[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [dss] Call for claimed identity scenarios
Hal, The scenario I was thinking of is that a user provides a given login name which is used for accessing their web services and used for the purposes of access control, but when signing requires to enter a particular name form that is used for signing which requires a different form of authentication than required just for peer to peer access control. Nick > -----Original Message----- > From: Hal Lockhart [mailto:hlockhar@bea.com] > Sent: 03 November 2003 17:52 > To: dss@lists.oasis-open.org > Subject: [dss] Call for claimed identity scenarios > > > On the call we had some discussion about whether DSS has authentication > requirements that can't be met by using other specs, such as > SSL/TLS or WSS. > > Please post to the list scenarios that should be supported. > > You don't need to state how they would be implemented. Please specify: > > Is the message constructed (including potential signatures) by > one party or > more than one? > What kinds of information is required to specify the identities > in question > (peer and claimed, etc.)? > What authentications would be performed to confirm each(sign, > passwd, none, > etc.)? > > I will try to match these against the mechanisms available in WSS. > > Hal > > > To unsubscribe from this mailing list (and be removed from the > roster of the OASIS TC), go to > http://www.oasis-open.org/apps/org/workgroup/dss/members/leave_wor > kgroup.php. > > >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]