OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

xri message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Re: [xri] CanonicalID in XrdOne/TrustWorkflowByExample


On Wed, Dec 10, 2008 at 3:39 PM, Sakimura Nat <n-sakimura@nri.co.jp> wrote:
> Currently, in OpenID AuthN 2.0, it is the job of the OP to keep this string unique,
> but it does not work with delegation nor the case when OP went out of business etc.
> That's why I am proposing to move this task to CA.
> It is a regular job of a CA to do this "identification" and keep record of it. Then, why not
> levarage on it?  I think it is a reasonable thing to do.

I don't think this is reasonable, because there is no way to get such
a certificate today.  We can't build a spec on top of a certificate
issuance infrastructure that does not exist.

OTOH, I did write a wiki page that mentioned "unspecified out of band
key distribution", so maybe we need to refine that a bit.


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]