[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
[higgins-dev] Re: R-Card Authentication
|
Hello,
Yes I was on working on this.
[1] sounds ok to me. Somehow I still like to think that an embedded XRD is just another kind of UDI, like a URI, XRI, etc; but I guess that's an implementation detail.
The UDI Resolution Spec (
http://www.azigo.com/udi/udi-resolution.html) says that an optional output of UDI Resolution is one or more "Authentication Material Types" and shows some example XRDs. The corresponding Higgins component (
http://wiki.eclipse.org/Org.eclipse.higgins.idas.udi) implements this.
And I created this page a while ago:
http://wiki.eclipse.org/Authentication_Materials. I think we should drop [3] and link to that page instead. It lists identifiers for Authentication Material Types that correspond to the actual classes that we currently have in IdAS. Currently those identifiers are not a superset of the m-card authentication identifiers, because strictly speaking they really are for "IdAS authentication", not "r-card authentication".
The "implied" type (which we used to call "SSO") could be anything. The idea was that whoever is resolving the UDI (e.g. a Selector) must already know what Authentication Materials to use (e.g. the username/password with which the Selector is signed in to the I-Card-Service).
Regarding serialization of Authentication Materials ([4]), hmm yes I was working on this too, but I'm afraid it isn't done yet. There has been discussion whether this serialization should be centrally defined or left to the applications that use it (IDS / XDI CP).
Markus