SEARCH
0-9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
PARTS:
Part 12
Part 13
Part 14
Part 15
Part 16
Part 17
Part 18
Part 19
Part 20
Part 21
Part 22
Part 23
Part 24
Part 25
Prev | Current Page 311 | Next

Vittorio Bertocci, Garrett Serack, Caleb Baker

"Understanding Windows CardSpace: An Introduction to the Concepts and Challenges of Digital Identities"


Because the MEX information is instrumental in securing
the next steps, a malicious endpoint would be able to
communicate a false policy that could expose the user??™s
credentials when the user went to contact the false STS.
Using SSL ensures that CardSpace can acquire a certi?¬?-
cate to the endpoint.
 Identity. Identity is the X.509 certi?¬?cate used to provide
the identity of the issuer to the user. Typically, this is the
same certi?¬?cate used to digitally sign the Managed Card.
Second, the token service contains information about the
method used to authenticate to the STS in a user credential element,
using one of the four supported authentication types supported
by CardSpace for Managed Cards. The elements in the
user credential are the following:
 Display credential hint. A small message displayed to
the user before authentication. This can range from
???Please insert your smartcard now??? to ???Use your domain
credentials??? to ???Hello World!???
 X.509 V3 credential. An XML fragment describing the
X.509 certi?¬?cate required for authentication as a Base64-
encoded SHA1 thumbprint of the certi?¬?cate.
 Kerberos V5 credential. An empty element that indicates
that the STS requires a Kerberos token for authentication.


Pages:
299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323
Beginners Guide to SQL Server Integration Services Using Visual Studio 2005 (page 164) Pro ASP.NET 3.5 Server Controls and AJAX Components (page 140) Practical Reporting with Ruby and Rails (page 150)