A successful universal identi?¬?cation mechanism cannot address
just the needs of machines, regardless of how clever its metaprotocols
may be. Because the Subject role will almost always be
played by humans, the peculiarities and modus operandi of
human beings deserve at least the same amount of attention we
devoted to integrating the software components of the system.
The lessons learned, as summarized by the laws, must make
their way into any implementation of the Identity Metasystem.
The Dance of Identity
In this section, we describe in Identity Metasystem terms a couple
of classical authentication scenarios. By seeing the various
components and roles in action, you will gain a deeper understanding
of functions and relationships.
Note that the two examples are just the most basic templates.
With the three roles and the ?¬?ve components of the Identity
Trust 131
What About the Attacks in the Information-Storing Phase?
The section ???Consistent User Experience??? deals with two of the three kinds of
attacks we covered in Chapter 1, in the section ???Malware and Identity Theft.???
What about the third kind, the attacks in the information-storing and -processing
phases? The Identity Metasystem model can help in this case, too, but it cannot
give guarantees.
Pages:
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232