Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Section
Column
width70%

This Work Group operates under the Kantara IPR Policy - Option Patent & Copyright: Reciprocal Royalty Free with Opt-Out to Reasonable And Non discriminatory (RAND) (HTML version). You can find any opt-outs on this page.

Home | FAQ | Protocol Spec | Trust Model Spec | Chat | Intro | Join | List | Archive (Mailman) | Archive (Google) | Calendar


Panel
bgColor#ffffff
titleImplementations, interop, and case studiesThe UMA V2.0 specifications are in draft!
borderColor#99cc00
borderWidth4pt

A key focus in 2012-Q1 will be supporting and facilitating interoperable implementation and deployment. Keep an eye on the Implementations page, the Case Studies page, and the UMA area of the OSIS wiki to help get your own implementation work startedImage Added

The UMA V2.0 specifications are in draft! Our 2016 roadmap work has borne fruit! Check out the latest drafts as of 26 February 2017: UMA Core V2.0 revision 17 and OAuth Resource Registration V2.0 revision 05. Here is a detailed swimlane diagram that tracks the drafts. If you're interested to contribute to the imminent finalization of these specs, we welcome you! See the Join link up top. Click the image to view the UMA Movie, which premiered at the 23rd Internet Identity Workshop in October 2016.

Panel
borderColor#7f7f7f
borderWidth0


The purpose of the UMA Work Group (charter) is to develop specs that let an individual control the authorization of data sharing and service access made between online services on the individual's behalf, and to facilitate interoperable implementations of the specs
User-Managed Access (UMA) is an award-winning OAuth-based protocol designed to give a web user a unified control point for authorizing who and what can get access to their online personal data, content, and services, no matter where all those things live on the web. Read the spec, join the group, check out the implementations, test your interop, follow us on Twitter, like us on Facebook, get involved!Follow us on Twitter – our handle is @UMAWG and we often use the hashtag #UMAWG. (Short

See the UMA Roadmap for 2016 page to see the use cases and technical issues that the Work Group is currently focusing on.

The short link for this page is http://tinyurl.com/umawg – spread the word.) Find us on Facebook too.

 

News:

  • January 6: Dazza Greenwood's presentation on terms of authorization has been uploaded.
  • December 27: New spec drafts fully position UMA as simply a profile of OAuth. We've aligned UMA terminology with OAuth as well.
  • December 6: The Implementations page has gotten a makeover. Check out the refreshed listing, including a new UMA open-source project at OxAuth. Also see the new case study on subscribing to a friend's personal cloud.
  • October 19: Eve presented on UMA to the XACML TC. Check out the slides.
  • October 19: Check out this YouTube video of our Google Tech Talk from Feb 2012, demoing selective Alice-to-Bob sharing through Bob's OpenID Connect claims. Thanks to Maciej for getting this published!
  
  • 19: Our 2016 roadmap work has borne fruit and the UMA V2.0 specifications are shaping up! See the latest spec links in the box above. If you're interested to contribute to the finalization of these specs, we welcome you! See the Join link up top.
  • November 4: The UMA Legal subgroup has a new sharpened-up charter today! Check out the Legal page for links to interim deliverables. Particularly if you're a "legal eagle", are familiar with GDPR, or have business use cases involving delegation or proxies/guardians, we'd love for you to join us and help out. (See the Join link on this page.)
  • March 29: One of UMA's three trust elevation methods, claims gathering, was reported on January 27 to be affected by a session fixation attack. The WG has produced an extension specification to enable mitigation of the attack called UMA Claims-Gathering Extension for Enhanced Security, and a background document to further discuss the attack, the mitigation chosen, and other approaches considered and possible. Many thanks to the original reporters of the issue and the group for its quick action.
Column
Column
width5%
 
Column
width25%
Leadership
  • Chair: Eve Maler
  • Vice-Chair: Maciej Machulak
  • Full leadership team list
  • Read about Kantara leadership roles
Teleconference Info
Section

 

Widget Connector
urlhttps://twitter.com/settings/widgets/419665047808274433

 

Column
width5%