OpenID Connect (OIDC) is an authentication protocol built on top of OAuth 2.0. While OAuth 2.0 handles authorization (which resources an application may access), OIDC adds an identity layer that identifies the user. The result is an ID token in JWT format containing information such as username, email, and authentication timestamp. OIDC is the foundation for Single Sign-On (SSO) across many cloud services. You should adopt OIDC as the preferred authentication protocol for web applications in your ISMS, as it reduces password sprawl and enables centralized access management.