<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Robert, can you briefly explain or point to the commercial conditions
for signing up as an RP to SuisseID (which I did not notice on the
SuisseID site).<br>
<br>
We have a similar situation here in Denmark from mid 2010, where it
will be trivial to bridge from SAML to OpenID from a technical
standpoint, but where the upcoming government IDP (outsourced to a
confederation of banks) has a very IDP centric business model, which
may cause problems in a usercentric OpenID scenario.<br>
<br>
Robert Ott wrote:
<blockquote cite="mid:6DE08B2E-C04F-4032-B5C3-D299563E6723@jnet.ch"
type="cite">
<pre wrap="">We are currently in the process of bringing OpenID to attention with regards to SuisseID (<a class="moz-txt-link-freetext" href="http://www.suisseid.ch">http://www.suisseid.ch</a>). Currently, the SuisseID specification solely defines SAML to be used for that purpose. I'm sure we'll be able to bridge that SAML protocol to OpenID give SuisseID users the possibility to broader use theirs SuisseID for all OpenID enabled sites.
Regards
Robert
On 19.12.2009, at 13:00, <a class="moz-txt-link-abbreviated" href="mailto:openid-eu-request@lists.openid.net">openid-eu-request@lists.openid.net</a> wrote:
</pre>
<blockquote type="cite">
<pre wrap="">Send eu mailing list submissions to
<a class="moz-txt-link-abbreviated" href="mailto:openid-eu@lists.openid.net">openid-eu@lists.openid.net</a>
To subscribe or unsubscribe via the World Wide Web, visit
<a class="moz-txt-link-freetext" href="http://lists.openid.net/mailman/listinfo/openid-eu">http://lists.openid.net/mailman/listinfo/openid-eu</a>
or, via email, send a message with subject or body 'help' to
<a class="moz-txt-link-abbreviated" href="mailto:openid-eu-request@lists.openid.net">openid-eu-request@lists.openid.net</a>
You can reach the person managing the list at
<a class="moz-txt-link-abbreviated" href="mailto:openid-eu-owner@lists.openid.net">openid-eu-owner@lists.openid.net</a>
When replying, please edit your Subject line so it is more specific
than "Re: Contents of eu digest..."
Today's Topics:
1. Privacy and Security Risks when Authenticating on the
Internet with European eID Cards (Henrik Biering)
2. Re: Privacy and Security Risks when Authenticating on the
Internet with European eID Cards (Martin Paljak)
3. Re: Privacy and Security Risks when Authenticating on the
Internet with European eID Cards (Nat Sakimura)
----------------------------------------------------------------------
Message: 1
Date: Fri, 18 Dec 2009 14:35:14 +0100
From: Henrik Biering <a class="moz-txt-link-rfc2396E" href="mailto:hb@netamia.com"><hb@netamia.com></a>
Subject: [OpenID - Eu] Privacy and Security Risks when Authenticating
on the Internet with European eID Cards
To: <a class="moz-txt-link-abbreviated" href="mailto:openid-eu@lists.openid.net">openid-eu@lists.openid.net</a>
Message-ID: <a class="moz-txt-link-rfc2396E" href="mailto:4B2B8512.8060100@netamia.com"><4B2B8512.8060100@netamia.com></a>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
ENISA has recently published a new report on:
Privacy and Security Risks when Authenticating on the Internet with
European eID Cards
<a class="moz-txt-link-freetext" href="http://www.enisa.europa.eu/act/it/eid/eid-online-banking">http://www.enisa.europa.eu/act/it/eid/eid-online-banking</a>
It references several other documents, including a previous report:
Privacy Features of European eID Card Specifications
<a class="moz-txt-link-freetext" href="http://www.enisa.europa.eu/act/it/eid/eid-cards-en">http://www.enisa.europa.eu/act/it/eid/eid-cards-en</a>
Best Regards,
Henrik Biering
=henrik
------------------------------
Message: 2
Date: Fri, 18 Dec 2009 16:39:25 +0200
From: Martin Paljak <a class="moz-txt-link-rfc2396E" href="mailto:martin@paljak.pri.ee"><martin@paljak.pri.ee></a>
Subject: Re: [OpenID - Eu] Privacy and Security Risks when
Authenticating on the Internet with European eID Cards
To: Henrik Biering <a class="moz-txt-link-rfc2396E" href="mailto:hb@netamia.com"><hb@netamia.com></a>
Cc: <a class="moz-txt-link-abbreviated" href="mailto:openid-eu@lists.openid.net">openid-eu@lists.openid.net</a>
Message-ID: <a class="moz-txt-link-rfc2396E" href="mailto:DF34BFE5-19B0-48F5-A789-5C0A1DCEE67D@paljak.pri.ee"><DF34BFE5-19B0-48F5-A789-5C0A1DCEE67D@paljak.pri.ee></a>
Content-Type: text/plain; charset=us-ascii
On 18.12.2009, at 15:35, Henrik Biering wrote:
</pre>
<blockquote type="cite">
<pre wrap="">ENISA has recently published a new report on:
Privacy and Security Risks when Authenticating on the Internet with European eID Cards
<a class="moz-txt-link-freetext" href="http://www.enisa.europa.eu/act/it/eid/eid-online-banking">http://www.enisa.europa.eu/act/it/eid/eid-online-banking</a>
</pre>
</blockquote>
<pre wrap="">As we can see, there is no real adoption or probably even knowledge (on how to apply) of OpenID on that level.
But there is a single mention of OpenID(.ee)!
--
Martin Paljak
<a class="moz-txt-link-freetext" href="http://martin.paljak.pri.ee">http://martin.paljak.pri.ee</a>
+372.515.6495
------------------------------
Message: 3
Date: Sat, 19 Dec 2009 11:51:31 +0900
From: Nat Sakimura <a class="moz-txt-link-rfc2396E" href="mailto:sakimura@gmail.com"><sakimura@gmail.com></a>
Subject: Re: [OpenID - Eu] Privacy and Security Risks when
Authenticating on the Internet with European eID Cards
To: Martin Paljak <a class="moz-txt-link-rfc2396E" href="mailto:martin@paljak.pri.ee"><martin@paljak.pri.ee></a>
Cc: <a class="moz-txt-link-abbreviated" href="mailto:openid-eu@lists.openid.net">openid-eu@lists.openid.net</a>
Message-ID:
<a class="moz-txt-link-rfc2396E" href="mailto:bf26e2340912181851m723dbaeavb83acf5644d0bd12@mail.gmail.com"><bf26e2340912181851m723dbaeavb83acf5644d0bd12@mail.gmail.com></a>
Content-Type: text/plain; charset=ISO-8859-1
As I understand, Lithuania is doing something on the national level.
Any updates on those?
=nat
On Fri, Dec 18, 2009 at 11:39 PM, Martin Paljak <a class="moz-txt-link-rfc2396E" href="mailto:martin@paljak.pri.ee"><martin@paljak.pri.ee></a> wrote:
</pre>
<blockquote type="cite">
<pre wrap="">On 18.12.2009, at 15:35, Henrik Biering wrote:
</pre>
<blockquote type="cite">
<pre wrap="">ENISA has recently published a new report on:
Privacy and Security Risks when Authenticating on the Internet with European eID Cards
<a class="moz-txt-link-freetext" href="http://www.enisa.europa.eu/act/it/eid/eid-online-banking">http://www.enisa.europa.eu/act/it/eid/eid-online-banking</a>
</pre>
</blockquote>
<pre wrap="">As we can see, there is no real adoption or probably even knowledge (on how to apply) of OpenID on that level.
But there is a single mention of OpenID(.ee)!
--
Martin Paljak
<a class="moz-txt-link-freetext" href="http://martin.paljak.pri.ee">http://martin.paljak.pri.ee</a>
+372.515.6495
_______________________________________________
eu mailing list
<a class="moz-txt-link-abbreviated" href="mailto:eu@lists.openid.net">eu@lists.openid.net</a>
<a class="moz-txt-link-freetext" href="http://lists.openid.net/mailman/listinfo/openid-eu">http://lists.openid.net/mailman/listinfo/openid-eu</a>
</pre>
</blockquote>
<pre wrap="">
--
Nat Sakimura (=nat)
<a class="moz-txt-link-freetext" href="http://www.sakimura.org/en/">http://www.sakimura.org/en/</a>
<a class="moz-txt-link-freetext" href="http://twitter.com/_nat_en">http://twitter.com/_nat_en</a>
------------------------------
_______________________________________________
eu mailing list
<a class="moz-txt-link-abbreviated" href="mailto:eu@lists.openid.net">eu@lists.openid.net</a>
<a class="moz-txt-link-freetext" href="http://lists.openid.net/mailman/listinfo/openid-eu">http://lists.openid.net/mailman/listinfo/openid-eu</a>
End of eu Digest, Vol 28, Issue 17
**********************************
</pre>
</blockquote>
<pre wrap=""><!---->
_______________________________________________
eu mailing list
<a class="moz-txt-link-abbreviated" href="mailto:eu@lists.openid.net">eu@lists.openid.net</a>
<a class="moz-txt-link-freetext" href="http://lists.openid.net/mailman/listinfo/openid-eu">http://lists.openid.net/mailman/listinfo/openid-eu</a>
</pre>
</blockquote>
</body>
</html>