OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

id-cloud message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [id-cloud] Discussion Topic - Authentication

We were discussing gaps in specifications and I mentioned mini CRLs that are
provided by a couple of vendors to support X.509 certificate validation.
There is no specification that I am aware of for mini CRLs. When CRLs are
large and/or bandwidth or memory is a issue such as downloading CRLs over
wireless to handheld devices, mini CRLs have their place. We have OCSP and
SCVP for validating small groups of certificates at a time. The systems that
sign the OCSP/SCVP responses based on a CRL are important in DR and COOP
scenarios since they can keep responding after a CRL has expired. There is a
pattern on SOAPatterns.org that further illustrates the COOP point:
http://www.soapatterns.org/federated_enterprise_authentication.php

Regards,

Robert Cope                 (703) 472-8128
CEO Homeland Security Consultants
http://homelandsecurityconsultants.net
A Service Disabled Veteran Owned Small Business Concern (SDVOSBC)



-----Original Message-----
From: Anil Saldhana [mailto:Anil.Saldhana@redhat.com] 
Sent: Monday, November 08, 2010 4:23 PM
To: id-cloud@lists.oasis-open.org
Subject: Re: [id-cloud] Discussion Topic - Authentication

  Bob had a use case related to certificates and ocsp.

On 11/01/2010 12:11 PM, Anil Saldhana wrote:
>  Hi All,
>    please add anything to the topic of Authentication that I have 
> missed. We are going to discuss authentication.
>
> Regards,
> Anil
>
>
> Topic:-   Authentication.
>
> Discussion Items:
> 1) Types of Authentication.
> 2) Levels of assurance with authentication.
> 3) Token Formats.
> 4) Multi factor authentication.
> 5) Single Sign On / Federated Identity.
> 6) External Authentication Services. 


---------------------------------------------------------------------
To unsubscribe from this mail list, you must leave the OASIS TC that
generates this mail.  Follow this link to all your TCs in OASIS at:
https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php

smime.p7s

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]