The badge of the Italian
person says ???Italiano, English???; the one of the Chinese person
says ??? , English.??? This time the Chinese person will know
that if he wants to be understood he can speak English. A glance
at the two badges is enough to understand each other??™s capabilities
and negotiate a common ground.
Identities are made
of claims
If two systems are
capable of communicating
in many
different ways, they
have to negotiate to
discover which
ones will work for
both
Trust 125
The same principle can be applied to accommodating the diverse
technological capabilities of the entities involved in an
identity-related process. The Identity Metasystem should provide
a means through which the various parties can negotiate which
technologies among the ones supported will be used for that
speci?¬?c transaction. If a subject can express his identity with
SAML or Extensible rights Markup Language (XrML), and the RP
he??™s invoking can accept Kerberos or SAML tokens, the Identity
Metasystem will provide a way for the two to agree on using
SAML. One frequent question that arises at this point is what
happens when there is no match. If the subject supports only
X.
Pages:
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222