the US E-Authentication Identity Federation.{{Cite press release|title= US GSA Requires Liberty Alliance Interoperability Testing as Public Sector SAML 2.0 Adoption Soars |publisher= Liberty Alliance |date= October 29, 2007 |url= http://www.projectliberty.org/liberty/news_events/press_releases/us_gsa_requires_liberty_alliance_interoperability_testing_as_public_sector_saml_2_0_adoption_soars |accessdate= November 8, 2013 }}

In January 2007, the alliance announced a project for open-source software developers building identity-based applications. OpenLiberty.org was a portal where developers can collaborate and access tools and information to develop applications based on alliance standards.{{Cite press release|title= Liberty Alliance Announces openLiberty Project |publisher= Liberty Alliance |date= January 23, 2007 |url= http://www.projectliberty.org/liberty/news_events/press_releases/liberty_alliance_announces_openliberty_project |accessdate= November 8, 2013 }}

In November 2008, OpenLiberty released an open source application programming interface called ArisID.{{Cite press release|title= OpenLiberty.org Releases First Open Source Identity Governance Framework Software |publisher= Liberty Alliance |date= November 19, 2008 |url= http://www.projectliberty.org/liberty/news_events/press_releases/openliberty_org_releases_first_open_source_identity_governance_framework_software |accessdate= November 9, 2013 }}

In February 2007 Oracle Corporation contributed the Identity Governance Framework to the alliance,{{Cite press release |title= Liberty Alliance and Oracle Team to Advance Identity Governance Framework |publisher= Liberty Alliance |date=February 7, 2007 |url= http://www.projectliberty.org/liberty/news_events/press_releases/liberty_alliance_and_oracle_team_to_advance_identity_governance_framework |accessdate= November 9, 2013 }} which released the first version publicly in July 2007.{{Cite press release |title= Industry Leaders Submit Identity Governance Framework to openLiberty.org for Development of Open Source Implementations |publisher= Liberty Alliance |date=February 7, 2007 |url= http://www.projectliberty.org/liberty/news_events/press_releases/industry_leaders_submit_identity_governance_framework_to_openliberty_org_for_development_of_open_source_implementations |accessdate= November 9, 2013 }}

The Identity Governance Framework defined how identity related information is used, stored, and propagated using protocols such as LDAP, Security Assertion Markup Language, WS-Trust, and ID-WSF.

The Liberty Alliance began work on its identity assurance framework in 2008. The Identity Assurance Framework (IAF) detailed four identity assurance levels designed to link trusted identity-enabled enterprise, social networking and Web applications together based on business rules and security risks associated with each level. The four levels of assurance were outlined by a 2006 document from the US National Institute of Standards and Technology.{{Cite report |title= Electronic Authentication Guideline |author1= William E. Burr |author2= Donna F. Dodson |author3=W. Timothy Polk |date= April 2006 |publisher= US Institute of Standards and Technology |work= Special Publication 800-63 version 1.0.1 |url= http://csrc.nist.gov/publications/nistpubs/800-63/SP800-63V1_0_2.pdf |accessdate= November 9, 2013 }}

The level of assurance provided is measured by the strength and rigor of the identity proofing process, the credential's strength, and the management processes the service provider applies to it.

These four assurance levels were adopted by UK, Canada, and USA government services.

In 2007 the Liberty Alliance helped to found the Project Concordia, an independent initiative for harmonization identity specifications. It was active through 2008.{{Cite web |title= Concordia |work= Old web site |url= http://www.projectconcordia.org/ |archive-url= https://web.archive.org/web/20080518073504/http://www.projectconcordia.org/ |url-status= dead |archive-date= May 18, 2008 |accessdate= November 8, 2013 }}

The alliance wrote papers on business and policy aspects of identity management.{{Cite web |title= Papers |work= Promotional web site |url= http://www.projectliberty.org/liberty/resource_center/papers publishing business and policy |accessdate= November 8, 2013 }} It hosted meetings in 2007 and 2008 to promote itself.{{Cite web |title= Privacy Summits |work= Promotional web site |url= http://www.projectliberty.org/liberty/public_community/privacy_summits |accessdate= November 8, 2013 }}

Management board members included AOL, British Telecom, Computer Associates (CA), Fidelity Investments, Intel, Internet Society (ISOC), Novell, Nippon Telegraph and Telephone (NTT), Vodafone, Oracle Corporation and Sun Microsystems.

• IndieAuth
• Windows CardSpace
• Yadis
• OpenID
• OAuth
• Identity management systems

{{Reflist}}

• [http://www.projectliberty.org/ Liberty Alliance web site]
• {{usurped|1=[https://web.archive.org/web/20070208232625/http://www.openliberty.org/ OpenLiberty Project]}}

As described above, [https://lists.oasis-open.org/archives/security-services/200311/msg00060.html Liberty contributed Identity Federation Framework (ID-FF) 1.2 to OASIS] in November 2003. For the record, here is a complete list of contributed ID-FF 1.2 documents:

Only the archived PDF files are individually addressable on the Liberty Alliance web site. (The original contributed documents are lost.) To obtain copies of the remaining archived files, download both the [http://www.projectliberty.org/liberty/content/download/1266/8160/file/liberty-idff-1.2-20050520.zip Liberty ID-FF 1.2 archive] and the [http://www.projectliberty.org/liberty/content/download/1206/7918/file/liberty-support-1.1-20050520.zip Liberty 1.1 support archive].

{{authority control}}

Category:Standards organizations in the United States

Category:Identity management initiative

Category:Organizations established in 2001

Category:Organizations disestablished in 2009

Category:2001 establishments in the United States

Category:2009 disestablishments in the United States