??? The rules of mapping to
WS-* elements are the same ones demonstrated in the previous
section. There is one thing that is worth highlighting: IP2 is still
implemented as an STS; however, in the brokered trust scenario
it performs pure claim transformation rather than sheer identity
provisioning. An STS that performs that kind of function is called
a Resource STS, or R-STS, because it takes care of mapping
claims for a resource as opposed to providing identities for
generic utilization. RSTSs are discussed more in depth in
Chapter 4, in the section about federation, and in Chapter 6.
Presenting Windows CardSpace
At ?¬?rst glance, many of the Identity Metasystem requirements
sounded almost utopist. Lucky for us, the WS-* speci?¬?cations
committees already covered many of the issues we had to face,
including the toughest ones involving wide industry consensus,
and now the Identity Metasystem can bene?¬?t from their work.
What sheer protocols can??™t address, however, is the human integration
aspect.
WS-* is the only
requirement here.
Every entity can be
implemented on
any platform or
technology
162 Hints Toward a Solution
The hard-learned lessons from poorly usable systems are captured
by the ???User Control and Consent??? law and, above all, by
the ???Human Integration??? law.
Pages:
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276