Skip to content

The OpenID Foundation believes that ‘Sign In with Apple’ could present security and privacy issues

One of the most striking new features of WWDC 2019 was ‘Sign in with Apple’, a service that allows you to register with third-party websites and services using your Apple ID . However, the OpenID Foundation believes that this could increase security and privacy issues.

Registration buttons via Facebook, Google or Twitter are present on a number of platforms. Although they are a convenient login option, they are not the best if we want to prevent our information from being used in the creation of advertising profiles.

The OpenID Foundation believes that ‘Sign In with Apple’ could present security and privacy issues
The OpenID Foundation believes that ‘Sign In with Apple’ could present security and privacy issues

Cupertino’s have privacy as an unwavering value, something we have seen in their latest ads, and ‘Sign In with Apple’ follows the same philosophy. It doesn’t send personal data and authentication is done via Touch ID or Face ID, something we liked as it was an alternative that “respects” our privacy. Or so we thought.

The OpenID Foundation (OIDF) is a non-profit organization that has developed OpenID Connect , a standardized login protocol used on many platforms to allow users to access websites and apps without the need to create additional passwords. Apple has taken this protocol to create its own.

At Apple ‘Sign in with Apple’: good for users and developers, a dart for Facebook and Google

However, there are several differences between the two functions. The Foundation, as MacRumors comments, has written a letter to Craig Federighi, Apple’s Head of Software, praising him for making use of this protocol, but would also like him to indicate the differences between the two protocols.

As a solution, Apple is invited to use the OpenID certification test suite to improve interoperability between the two platforms and to join the OpenID Foundation.

It’s common to find the option to sign in using Google and Facebook in App Store applications. Apple has commented to developers that if they include any of these options they should also include ‘Sign In with Apple’ .