[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [xri] CanonicalID in XrdOne/TrustWorkflowByExample
On Wed, Dec 10, 2008 at 3:39 PM, Sakimura Nat <n-sakimura@nri.co.jp> wrote: > Currently, in OpenID AuthN 2.0, it is the job of the OP to keep this string unique, > but it does not work with delegation nor the case when OP went out of business etc. > That's why I am proposing to move this task to CA. > It is a regular job of a CA to do this "identification" and keep record of it. Then, why not > levarage on it? I think it is a reasonable thing to do. I don't think this is reasonable, because there is no way to get such a certificate today. We can't build a spec on top of a certificate issuance infrastructure that does not exist. OTOH, I did write a wiki page that mentioned "unspecified out of band key distribution", so maybe we need to refine that a bit.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]