[OpenID] JISC Access and Identity Management Call 08/09
Nate Klingenstein
ndk at internet2.edu
Thu Sep 3 18:36:30 UTC 2009
Peter,
I happen to disagree for numerous reasons, not least of which is that
the certificate can only have one issuer, while an XRD can point to a
handful of authority/reputation/federation services that can vouch for
the entity. I'm actually somewhat less interested in the distributed
signatures than I am in a pollable vetting authority.
But that gut feeling is precisely why you should go find a UK academic
and offer to help them hammer out a proposal for the solicitation. ;D
Take care,
Nate.
On Sep 3, 2009, at 6:23 PM, Peter Williams wrote:
> My gut feeling is that even if a revised mission is commended, a
> minor tweak of the existing SSL world can do 99% of what's being
> claimed for signed XRD and cross-domain delegations.
More information about the general
mailing list