Hangout for experimental confirmation and demonstration of software, computing, and networking. The exercises don't always work out. The professor is a bumbler and the laboratory assistant is a skanky dufus.

Recent Items
 
When to Optimize, When to Tune
 
Smartcard Trustworthiness
 
Emulating Obsolete Document Formats
 
If Metadata Is the Answer, What Is the Question?
 
Identifying the Objective, not its Location
 
Criteria for Web Application Security
 
Who Can You Trust?
 
Perfecting Secure Coding
 
The Future of Software Tools
 
It's You? Ping You're It!

Archives
2004-06-13
2004-06-20
2004-06-27
2004-08-29
2004-09-05
2004-09-12
2004-09-19
2004-10-10
2004-10-24
2004-11-07
2004-11-28
2004-12-05
2004-12-12

Sxip - Pronounced "Skip" Is Digital Identity

Sxip.org - Sxip Overview.  2004-10-31: The first thing I notice about this site is that it uses HTTPS from the get-go. Recommended by Martin Terre Blanche as an open mechanism for single sign-on, Martin also raises concern for the root-authority model that appears to be at the heart of the Sxip open-source methodology.

Since all of my web sites do ASP, I can't wait to see if the PHP form of the developer's kit can be converted.

One cool thing the folks did (beside find a four-letter domain name, remarkable by itself), is have sxip.org for the general stuff, sxip.net for the technical stuff, and sxip.com for the business stuff.  I notice other teams often use .org for the open-source site, .com for the commercial site.

Martin expresses a concern for the reliability of the model and what can make it dependable, including from a dependable top-level root. I wonder if it could be made to work with a reputation-oriented trust system (in the OpenPGP manner) or whether it really must be authority based.

Since I have learned about Ping Identity, I wonder what the connection is between these two open-source methodologies.  It would be nifty to do the whole job in JavaScript, especially for the lightweight authentication and attestation/assertion machinery that I am looking for.

posted by orcmid at 12/1/2004 06:30:25 PM, rating data by NewsGator Online