<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.5450.4" name=GENERATOR></HEAD>
<BODY
style="WORD-WRAP: break-word; -khtml-nbsp-mode: space; -khtml-line-break: after-white-space">
<DIV><SPAN class=656314721-25012007><FONT face=Arial color=#0000ff
size=2>Attempting to figure out to model deeper authorizations that aren't based
solely on the identity and require additional information. In your first
example, it didn't take into consideration what the individual can do, only that
they had different identities which needed to be correlated.</FONT></SPAN></DIV>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<DIV class=OutlookMessageHeader dir=ltr align=left><FONT face=Tahoma
size=2>-----Original Message-----<BR><B>From:</B> Dick Hardt
[mailto:dick@sxip.com]<BR><B>Sent:</B> Thursday, January 25, 2007 4:43
PM<BR><B>To:</B> McGovern, James F (HTSC, IT)<BR><B>Cc:</B>
specs@openid.net<BR><B>Subject:</B> Re: Federated
Authorization<BR><BR></FONT></DIV><BR>
<DIV>
<DIV>On 25-Jan-07, at 1:36 PM, McGovern, James F ((HTSC, IT)) wrote:</DIV><BR
class=Apple-interchange-newline>
<BLOCKQUOTE type="cite">
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=844353321-25012007>Modify your scenario as
follows:</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=844353321-25012007></SPAN></FONT> </DIV>
<DIV><FONT size=+0><SPAN class=844353321-25012007>
<DIV><FONT face=Arial><FONT color=#0000ff><FONT size=2>- Tthe College of
Physicians and Surgeons says she is a surgeon<SPAN class=844353321-25012007>
and is board certified for X number of
procedures</SPAN></FONT></FONT></FONT></DIV>
<DIV><FONT face=Arial><FONT color=#0000ff><FONT size=2>- A particular
hospital says she is part of their team<SPAN class=844353321-25012007>.
Likewise, they also know that she plays different roles at other hospitals.
Minimally we want to know when her admission priveleges
expire</SPAN></FONT></FONT></FONT></DIV>
<DIV><FONT face=Arial><FONT color=#0000ff><FONT size=2>- The university says
she is part of their faculty<SPAN class=844353321-25012007> and teachs in
both the business school and engineering
school.</SPAN></FONT></FONT></FONT></DIV>
<DIV><FONT face=Arial><FONT color=#0000ff><FONT size=2>- the government says
she is the business owner of her surgical practice<SPAN
class=844353321-25012007> and also serves in a board capacity on other
boards</SPAN></FONT></FONT></FONT></DIV>
<DIV><FONT face=Arial><FONT color=#0000ff><FONT size=2><SPAN
class=844353321-25012007></SPAN></FONT></FONT></FONT> </DIV>
<DIV><FONT face=Arial><FONT color=#0000ff><FONT size=2><SPAN
class=844353321-25012007>Hopefully we can develop specifications which go
deeper than just matching/correlation of identity and
attribute.</SPAN></FONT></FONT></FONT></DIV></SPAN></FONT></DIV></BLOCKQUOTE><BR></DIV>
<DIV>Hi James</DIV>
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>I don't follow your last comment. Would you elaborate?</DIV>
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>-- Dick</DIV></BLOCKQUOTE><FONT SIZE=3><BR>
<BR>
*************************************************************************<BR>
This communication, including attachments, is<BR>
for the exclusive use of addressee and may contain proprietary,<BR>
confidential and/or privileged information. If you are not the intended<BR>
recipient, any use, copying, disclosure, dissemination or distribution is<BR>
strictly prohibited. If you are not the intended recipient, please notify<BR>
the sender immediately by return e-mail, delete this communication and<BR>
destroy all copies.<BR>
*************************************************************************<BR>
</FONT>
</BODY></HTML>