Customer reference: Hundreds of thousands of identified passengers in Finnish public transport – every day

Waltti Solutions Oy is a leading provider of IT solutions for public transportation in Finland’s urban areas. Every day, Waltti’s customers carry hundreds of thousands of commuters, free-time passengers, and tourists from point A to point B. Owned by the Helsinki Regional Transport and 22 municipalities, including large Finnish cities like Tampere and Oulu, Waltti maintains and develops innovative ticketing and other digital services for its owners.

Critical services affecting millions of people

”We operate in a highly business-critical field,” explains Waltti’s Managing Director, Toni Pallaspuro. “Public transportation just needs to work, as it affects the lives of millions of citizens daily.”

Currently, Waltti develops and offers two product families for its customers: a modern account-based ticketing and information system used by most of Waltti’s clients and a comprehensive family of new solutions developed in collaboration with Helsinki Regional Transport. Trivore’s Identity (ID) solutions play a significant role in both. “Trivore is one of our central cooperation partners,” Pallaspuro states.


From a monolith to a secure and compliant modular service

“Earlier, the passengers’ identities were managed with a solution that was part of our old, monolithic system,” Pallaspuro says. “Nowadays, we operate in a multi-vendor modular environment that gives more freedom to our municipal customers to pick and choose the service elements they wish.”

At the heart of Waltti’s services, Trivore’s ID solutions provide information on the passenger, her identity, the products, and related tariffs. Trivore’s solution contains up-to-date product and price information, enabling smooth payment transactions and product management. For example, benefits assigned to different user groups, such as pensioners and students, are automatically updated for users after authentication. Thereby, the system immediately provides the user with the appropriate ticket group upon creating the user account.

“Trivore’s solution for us was originally much simpler than it is now,” Pallaspuro says, describing that Waltti and Trivore agilely and continuously develop the solutions to manage millions of passengers’ identities and fare prices.

“For us, it is also essential that the passengers’ personal information stays in Finland,” he continues. “With Trivore, we can avoid all unnecessary processing of passengers’ personal data and develop systematic Master Data Management.“


True strategic partnership and big visions for the future

Toni Pallaspuro’s personal history spans the finance sector to governmental agencies and municipality organisations. Through these lenses, he is also keen to view his current company and its business opportunities broadly. “Everything, of course, culminates to what our customers are willing to pay for,” he says and continues: “In the long run, however, we want to conquer new customers and market areas, yet always keeping in mind that whatever we produce needs to be of great quality and thus productive.”

Waltti and Trivore continue collaborating closely in developing new services for Waltti’s customers. Pallaspuro compliments that Trivore’s basic ID solution is highly secure and fits Waltti’s needs. He says that it is technically “simple and beautiful” – which might make the solution itself quite easily replaceable with other technologies in the market. Nevertheless, Pallaspuro praises the collaboration with Trivore’s team as something unique. “In our cooperation, we have reached a level of true strategic partnership,” Pallaspuro rejoices and continues: “For us, great collaboration and flexibility are key. I hope that together with Trivore, Waltti will be able to build something that has not been seen in Finnish public transport yet.”


Waltti Solutions Oy

Picture: Waltti Solutions Oy


Learn more about Waltti:

Customer reference: Pictue grants easy access to the photos in its mobile app – but only to the right people for the right reasons

When you are in the fast-moving software business, plan to go global, and deal with customer data that is partially extremely sensitive, you want to make sure you know exactly who can access that data. When Pictue, the Finnish developer of a photo documentation application, was looking for a secure solution to manage their software’s users’ identities, Trivore was a natural choice.

Application for sharing sensitive photo material

The idea of Pictue’s application is that, e.g., the photos of a construction site that are required by legislation or customer transparency no longer need to be shared via insecure, consumer-grade Instant Messaging solutions. Instead, they are stored in Pictue’s database – also managed by Trivore.

”Our photo documentation software was initially designed for the Fiber-to-the-Home business”, explains Pictue’s CEO Kasper Välimäki. “When we started development around a year ago, we realized that this software could be applied to any construction business – or pretty much any business you could think of.” Since then, Pictue has identified dozens of other use cases outside construction that require a secure way of sharing information and photographs.

All these scenarios offer great potential for Pictue’s application. For example, a kindergarten in Tampere uses the app to share photos of children’s days with their caretakers. There would be thousands of similar kindergartens in Finland alone for Pictue to conquer.

Security, business fundaments, and user-friendliness

Many of Pictue’s use cases include sensitive data that can be harmful in the wrong hands. In the very early stages of product development, Pictue’s team realized they needed a robust, reliable partner for managing the identities of the people using their application.

“We have enough to do with developing and maintaining our own software”, explains Välimäki, and continues: “It wasn’t even an option to carry the heavy workload of developing an Identity Management solution in-house.” According to Välimäki, the more solutions that are fit-for-purpose and secure Pictue can purchase as a service, the better. “Trivore’s solution’s topmost promise for us was its security”, Välimäki says.

Another essential feature of Trivore’s Identity Management solution for Pictue is that it reliably records the number of users who sign in. Pictue’s billing and income are based on this data, so it is fair to say that Trivore’s solution is critical for Pictue’s business.

Many out-of-the-box features included in Trivore’s solution also significantly enhance Pictue’s user experience. “From the viewpoint of design and development, we got a huge number of features out-of-the-box that would have required noticeable coding work from our people”, Välimäki praises. “For example, all SMS messages and verification codes to a new user are sent out directly from Trivore’s ID platform.”

Effortless collaboration that scales for growth

The operations of Pictue’s eight-person team are very agile. Kasper Välimäki takes pride in, e.g., being able to respond to customers’ feedback and implement the suggested new features within days – instead of weeks or months. Such responsiveness also calls for partners that can live up to expectations.

“Our collaboration with Trivore has been outstanding and fruitful”, Välimäki praises. “Trivore proactively stays in contact, and even though my schedules usually require that things be ready ‘yesterday,’ Trivore has managed all requests remarkably promptly.“

Välimäki sees lucrative growth opportunities for Pictue’s solution, which he describes as “the most easy-to-use and automated photo documentation software out there.” The globally expanding installation of optical fiber connections has quickly boosted the need for construction work across many countries, making this fast-growing domain exciting.

“In Finland, we have optic fiber in something like one of every third house. In Sweden, the numbers are already close to 70%, whereas Central European countries like Germany are severely lagging, with less than 7% connected to optical fiber,” Välimäki lists. “When contractors take pictures of telecom operators’ connecting cabinets, they cannot send them through any Instant Messaging service. You need to consider the security of this sensitive information”, Välimäki explains.

For a CEO running a B2B business based on a software application launched just some six weeks ago, Kasper Välimäki has ambitious goals. The company aims to have tens of thousands of users in its system by the end of 2023 and plans to go international, starting from the European market.

This also means that Trivore’s Identity Management software must rapidly scale up. Välimäki has solid trust in Pictue’s partnership with Trivore. “I can genuinely recommend Trivore as a solution and as a partner. I have seen all kinds of partners and players during my career as an entrepreneur in different businesses. Trivore is by far one of the best of them.”


Learn more about Pictue:

Product image on the blog banner: Pictue

From Texas to Trivore – the internship taught Gisselle about Finnish language and work culture

Gisselle Lehtinen moved to Finland in January 2020 after graduating from the University of Houston with a BBA in Management Information Systems. At the moment Gisselle is learning Finnish in Adult Education Centre Turku, and her goal is to work in the IT industry in Finland. For her studies, Gisselle did an internship at Trivore, and tells about her experiences in this blog article.

I have come to learn more about Finnish society and work culture in Trivore. It is a good thing to experience how different almost everything in Finland is in comparison to life in corporate America, and to get familiar with what I can expect in the future when I work in an IT company. For example, I have noticed that everyone leaves their shoes at the entrance and wears house shoes or just plain socks at the office. Companies in the US, unfortunately, don’t follow suit with this practice. Another example is that you can have a summer holiday for a whole month, whereas in the US you can have, on average, only ten days. 

I have had a great experience at Trivore. Everyone here is approachable, patient, and ready to help. Every day I have listened and learned new words or information through my work or from my colleagues. I would usually start my mornings by having a Daily meeting to discuss what the task of the day is and talk about how things are going so far. I felt productive when I was given tasks and that I made a little impact on the company in a positive way. For example, I have translated Trivore’s product in Spanish. Trivore has set the standard of what I wish other IT companies would be like in Finland. 

I have had a great experience at Trivore. Everyone here is approachable, patient, and ready to help.

Gisselle Lehtinen

One of the things that I like about Trivore is the open work environment and the easy approachability that comes with it. If I have a question about something, I can approach anyone and they will help or direct me to someone that can answer my question. I also like the periodic (daily, weekly, monthly) meetings that occur. It shows the timeline of what is going on, how it’s going, where everyone is with their work, what to expect, etc. in a reliable manner. This way, if I were in a team, I would know exactly what is going on, where the project is, where it’s going, where it should be, and what is expected of me. If there are any problems or concerns, I would be able to mention them during the meeting or approach a team member to solve the issue. Everyone is able to work well both independently and collaboratively.

After my internship, I will be attending Åbo Akademi University in the fall in pursuit of a master’s degree in Governance of Digitalization. In this degree program, I would like to develop new skills as well as improve my existing ones and gain more knowledge in the fields of information systems and information studies. I hope to continue learning Finnish there as well. I believe these studies will be seen as a good value and they can help me gain important connections when I am searching for a job after graduation. 

In the future, I would like to work as a data analyst or a business analyst because I want to be able to solve problems and work with data. Thankfully, I have been fortunate enough to be given the opportunity to do my internship here at Trivore, as it is in the IT field which I would like to work in. This internship has felt like a stepping stone for my career. I am looking forward to what the future has in store for me. 

Who is Gisselle?

  • 24 years old
  • From Houston, Texas, USA
  • Language skills include English, Spanish, and Finnish
  • Hobbies include video games and baking

De Texas a Trivore – la pasantía le enseñó a Gisselle sobre el idioma finlandés y la cultura laboral

Gisselle Lehtinen mudó a Finlandia en enero de 2020 después de graduarse de la Universidad de Houston con un LAE en Sistemas de Información Gerencial. En este momento, Gisselle está aprendiendo finlandés en el Centro de Educación para Adultos en Turku, y su meta es trabajar en la industria de TI en Finlandia. Para sus estudios, Gisselle hizo una pasantía en Trivore y cuenta sus experiencias en este artículo de blog.

He venido a aprender más sobre la sociedad finlandesa y la cultura laboral en Trivore. Es una buena experiencia debido a lo diferente que es casi todo es en comparación con la vida en las empresas estadounidenses y familiarizarme con lo que debo esperar en el futuro cuando trabaje en una compañía de TI. Por ejemplo, he notado que, normalmente en las compañías, todos dejan sus zapatos en el pasillo de entrada y se ponen zapatillas de casa o simplemente usan calcetines. Compañías en los Estados Unidos, desafortunadamente, no siguen esta práctica. Otro ejemplo, puedes tener un vacación de verano para un mes completo, mientras que el los EE. UU. puedes tener, en promedio, solo diez días.

He tenido una buena experiencia en Trivore. Todos aquí son accesibles, pacientes y están listos para ayudar. Todos los días he escuchado y aprendido nuevas palabras o información a través de mi trabajo o de mis colegas. Normalmente comenzaba mis mañanas teniendo una reunión “Daily” (o diaria)para discutir cuál es la tarea del día y hablar sobre cómo van las cosas. Me sentí productiva cuando me asignaron tareas y que hice un pequeño impacto en la compañía de manera positiva. Por ejemplo, he traducido el producto de Trivore al español. Trivore ha establecido el estándar de lo que deseo que sean otras compañías de TI en Finlandia.

He tenido una buena experiencia en Trivore. Todos aquí son accesibles, pacientes y están listos para ayudar.

Gisselle Lehtinen

Una de las cosas que me ha gustado de Trivore es el ambiente de trabajo abierto y la fácil accesibilidad que conlleva. Si tengo alguna pregunta sobre algo, puedo acercarme a cualquier persona y ellos me ayudarán o me dirigirán a alguien que pueda responder mi pregunta. También me gustan las reuniones periódicas (“daily”/diarias, “weekly”/semanales, “monthly”/mensuales) que ocurren. Esto muestra una línea de tiempo de lo que está sucediendo, cómo va, cómo todos están progresando con su trabajo, qué esperar, etc. De esta manera, si estuviera en un equipo, sabría exactamente qué está sucediendo, en qué estado está el proyecto, hacia dónde va, dónde tiene que estar, y qué se espera de mí. Si hay algún problema o preocupación, fuera posible mencionarlos durante la reunión o acercarme a un miembro del equipo para resolver el problema. Todos aquí son capaces de trabajar bien tanto independiente como en colaboración. 

Después de mi pasantía, asistiré a la Universidad Åbo Akademi en el otoño para obtener una maestría en Gobernanza de la Digitalización. En este plan de estudios, me gustaría desarrollar nuevas habilidades, así como mejorar las que ya tengo y obtener más conocimientos en los campos de los sistemas de información y los estudios de información. Espero seguir aprendiendo finlandés allí también. Creo que estos estudios serán vistos como un buen valor y pueden ayudarme a obtener conexiones importantes cuando esté buscando trabajo después de graduarme.

En el futuro, me gustaría trabajar como analista de datos o analista de negocios porque quiero poder resolver problemas y trabajar con datos. Afortunadamente, he tenido la suerte de tener la oportunidad de hacer mi pasantía aquí en Trivore, ya que es en el campo de TI en el que me gustaría trabajar. Esta pasantía se ha sentido como peldaño para mi carrera. Espero con ansias lo que el futuro me tiene reservado.

¿Quién es Gisselle?

  • 24 años de edad
  • De Houston, Texas, EE. UU
  • Las habilidades lingüísticas incluyen inglés, español y finlandés
  • Los pasatiempos incluyen videojuegos y hornear

What’s in your eWallet?

By Kari Mattson

Digital wallets at your service

One of the many features of the Trivore Identity Service, Trivore ID, that we are proud of is its digital wallet capability which allows an individual to make electronic transactions. The wallets can be prepaid (i.e. money is deposited in the digital wallet prior to any transactions) or they can be linked to a user’s bank account or payment card. 

Multiple wallets for many purposes

Trivore ID enables each user account to have multiple secure personal wallets that can be used for digital transactions. The built-in anonymization features of the system allow the wallets to be connected with a strong identity while still allowing anonymous purchases. This combines transaction security with consumer privacy, a goal which is typically very difficult to achieve. 

Trivore ID also supports another rare use case: anonymous users and identities may also have wallets. This enables bearer-based usage patterns, which typically have low-value transactions. Higher monetary values easily triggerAML and KYC requirements, which we also support, but that is another blog post.

A single user account can have an unlimited number of wallets indifferent currencies for different purposes. Value may be moved between wallets and identities. This provides a great deal of flexibility and enables numerous use cases. 

Wallets have the same level of high security as bank accounts but are otherwise deliberately much simpler and have fewer features for ease of use and convenience.

We speak corporatese…

Trivore ID also supports corporate user accounts which may have wallets. The use cases of this are countless, but an easy example would be a corporation paying  in a very cost-effective manner for (either fully or partially) an employee’s public transportation fares while commuting. Since the wallets are always tied to a strong identity, it is easy to control what and by whom the corporate wallets can be used for. This makes life easier for the employee and the company alike and helps reduce back-office work considerably. For the service provider, this capability enables new value-added services and creates additional business opportunities.

Business rules engine support

Trivore ID supports the attachment of a line-of-business business rule engine for the wallets. As Trivore ID is purposely agnostic to the business processes, this allows for huge innovations. For instance, a corporate commuting wallet can be restricted so that it can only be used from 6 am to 6pm on weekdays. Or the wallets could only be used on certain routes.

Learn more about Trivore ID

Digital wallets are just one example of the added value of Trivore ID, which helps customers integrate identity and access management into their applications and accelerates solution development significantly.

Unlike most IDaaS platforms, Trivore ID is built from the ground up to be easily integrated with demanding business applications and can act as the backbone of critical business workflows.

Everything You Always Wanted to Know About eSIM (But Were Afraid to Ask)

Kari Mattson, January 21, 2020

What is this eSIM thingy, anyway?

Pretty soon you may not need a SIM card in your phone as growing array of connected devices will connect to mobile using embedded SIM (eSIM) technology. eSIM is a global specification which involves aSIM card chip being embedded into a device.

eSIM technology has been around for some time, but only its adoption by Apple in late generation iPhones brought it to the public consciousness. 

One of the main advantages of eSIM is that it enables users to change operator remotely without having to acquire a new physicalSIM card – this can augur an even fiercer competition among operators and new usage modes. Theoretically, a phone using an eSIM could negotiate the rates with available operators on a call-by-call basis to get the absolute best prices.

More practically, eSIM also allows people to store multiple profiles on a single device, effectively having two or more numbers, and switch between them at ease. This is ideal for anyone who may require an additional number for travel or business, for example.

As an increasing number of devices offer eSIM technology, we are likely to see more mobile operators offering support for the service, particularly as it gives them an opportunity to up and cross-sell new service plans to their customers across the consumer and enterprise markets

But wait, that is not all…

While eSIMs can change phone usage quite abit, the technology will not just be used in smartphones. 

eSIMs will be seen in many consumer devices which require always-on connectivity. This includes wearables, such as smartwatches and smart glasses, connected home devices, and computing devices such as laptops and tablets. Technology which has traditionally connected to Wi-Fi will benefit from the wider availability and security of cellular (4G and5G) networks.

One of the first consumer devices to feature eSIM is the 4th generation Apple iWatch which is cellular capable, enabling many new use cases. The iconic Dick Tracy wrist phone is starting to be reality, thanks to eSIM.

The many benefits of eSIM

Consumers, businesses, and benefits can will all benefit from eSIM.

As eSIM enables subscribers to connect more devices to their mobile operator, operators can offer multi-device packages and bespoke data plans. 

Device bundling will b­ecome much easier, with consumers able to conveniently add new devices to their plans without having togo in store or wait for a physical SIM card to arrive in the post. This presents new revenue opportunities for operators, as it becomes easier for customers to scale up their plans by adding new devices which require data.

Businesses with a large number of mobiles used by their employees will also benefit from the convenience of eSIM. eSIM can deliver a streamlined user experience for managing cellular connectivity, enabling IT teams to provision and deploy new devices in a rapid and convenient fashion. Adding new phones to a corporate mobile service or swapping devices between users as they join and leave a company will become much more efficient, as it can be achieved remotely. Profiles for each user can also be personalized and data plans can be adjusted and optimized, via eSIM remote management tools.

Don’t forget IoT

eSIM will also benefit businesses that use IoT systems, and in particular businesses that have large m2m (machine-to-machine)deployments such as oil and gas, power plants, manufacturing facilities and warehouses. For a company using thousands of individual pieces of hardware that require mobile connectivity, installing a SIM card into each unit would be a painstaking (and expensive) task.

With eSIM, businesses can remotely connect all of this technology to a mobile network. Furthermore, if the technology is required to operate in another country, it can be programmed remotely to connect to a local operator in that region.

Because it is embedded, an eSIM uses less space and is cheaper than traditional SIM technology: mobile connectivity can now be introduced into hardware where it was previously not feasible due to cost or space restrictions.

Finally, as with the consumer market, operators can create new data plans for businesses as their connectivity requirements scale up. This could include new packages for previously unconnected devices, such as connected cars or iPads, naturally resulting in new revenue streams.

Making it a reality

While eSIM offers some exciting possibilities, its adoption is still in its infancy. Both manufacturers and operators must step up their game to drive the adoption of eSIM technology.

Technology manufacturers must support the new technology and make it available in their products. On this front, things are developing: analysts suggest all new smartphone devices will support eSIM by2030, and other types of connected technology will likely follow suit.

Operators play a crucial role. They must support the technology on their networks, create innovative new services, and provide a smooth experience for business and consumer customers looking to adopt the services. 

Operators need to create a smooth experience for onboarding customers using eSIM, via an online portal or application. Bespoke applications can be developed specifically for enterprise customers, whilst consumers can be served through operator portals.

For this customer experience to be seamless, operators must ensure that their eSIM technology is compatible with different handset manufactures and eSIM vendors and ensure they can support multiple download and activation methods.

To achieve this, operators must evolve their billing support systems and have an entitlement platform which will empower them with advanced eSIM management capabilities. This will ensure that they can make it as easy as possible for users to adopt eSIM technology, which will help drive new uses cases for it across the consumer and enterprise markets.

Trivore and eSIM

Our Trivore Device Entitlement Service (or DES among friends), is a carrier-grade solution for mobile device manufacturers and mobile operators to activate and provision cloud, on-premise, and embedded software applications from a single platform.

DES provides full support for eSIM and lets operators and manufacturers take advantage of this new technology easily and inexpensively. Just like other Trivore products, DES features a modern web-based GUI, open APIs, a powerful SDK for client development, and built-in identity management functionality.

Trivore supporting public transportation

Trivore and our very own Kari Mattsson were recently featured in Suomidigi, a website supporting and looking at the state of the digitalization of the Finnish public sector.

The article describes how HSL (the Helsinki Regional Transit Authority) has incorporated the national and European eIDAS strong identification systems using the Trivore Identity Service (TIS).

The story, alas, is in Finnish only (it can be found here), but since has some useful information, we try to summarize some of the key points here.

Having strong identification information is crucial for the proper functioning of the system as the residents of the various municipalities in the HSL region get discounted tickets based on their place of residence. Being able to leverage national ID systems that have e.g. accurate address information allows HSL to provide the discounts easily and fairly. Discounted tickets have previously been limited to physical ticket products but with the help of TIP and the service, HSL can now extend the discounts to mobile tickets, as well.

Riders from outside of Finland benefit from the pan-European eIDAS identification system support. Riders can be sure their information is handled appropriately (and following all relevant regulations) and they can ride on HSL knowing their information is secure. HSL is the first player in Finland to have a fully eIDAS compliant system and e.g. German eIDAS identification requests have been handled without any issues.

Niko Tynkkynen, the Digital Service Design Team Lead at HSL outlines the challenges of rolling out a system like this: ”We have to be sure we handle the information of our more than one million riders in full compliance of GDPR rules, yet we also want to make sure the service experience is seamless across devices and services. We also want to bring new, increasingly personalized services and experiences to our riders.”

One further benefit of TIS is the ability to federate identities across different actors and services. The system e.g. enables using identities managed by the HSL system to be used for accessing public transportation services in Tampere – or any other city in Finland.

Should you be interested, you can read more about TIs on our product pages.

Trivore Identity Service Client SDKs released

By Kari Mattsson on September 22th, 2019

The SDKs are out!

The often requested, fully documented Trivore Identity Service Client SDKs for Java and Python are now available. The SDKs let developers increase their productivity and get the most of of the comprehensive Trivore Identity Service APIs to create beautiful identity-driven applications.

Why does the SDK matter?

The SDK helps our customers (and us, too!) to create robust Identity-driven applications powered by Trivore Identity Service faster and more easily. The SDK leverages the robust Trivore Identity Service APIs (Application Programming Interfaces) and contains technical documentation, sample code, and other tools that help a developer be more efficient and deliver better applications.

The difference between and SDK and an API

An API is essentially a clear set of rules, or protocols, for interacting with a system. As long as a programmer knows how to use the right protocols they can successfully accomplish the tasks they want to complete on the platform. An API is like a recipe, it’s a set of clear instructions. Companies often use APIs to give external parties access to their data or systems. An SDK is more like a box of cake mix. It has everything you’ll need to make a cake quickly and easily.

What about other languages?

While Python and Java are the most common languages used to develop applications powered by Trivore Identity Service, we are working on other languages, too.

The next planned languages are Go and Javascript. The release schedule is not fully confirmed yet but we expect the release to happen in late 2019 or very early in 2020. Stay tuned for details.

If you are a Trivore customer and have a need for an SDK for another language, drop us a line and we will certainly consider your request.

Where can I get it?

You can download the SDKs for both Java and Python from our Gitlab public page.

The Java version will also be shortly available on Maven Central and the Python version on PyPI.

You can find documentation and other goodies from the Trivore Identity Service support site.

About Trivore Corporation

Founded in 2001, Trivore Corporation crafts identity-driven enterprise software for business-critical applications. Trivore serves demanding customers – both enterprises and public sector actors – that need robust and scalable enterprise solutions for business-critical applications. Trivore is the Identity Authority™.

OpenID Connect™ Certification for Trivore Identity Service

By Kari Mattsson on September 20th, 2019

Trivore Corporation has on August 26, 2019 certified that Trivore Identity Service 3.0 conforms to the Basic OP, Implicit OP, Hybrid OP, and Config OP profiles of the OpenID Connect protocol.

The OpenID Connect certification is a big step for Trivore and our customers. With this certification, the users of  Trivore Identity Service can easily leverage the industry-leading standard Identity Provider in their applications. This makes development faster, applications safer, and provides a great deal of ease-of-use for end-users.

What is OpenID Connect?

OpenID Connect 1.0 is a simple identity layer on top of the OAuth 2.0 protocol. It allows Clients to verify the identity of the End-User based on the authentication performed by an Authorization Server, as well as to obtain basic profile information about the End-User in an interoperable and REST-like manner.

OpenID Connect allows clients of all types, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, allowing participants to use optional features such as encryption of identity data, discovery of OpenID Providers, and session management, when it makes sense for them.

Why Does OpenID Connect Matter?

OpenID Connect has become the leading standard for single sign-on and identity provision on the Internet. Its formula for success: simple JSON-based identity tokens (JWT), delivered via OAuth 2.0 flows designed for web, browser-based and native / mobile applications.

OpenID Connect, published in 2014, is not the first standard for Identity Provider (IdP), but, in our opion, the best in terms of usability and simplicity, having learned the lessons from past efforts such as SAML and OpenID 1.0 and 2.0.

About Open ID Foundation

The OpenID Foundation (OIDF) promotes, protects and nurtures the OpenID community and technologies.

The OpenID Foundation is a non-profit international standardization organization of individuals and companies committed to enabling, promoting and protecting OpenID technologies. Formed in June 2007, the foundation serves as a public trust organization representing the open community of developers, vendors, and users. OIDF assists the community by providing needed infrastructure and help in promoting and supporting expanded adoption of OpenID. This entails managing intellectual property and brand marks as well as fostering viral growth and global participation in the proliferation of OpenID.

About Trivore Corporation

Founded in 2001, Trivore Corporation crafts identity-driven enterprise software for business-critical applications. Trivore serves demanding customers – both enterprises and public sector actors – that need robust and scalable enterprise solutions for business-critical applications. Trivore is the Identity Authority™.