Architecture & Standards

A Zero Trust Security CAEPer

Wednesday, June 23
1:30pm - 1:55pm MDT

Managing federated sessions is an important consideration in designing secure environments based on zero-trust principles. Long-lived sessions initiated after thorough verification of a user, device and environmental properties reflect a "snapshot in time" picture of the security of access. Those properties may change instantaneously when users change locations or passwords, their devices fall out of compliance, or administrative changes affect the user's account.   The Continuous Access Evaluation Protocol (CAEP) being developed as a part of the Shared Signals and Events working group within the OpenID Foundation provides a great way to instantaneously communicate how these changes are propagated to relying parties, which can then take appropriate action. Learn how CAEP works and the latest developments in its standardization in the OpenID Foundation.