OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

bias message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: BIAS use cases

Cathy,

  Here are two use cases I put together.  Please let me know if this is 
the direction you want me to go with this. I will be on the call 
tomorrow.  However, I will only be able to be on for an hour.

  Have a good one, Ed.

                                Use cases high level.


1.User logs into his local client computer.  The user then launches a 
web browser and enters a url of a protected resource.  The resource 
requires user name, password, and biometrics  (finger print) for 
authentication.  The resource does authentication locally or the 
resource redirects the user to a authentication authority.  User enters 
user name and password for 1st factor of the authentication process.  
Then the user is asked to pass biometric data:
 
A. The biometric data is passed via a USB/serial device on the client 
computer.
B. The biometric data is passed via a device with an IP address.
C. The biometric template is stored on local device, the user manusha 
data is collected and both are passed for match.

  The requested resource uses the data for to authenticate or deny 
authentication of the user.


2.User logs into his local client computer.  The user then launches a 
web browser and enters a url of a protected resource.  The resource 
requires user name, password, and biometrics  (finger print) for 
authentication.  The resource does authentication locally or the 
resource redirects the user to a authentication authority.  User enters 
user name and password for 1st factor of the authentication process.  
Then the user is asked to pass biometric data:
 
A. The biometric data is passed via a USB/serial device on the client 
computer.
B. The biometric data is passed via a device with an IP address.
C. The biometric template is stored on local device, the user manusha 
(sp) data is collected and both are passed for match.

The requested resource uses the data to authenticate the user.  The user 
now wants to authenticate to a resource on another domain.  The user 
points the web browser to the URL, the resource requires user name, 
password and biometrics for authentication.  The user data is passed 
from the authenticated domain to the current resource for authentication 
on that domain. The current domains authentication mechanism 
authenticates or denies the users credentials.

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]