WS-* Web Services Speci?¬?cations: The Rei?¬?cation
of the Identity Metasystem
The Identity Metasystem looks very much like the solution we
were searching for. However, what we have de?¬?ned so far is still
far from an implementation. We could devise systems in which
negotiations and exchanges are made by throwing paper airplanes
or swapping carrier pigeons and design those systems in
a way that (given adequate bridging technology) satis?¬?es the
requirements we have described so far. From a more pragmatic
How do we create
a real system that
satis?¬?es the requirements
of the
Identity
Metasystem?
WS-* Web Services Speci?¬?cations: The Rei?¬?cation of the Identity Metasystem 137
point of view, giving the Internet an identity layer requires supplying
a concrete, interoperable implementation of the components
we encountered in the preceding section: a claim-based
identity representation, a negotiation protocol, an encapsulation
protocol, and so on. Those components must guarantee state-ofthe-
art security at every stage, but they must be technology- and
platform-agnostic; they must enjoy as wide a consensus as possible
from the key players in the IT space and be accessible
from the widest variety of platforms, contexts, and connectivity
types.
Pages:
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240