The requirements can cover
the most diverse areas, and they can certainly address things
especially relevant to the metasystem such as expressing which
authentication technology should be used. WSMetadataExchange
makes it possible to acquire such requirements
directly online, keeping the need for coupling between
parties as low as possible. RPs can easily use the tools above for
expressing what it takes for engaging in business with them.
The WS-Security
token is the perfect
?¬?t for representing
an identity
WS-Policy and WSMetadataExchange
provide an effective
way of expressing
and negotiating
requirements
158 Hints Toward a Solution
WS-Policy and WS-Metadata exchange can easily tell the subject
that the web service of an online wine merchant requires a
SAML token from the STS of the department of motor vehicles
(driver??™s licenses), and that such a token must contain a claim
with the age of the S. An S can acquire the relevant policies via
WS-MetadataExchange and make a match between requirements
and capabilities. An IP that would expose its identityissuing
capabilities by mean of an STS could specify its
requirements using exactly the same speci?¬?cations.
Pages:
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271