NET Framework 3.5, 218-220
number of, 308
object tag, 174
Personal Cards
accepting at websites,
243-244
advantages, 189-190
claims supported by,
188-190
creating and editing,
212-214
de?¬?nition, 187
PPIDs (private personal
identi?¬?ers),
190-194, 337
when to use, 194
prompting users for, 294-295
roaming with, 340-341
selecting, 186
site-speci?¬?c card IDs, 195
supporting multiple
platforms/technologies, 270
Index 349
supporting with CardSpace.
SeeCardSpace
implementation
unknown cards,
handling, 286-287
website logon process, 224
information-entering phase,
17-20
information-processing
phase, 24-26
information-storing phase,
24-26, 131
information-transfer phase, 21-24
innovators, 270-271
integrity of digital signatures, 44
integrity check (tokens), 238, 241
interfaces, IBalance, 253
Internet
commerce, 333
lack of center, 91
lack of identity layer, 90-91
overview, 89-90
user acceptance of online
services, 91
value of information available
online, 10-16
intranet certi?¬?cates, 60-62
IPs (identity providers), 305
auditing IPs, 246-247
authentication levels, 314-315
bene?¬?ts of using, 316-317
branded Managed Cards, 341
business reasons for
becoming IPs
Internet commerce, 333
managing identities
for your organization,
325-327
managing identities used
by other organizations,
327-331
providing claims-based
services, 331-332
providing strong
authentication to
RPs, 333
databases, 335-336
de?¬?nition, 118-119
display tokens, 338
Extended Validation (EV)
SSL certi?¬?cates, 209, 271,
276, 341
migration issues, 320-321
misconceptions about
becoming an IP, 306-308
negotiating agreements
with, 318-320
nonauditing IPs, 246-247
overview, 119-121, 323-324
quali?¬?cations
CRAs (credit-reporting
agencies), 313
DMV (department of motor
vehicles), 313
grocery stores, 314
overview, 312
reliability, 338
relying on, 315
reputations, 336-339
responsibility to protect
privacy, 336, 339
selection criteria
airline mileage cards, 311
auto club cards, 310
credit cards, 311
driver??™s license or
government-issued ID
cards, 310
overview, 309
payment cards, 312
wholesale club cards, 309
issued token-based
authentication
de?¬?nition, 70
Kerberos, 72-76
authentication process,
72-74
principals, 72
TGS (ticket granting
service), 73-74
tickets, 72
overview, 69-71
SAML (Security Assertion
Markup Language), 76-79
issuer property (Information
Card browser extension),
228-229
IssuerIDs, 277
IssuerPolicy property
(Information Card browser
extension), 229
J-K
justi?¬?able parties (law of
identity), 98-101
Kerberos, 72-76, 197
authentication process, 72-74
principals, 72
TGS (ticket granting service),
73-74
tickets, 72
V5 credential (Managed
Cards), 201
keyloggers, 17
keys
asymmetric key
algorithms, 39-41
de?¬?nition, 36
PKI (Public Key Infrastructure)
CAs (certi?¬?cation
authorities), 44
de?¬?nition, 44
digital certi?¬?cates, 45
private keys, 41
public key cryptography,
39-41
public keys, 41
keySize policy option, 262
keystrokes, recording, 17
KeyType policy option, 262
L
laggards, 271
late majority consumers, 271
law enforcement, 8
laws of identity
consistent experience across
contexts, 108-110, 129-130
directed identity, 102-104
human integration, 105-107
justi?¬?able parties, 98-101
minimal disclosure for
constrained use, 96-98
overview, 92-93
350 Index
pluralism of operators and
technologies, 104-105
similarity to four tenets of
service orientation, 94
user control and consent,
94-96
liability for PII (personally
identi?¬?able information),
301-302
login page (CardSpace), 173
logon process (websites), 224
LOVE-LETTER-FORYOU.
Pages:
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496