SEARCH
0-9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
PARTS:
Part 11
Part 12
Part 13
Part 14
Part 15
Part 16
Part 17
Part 18
Part 19
Part 20
Part 21
Part 22
Part 23
Part 24
Part 25
Prev | Current Page 294 | Next

Vittorio Bertocci, Garrett Serack, Caleb Baker

"Understanding Windows CardSpace: An Introduction to the Concepts and Challenges of Digital Identities"

Creating a Personal Card is as simple as a
couple of clicks in the CardSpace UI.
A Deeper Look at Information Cards
It is used to request a
security token from the
identity provider STS.
The Information Card
contains the web service
URL of the identity
provider??™s STS;
for example, URL = http://mySafeID.
The identity
provider STS keeps
the actual data,
such as credit card
numbers.
Figure 3-7 The claim values are kept at the STS, not on the card.
188 Windows CardSpace
 Managed Cards use an STS on a remote machine. This
service is typically provided by a third party, who can
provide a card to a user, and then after users have authenticated
themselves to that provider, issues a token
containing the data that the provider is willing to release.
This is accomplished through a WS-Trust RST/RSTR exchange,
as discussed in Chapter 2, in the section on WSTrust.
The process by which an IP provides this card to a
user is covered in greater detail later in this chapter.
Personal Information Cards
CardSpace supports user-created identities in the form of
Personal Cards. Although the claims in such identities are not
veri?¬?ed, they can be very useful. CardSpace essentially enables
users to convey information to an RP, without having to type the
same set of fairly commonly used ?¬?elds over and over.


Pages:
282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306
Beginners Guide to SQL Server Integration Services Using Visual Studio 2005 (page 110) Pro ASP.NET 3.5 Server Controls and AJAX Components (page 2407) Practical Reporting with Ruby and Rails (page 218)