OASIS Electronic Secure Authentication (ESAT) TC
Surveying methods of authenticating electronic identities to make them more useful for governments, businesses, and individuals engaged in eGovernment and eCommerce.
Bojan Simic, bojan@hypr.com, Chair
Abbie Barbir, BarbirA@cvshealth.com, Secretary
Table of Contents
- Announcements
- Overview
- Technical Work Produced by the Committee
- Other Work Produced by the Committee
- Subcommittees
- TC Liaisons
- TC Tools
- OASIS Open Source Repositories Sponsored by the Committee
- External Resources
- Mailing Lists and Comments
- Press Coverage and Commentary
- Additional Information
The press release announcing the approval of Secure QR Code Authentication v1.0 as an OASIS Standard is available now. You can read it here. Also see the announcement of its publication here.
Secure QR Code Authentication v1.0 is now an approved OASIS Committee Specification, ready for testing and implementation. For details see the announcement.
The inaugural meeting of the Electronic Secure Authentication (ESAT) TC was held on on November 19, 2020 with 10 members attending. Ken Granger and Bojan Simic were elected co-chairs and Abbie Barbir was elected Secretary.
Participation in the OASIS Electronic Secure Authentication (ESAT) TC is open to all interested parties. Contact join@oasis-open.org for more information.
Strong authentication is needed to protect against account take-over and identity theft. Many technologies are being developed to reduce the reliance on passwords for authentication. Solutions based on FIDO Standards set a high bar by eliminating account take-overs based on phishing attacks. Unfortunately, many other solutions, in particular those that are based on QR code, do not offer the same resistance to Man-in-the-Middle attacks.
The members of the ESAT TC work to remedy risks to strong authentication. Overall, the benefits of assuring authentication will improve the user experience, and reduce the costs related to IdM, security and usability.
Any vendor involved in authenticating electronic identities, passwordless authentication providers, identity service providers, local and national governments, businesses, and individuals engaged in eGovernment and eCommerce will benefit from this work.
For more information, see the Electronic Secure Authentication (ESAT) TC Charter.
Technical Work Produced by the Committee
Secure QR Code Authentication Version 1.0. Edited by Don Sheppard. 04 October 2022. OASIS Standard. https://docs.oasis-open.org/esat/sqrap/v1.0/os/sqrap-v1.0-os.html. Latest stage: https://docs.oasis-open.org/esat/sqrap/v1.0/sqrap-v1.0.html.
Secure QR Code Authentication Version 1.0. Edited by Don Sheppard. 01 July 2022. OASIS Committee Specification 01. https://docs.oasis-open.org/esat/sqrap/v1.0/cs01/sqrap-v1.0-cs01.html. Latest stage: https://docs.oasis-open.org/esat/sqrap/v1.0/sqrap-v1.0.html.
Other Work Produced by the Committee
The committee has not yet produced any other supporting work.
No subcommittees have been formed for this TC.
No TC Liaisons have been announced for this TC.
OASIS Open Source Repositories Sponsored by the Committee
No Open Repositories have been set up for this TC.
No external resources address the work of the TC.
esat: the discussion list used by TC members to conduct Committee work. TC membership is required to post, and TC members are automatically subscribed. The public may view the OASIS list archives.
esat-comment: a public mailing list for providing feedback on the technical work of the ESAT TC. To send a comment, follow the instructions on the TC's public web page here or view the OASIS comment list archives.
Secure QR Code Authentication Standard Approved by OASIS Open, 13 October 2022.
Providing Feedback: OASIS welcomes feedback on its technical activities from potential users, developers, and others to better assure the interoperability and quality of OASIS work.