Hangout for experimental confirmation and demonstration of software, computing, and networking. The exercises don't always work out. The professor is a bumbler and the laboratory assistant is a skanky dufus.

Recent Items
 
Collaborative Systems: Social Protocols
 
Secure Computer Infrastructure as a Journey
 
Component-Based Software Engineering Projects
 
TROST: Templates for Raising Open-System Trustworthiness
 
Blackbelted That!
 
Blackbelt this!
 
EDOS Integrates Open-Source Software
 
Tech Challenges I Want to See
 
Eliminating Mutual Incomprehension in Interoperability Arrangements
 
The Dimensions of E-Work

Archives
2004-06-13
2004-06-20
2004-06-27
2004-08-29
2004-09-05
2004-09-12
2004-09-19
2004-10-10
2004-10-24
2004-11-07
2004-11-28
2004-12-05
2004-12-12
2004-12-26
2005-01-30
2005-02-06
2005-03-06

Identity, Authentication, and Attestation Together

ACM News Service: Identity Management, Access Specs Are Rolling Along.  Greg Goth, in a February 2005 IEEE Internet Computing article observes how authentication (Liberty Alliance style) and Security Assertions (SAML 2.0 style) are going to be integrated.  There are three assertions of special interest: (1) assertion of an identity claim, (2) attributon of user-specific details, and (3) authorization of particular privileges.

It looks like there are the usual "standards"-group and sponsoring-organization rivalries at work here.  What's important for me is to see how this aspect of SAML 2.0 is adaptable to TROSTing in a disintermediated way.  I'm looking for a general system that does not require a specific single approach to authentication, especially for PKI.

posted by orcmid at 3/11/2005 11:42:00 PM, rating data by NewsGator Online