<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<META NAME="Generator" CONTENT="MS Exchange Server version 6.5.7651.59">
<TITLE>Attestation</TITLE>
</HEAD>
<BODY>
<!-- Converted from text/rtf format -->
<P><FONT SIZE=2 FACE="Arial">The term attestation has a distinct legal meaning but within an IT context may be used interchangably with the notion of certification or periodic review. There are of course several levels of attestation. I propose that minimally OpenID incorporate the first notion where someone certifies you are who you say you are.</FONT></P>
<P><FONT SIZE=2 FACE="Arial">In an enterprise environment, a manager may attest that a particular employee is still employed by them. In a user-centric world, if we could have the ability to digitally "sign" either a managed-card (in an enterprise setting) or across providers in a user setting along with capturing transactional attributes such as when it was signed, how long is this signature good for, the ability to revoke, etc we should be covered.</FONT></P>
<P><FONT SIZE=2 FACE="Arial">Finally, an attestor should be able to choose from an enumeration of relationships such as spouse, manager/employer, service provider/customer, etc.</FONT></P>
<P><FONT SIZE=2 FACE="Arial">What would it take to change the OpenID XML to incorporate?</FONT>
</P>
<FONT SIZE=3><BR>
<BR>
*************************************************************************<BR>
This communication, including attachments, is<BR>
for the exclusive use of addressee and may contain proprietary,<BR>
confidential and/or privileged information. If you are not the intended<BR>
recipient, any use, copying, disclosure, dissemination or distribution is<BR>
strictly prohibited. If you are not the intended recipient, please notify<BR>
the sender immediately by return e-mail, delete this communication and<BR>
destroy all copies.<BR>
*************************************************************************<BR>
</FONT>
</BODY>
</HTML>