Refeds


Subject Re: draft charge, refeds working group on attribute release
From Leif Johansson <leifj@xxxxxxxx>
Date Fri, 01 Jul 2011 19:55:35 +0200

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 07/01/2011 07:15 PM, Cantor, Scott E. wrote:
> On 7/1/11 1:13 PM, "Leif Johansson" <leifj@xxxxxxxx> wrote:
>>
>>> That's one reason. Another is the scalability (or lack there of) of the
>>> trust management and key management mechanisms available. Usually there
>>> are none, with a commensurate loss of security. And there's the question
>>> of identifiers and other attributes, because dealing with more IdPs
>>> means
>>> accomodating variance.
>>>
>>
>> Yeah we need metadata for openidc ;-)
> 
> Which is easy. But it will never supported by any of the "simple" modules
> that these apps want to use. We couldn't even get billion dollar companies
> to support it for SAML.

Libraries can be simple by hiding internal complexity. Trust management
and discovery could be made simple from the point of view of the
application.

	Cheers Leif

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk4OChQACgkQ8Jx8FtbMZnfE2wCfeFXiq78Ofrzj2OXhg9o1/sRz
FkwAnR9NTLzCxh3yrtTAl/H3RrQokulN
=YGsF
-----END PGP SIGNATURE-----