OpenID and OAuth are open standards for authentication and authorization on the web. OpenID allows users to log into multiple websites using a single digital identity while OAuth provides applications a secure delegated access to server resources on behalf of a resource owner. Both standards use open web technologies like HTTP, SSL and public-key cryptography to provide user-centric and application-to-application authentication and authorization in a distributed and extensible manner without single vendor lock-in.