[OpenID] PAPE and the Authentication Policies
Christoph Eunicke
christoph at eunicke.de
Sat Aug 9 14:22:19 UTC 2008
Anders Feder wrote:
> lør, 09 08 2008 kl. 11:21 +0200, skrev Christoph Eunicke:
>> Also since the addition of a policy would require to change both
>> (Provivder and RP), I don't see how additional policies could spread
>> out. Why should my RP request the additional policy
>> "using-a-blue-keyboard" if I already know that the only OP in the
>> world
>> that supports this policy is the one I've written.
>
> I'm not involved in the development of these standards, but the idea
> would be that a community of OpenID nodes with common security interests
> (say, a group of banks or a group of government agencies running both
> RP's and OP's) would be able to agree on a policy together and implement
> it swiftly among themselves, without having to go through a lengthy
> OpenID standards process.
Do I get you right? If you want to do homebrew-OpenID, feel free to do
so. No one else might understand you, but it is still standard-OpenID.
Why don't use the possibility to create an extension[1], that would be a
more suited way, at least in my eyes..
Regards,
Christoph
[1] http://openid.net/specs/openid-authentication-2_0.html#extensions
--
Christoph Eunicke
Computer Networks and Internet
Wilhelm Schickard Institute for Computer Science
University of Tuebingen, 72076 Tuebingen, Germany
More information about the general
mailing list