??? Using terminology
that we introduce later in this chapter (see the section ???Identity Metasystem
Components as WS-* Features???), you can say that the data should be kept in a
user pro?¬?le rather than a token. We revisit this topic at length in Chapter 6.
In summary, the model based on the idea of an IP is dramatically different from
the outsourced authentication that the ?¬?rst Passport proposed. Although an RP
relies on an IP to assert claims about which it is competent, in the previous
example Passport would do the equivalent of storing the seat position and the
luggage allowance on the credit card back end.
Trust 123
model that also applies nicely to the of?¬‚ine world. However, we
need to lower the abstraction level if we want to give a practical
answer to the problem we decided to solve: adding an identity
layer to the Internet.
Let??™s take one step back and gather our thoughts. What do we
know so far? We want to solve the problem of propagating identities
through the Internet. We said that we want a system of
systems that would accommodate existing and future technologies
in a single Metasystem (as opposed to yet another technology
that would compete with the current and future offering).
Pages:
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219