[OpenID] openid query
Paul Madsen
paulmadsen at rogers.com
Thu Feb 28 15:47:31 UTC 2008
agree, see
http://www.projectliberty.org/strategic_initiatives/identity_assurance
IAF`s lower levels of assurance might be a fit
paul
Eddy Nigg (StartCom Ltd.) wrote:
> Vipin Rathor wrote:
>> hi,
>> Thanks for ur replies.
>>
>> Since trust and security between relying party (RP) and OpenID
>> provider (OP) is a concern and there is no pre-existing trust
>> relationship between them, then why not to use the digital certificate
>> (PKI) based approach?
>> Let's say, both RP and OP have a X.509 certificate and whenever they
>> contact each other, they check other's certificate and do the chain
>> validation. Only when both are satisfied, they communicate with each
>> other.
> This only solves the problem of eavesdropping, not trust. In order to
> provide a trust vehicle, a federated openid network or something like
> this must be created where participants adhere to certain standards
> and requirements (verifiable).
>
> --
> Regards
>
> Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org>
> Jabber: startcom at startcom.org <xmpp:startcom at startcom.org>
> Blog: Join the Revolution! <http://blog.startcom.org>
> Phone: +1.213.341.0390
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
>
> ------------------------------------------------------------------------
>
> No virus found in this incoming message.
> Checked by AVG Free Edition.
> Version: 7.5.516 / Virus Database: 269.21.1/1301 - Release Date: 27/02/2008 8:35 AM
>
--
Paul Madsen e:paulmadsen @ ntt-at.com
NTT p:613-482-0432
m:613-282-8647
aim:PaulMdsn5
web:connectid.blogspot.com
More information about the general
mailing list