[OpenID] Google discovery prototype: host-meta from Google
Breno de Medeiros
breno at google.com
Thu Jul 16 20:16:07 UTC 2009
When you said 'removing 3rd party XRDS signers' this could be interpreted as
saying that the final XRD for party A should be signed by party A (i.e.,
that delegation was impossible). The XRI TC is considering delegation where
the initial signer must be trusted by the client as authoritative for party
A, but the final XRD can be signed by any key to which A has delegated via a
signature.
I don't think XRI TC will define what it means to be 'authoritative for
party A' prior to any delegation (i.e., force a concept of a trusted root
for each resource), because this logic could be application specific.
On Thu, Jul 16, 2009 at 6:14 AM, Manger, James H <
James.H.Manger at team.telstra.com> wrote:
> It does not sound like the mismatch is a temporary kludge just for a demo.
> Breno included “removing 3rd-party XRDS signers” as one of the changes
> that “would break adoption”.
>
>
--
--Breno
+1 (650) 214-1007 desk
+1 (408) 212-0135 (Grand Central)
MTV-41-3 : 383-A
PST (GMT-8) / PDT(GMT-7)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090716/74bc66c0/attachment.htm>
More information about the general
mailing list