Refeds


Subject Re: comments on eduID
From Leif Johansson <leifj@xxxxxxxx>
Date Wed, 21 Oct 2009 13:23:45 +0200

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Nicole Harris wrote:
> Hi Bob
> 
> Only actually got this fully after the talk as our e-mail was down. 
> Again :-)  I think these are valid arguments, and fit in well with the
> conclusions we came to.  My only disagreement is that Google uses a
> 'nameless' approach.  It doesn't, it says 'do you have a Google
> password' and Google is one hell of  brand.  I think what we are trying
> to get to is what do we say in the "foo.com" label, when we don't have a
> foo ;-)

I understood main gripe to be that the label be associated with
education rather than the federated, "whitelist-based", reasonably
secure trust-model we assume.

Maybe we want SPs to say something like:

"Do you have a federated identity?
 - start typing the name of your provider here:"

Instead of:

"Are you part of the R&E community?"

	Cheers Leif
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkre70EACgkQ8Jx8FtbMZnf1xgCcDRZ21w4aEO3eqc6dh0G62UfT
6agAn3WD80A9PHAqA7lzC2mkEpydoLyC
=mL8K
-----END PGP SIGNATURE-----