{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2015:RBINJGOFIAQISNFYHPDAKEKWP2","short_pith_number":"pith:RBINJGOF","schema_version":"1.0","canonical_sha256":"8850d499c540208934b83bc60511567ebaadc9d5394b98a6bb2dd93e485223b2","source":{"kind":"arxiv","id":"1508.01707","version":1},"attestation_state":"computed","paper":{"title":"Analysing the Security of Google's implementation of OpenID Connect","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Chris J Mitchell, Wanpeng Li","submitted_at":"2015-08-07T14:33:03Z","abstract_excerpt":"Many millions of users routinely use their Google accounts to log in to relying party (RP) websites supporting the Google OpenID Connect service. OpenID Connect, a newly standardised single-sign-on protocol, builds an identity layer on top of the OAuth 2.0 protocol, which has itself been widely adopted to support identity management services. It adds identity management functionality to the OAuth 2.0 system and allows an RP to obtain assurances regarding the authenticity of an end user. A number of authors have analysed the security of the OAuth 2.0 protocol, but whether OpenID Connect is secu"},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"1508.01707","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-08-07T14:33:03Z","cross_cats_sorted":[],"title_canon_sha256":"bc24fae87feda2e6b8489c69ce29c2a9c3d089b2ea685d805b8badfcaf1a3510","abstract_canon_sha256":"c576a315276108cc40254f2e1d44f5568ec106a6c70ee0e2aab932e7559adf19"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T01:35:38.962837Z","signature_b64":"h2OJ4LWezU40asnxz9aftdB+ibJ0z7F+nL/Yu6oqbfkT4epJS2AHvVHgTkZIfmacUKu3ALhLOHExexPo3q6WDg==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"8850d499c540208934b83bc60511567ebaadc9d5394b98a6bb2dd93e485223b2","last_reissued_at":"2026-05-18T01:35:38.962195Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T01:35:38.962195Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"Analysing the Security of Google's implementation of OpenID Connect","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Chris J Mitchell, Wanpeng Li","submitted_at":"2015-08-07T14:33:03Z","abstract_excerpt":"Many millions of users routinely use their Google accounts to log in to relying party (RP) websites supporting the Google OpenID Connect service. OpenID Connect, a newly standardised single-sign-on protocol, builds an identity layer on top of the OAuth 2.0 protocol, which has itself been widely adopted to support identity management services. It adds identity management functionality to the OAuth 2.0 system and allows an RP to obtain assurances regarding the authenticity of an end user. A number of authors have analysed the security of the OAuth 2.0 protocol, but whether OpenID Connect is secu"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1508.01707","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"1508.01707","created_at":"2026-05-18T01:35:38.962325+00:00"},{"alias_kind":"arxiv_version","alias_value":"1508.01707v1","created_at":"2026-05-18T01:35:38.962325+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1508.01707","created_at":"2026-05-18T01:35:38.962325+00:00"},{"alias_kind":"pith_short_12","alias_value":"RBINJGOFIAQI","created_at":"2026-05-18T12:29:39.896362+00:00"},{"alias_kind":"pith_short_16","alias_value":"RBINJGOFIAQISNFY","created_at":"2026-05-18T12:29:39.896362+00:00"},{"alias_kind":"pith_short_8","alias_value":"RBINJGOF","created_at":"2026-05-18T12:29:39.896362+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":0,"internal_anchor_count":0,"sample":[]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/RBINJGOFIAQISNFYHPDAKEKWP2","json":"https://pith.science/pith/RBINJGOFIAQISNFYHPDAKEKWP2.json","graph_json":"https://pith.science/api/pith-number/RBINJGOFIAQISNFYHPDAKEKWP2/graph.json","events_json":"https://pith.science/api/pith-number/RBINJGOFIAQISNFYHPDAKEKWP2/events.json","paper":"https://pith.science/paper/RBINJGOF"},"agent_actions":{"view_html":"https://pith.science/pith/RBINJGOFIAQISNFYHPDAKEKWP2","download_json":"https://pith.science/pith/RBINJGOFIAQISNFYHPDAKEKWP2.json","view_paper":"https://pith.science/paper/RBINJGOF","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=1508.01707&json=true","fetch_graph":"https://pith.science/api/pith-number/RBINJGOFIAQISNFYHPDAKEKWP2/graph.json","fetch_events":"https://pith.science/api/pith-number/RBINJGOFIAQISNFYHPDAKEKWP2/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/RBINJGOFIAQISNFYHPDAKEKWP2/action/timestamp_anchor","attest_storage":"https://pith.science/pith/RBINJGOFIAQISNFYHPDAKEKWP2/action/storage_attestation","attest_author":"https://pith.science/pith/RBINJGOFIAQISNFYHPDAKEKWP2/action/author_attestation","sign_citation":"https://pith.science/pith/RBINJGOFIAQISNFYHPDAKEKWP2/action/citation_signature","submit_replication":"https://pith.science/pith/RBINJGOFIAQISNFYHPDAKEKWP2/action/replication_record"}},"created_at":"2026-05-18T01:35:38.962325+00:00","updated_at":"2026-05-18T01:35:38.962325+00:00"}