[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [xri] trusted discovery workflow
fuction(Reference R) returns Reference:I don't know - at this point things are so abstract that it's hard to tell which one is better - but I have a feeling that it might be easier to do "if K is NOT authoritative for lastAuthenticatedReference" than it is to do "currentAuthority = nextR.delegatedAuthority"
int MAX_ITERATIONS = the maximum number of hops you wish to follow before giving up
Reference lastAuthenticatedReference = R
for (iteration = 0; iteration < MAX_ITERATIONS; ++iteration)
if R is Null
// Discovery has failed
return Null
if R is authenticated
Key K = key_used_to_sign(R)
if K is NOT authoritative for lastAuthenticatedReference
// trust verification failed
return Null
// are we done?
if R has metadata of type T
return R
// authentication succeeded, but we haven't found our metadata yet.
// authentication means delegation
lastAuthenticatedReference = R
R = followReference(R, T)
I've put a proposal for a discovery work flow that results in a
trusted document on the wiki. Comments and criticism most welcome:
http://wiki.oasis-open.org/xri/XrdOne/TrustWorkflow
---------------------------------------------------------------------
To unsubscribe from this mail list, you must leave the OASIS TC that
generates this mail. Follow this link to all your TCs in OASIS at:
https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]