[Openid-specs-risc] Opt Out / Opt In

Stan Bounev (VeriClouds) stanb at vericlouds.com
Tue Oct 12 17:45:12 UTC 2021 

Tim, could you elaborate on #2 below?

Stan

From: Openid-specs-risc <openid-specs-risc-bounces at lists.openid.net> on behalf of Tim Cappalli via Openid-specs-risc <openid-specs-risc at lists.openid.net>
Date: Tuesday, October 12, 2021 at 7:21 AM
To: Openid-specs-risc at lists.openid.net <Openid-specs-risc at lists.openid.net>, smiel at cisco.com <smiel at cisco.com>
Subject: Re: [Openid-specs-risc] Opt Out / Opt In
Hi Shayne,


  1.  Not necessarily. End users are not usually aware of in-session events (defined by CAEP) whereas RISC is used in a more end-user centric manner as "account protection".
  2.  Because it is not for the operation / lifecycle of the protocol itself. It is a signal that the user made a change their account, in this case disabling account protection features.
HTH
tim
________________________________
From: Openid-specs-risc <openid-specs-risc-bounces at lists.openid.net> on behalf of Shayne Miel (smiel) via Openid-specs-risc <openid-specs-risc at lists.openid.net>
Sent: Monday, October 11, 2021 10:21
To: Openid-specs-risc at lists.openid.net <Openid-specs-risc at lists.openid.net>
Subject: [Openid-specs-risc] Opt Out / Opt In

Sorry for all the questions recently. I have a few more, this time about the RISC Opt Out / Opt In events<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fopenid.net%2Fspecs%2Fopenid-risc-profile-specification-1_0.html%23opt-out&data=04%7C01%7Ctim.cappalli%40microsoft.com%7Cac6190fef0e648d8722f08d98cc284c2%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637695590818372595%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=LK%2F6M6HQDnEqy9rNOTfQMSxATL7zpwLr6n3MrV%2BeR7g%3D&reserved=0>.


  1.  If a user opts out of RISC events, should they also be opted out of CAEP events?
  2.  Why is Opt Out/In status controlled with events instead of with the stream management API?
Thanks!
Shayne

[https://duo.com/assets/img/email/duo-logo-email-signature.gif]
[https://duo.com/assets/img/email/spacer.gif]
Shayne Miel
/ Engineering Technical Leader (he, him, his)

smiel at cisco.com<mailto:smiel at cisco.com>

(919) 923-6230

Duo.com<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fduo.com%2F&data=04%7C01%7Ctim.cappalli%40microsoft.com%7Cac6190fef0e648d8722f08d98cc284c2%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637695590818412569%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=ZxXmQdNHRevUVpBfO2o5A%2FSiey1FpXYhgt8w0BwwRcM%3D&reserved=0>


----------
Duo Security is now part of Cisco<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fduo.com%2Fabout%2Fpress%2Freleases%2Fcisco-completes-acquisition-of-duo-security&data=04%7C01%7Ctim.cappalli%40microsoft.com%7Cac6190fef0e648d8722f08d98cc284c2%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637695590818452547%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=rZFhsl1Kuxgm53gp9uDo5ZGVw9vNKiZayhVukaMz2JY%3D&reserved=0>.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-risc/attachments/20211012/911e7b6c/attachment.html>

More information about the Openid-specs-risc mailing list