OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Comment on sstc-saml-glossary-2.0 (also c loses AI #0114)


[Paul]>
>
>Prateek's definition for a federated identity, with its emphasis on an
>'identifier', would appear to exclude roles-based scenarios.
>
>To my mind, if a Principal's role attribute at one provider is 
>recognizable
>and understood at another, this is still a federated identity, albeit
>probably anonymous.
>
>Or, was the intent that 'a class of identifiers' in the 
>definition addressed
>this?
>
[\Paul]

I am also of the opionion that we haven't yet reached solid ground on this
issue. It is definitely very important that we include "role-based
scenarios" as first-class citizens of the federation ecosystem. It is not
clear to me that my proposed definition clearly includes such scenarios.

- prateek

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]