After completing the initial AuthN and AuthZ use cases it came to the OATC members’ attention that a parallel effort with a very similar SAML-based solution was in development by the Cablelabs organization. The OATC Board decided to reach out and coordinate the AuthN specification to avoid duplication of efforts. The OATC then focused on developing its own Multimedia Authorization spec based on the OpenID and Oauth standards which culminated in the publishing of the OMAP Open Multimedia Authorization Protocol in 2011.
The OMAP specification addresses Authorization – the process of granting or denying access to protected media content. It defines the architecture, protocols and data formats needed to build and deploy interoperable systems that authorize access to protected media content on any Internet-connected device. Various authentication methods, such as SAML 2.0, may be used as needed in conjunction with this specification
This specification is compliant with the Oauth 2.0 protocol. Oauth 2.0 provides support for both browser and native applications, is natively RESTful with a strong developer framework support, and has broad and growing industry adoption.
While the OMAP spec was forward looking and based on then emerging Oauth 2.0 standards, it has remained mostly a theoretical spec as most of the OATC participants had already deployed SAML based solutions for Authentication and could not justify the time and expense to re-work existing systems to conform to the OMAP standard. However, as the TVE ecosystem matures and provides parental control capabilities where access may be granted or denied to different program rating levels or to specific programs, the Authorization capabilities of OMAP may yet see commercial deployment.