dotgnu-auth
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Auth]Virtual Identity proposal

From: Tolga KILICLI
Subject: Re: [Auth]Virtual Identity proposal
Date: Tue, 23 Oct 2001 13:37:12 +0300
User-agent: Mutt/1.2.5i 
all the things seems ok but, via vis you are giving users  a tool for 
manipulating identity information.

Why not, building a backend that check only the ID of the user via browser. IE 
and Netscape is doing this when the web server requests the public key auth. 
In this way dotGNU can five the mobility to the users. 

And if you want a secure place to hold the keys you should use a smart card. By
using smart cards also you can support your business clients to use the card 
instead of files.

Smart card issuing increases costs of the system on per user basis, but gives
mobility and security to the users and also clients.

tk.


> 
> Advantages:
> * Allows secure revealing of information over internet automatically.
> To facilitate easy setup for a trusted site, Joe could enter a generic
> permissions section.  When the vis adds a new service/domain to
> it'sconfiguration, it could request Joe what default permissions to use.
> 
> Problem:
> 
> * A user who switches computers frequently will have problems with
> different vis setups/inquisitive admin
> 
> Solution 1: have the ability to store settings, etc, on a server that
> can be retrieved by the vis with a password
> Solution 2: be able to encrypt files and copy them from computer to
> computer, unlocking them with a password.  To encrypt it have all the
> necessary files stored into a single file, which is then compressed and
> encrypted.  This file could allow easy use of multiple users on single
> user systems (such as win95/win98).  *nix users will not need to worry,
> unless they are worried about administrators.
> 
> Copywrite under the GNU Free Documenation License
> (http://www.gnu.org/copyleft/fdl.html) by Mark Saward
> 
> 
> _______________________________________________
> Auth mailing list
> address@hidden
> http://subscribe.dotgnu.org/mailman/listinfo/auth

-- 
As we enjoy great advantages from inventions of others, 
we should be glad of an opportunity to serve others by any invention of ours; 
and this we should do freely and generously.
                                                       - Benjamin Franklin
reply via email to
[Prev in Thread] Current Thread [Next in Thread]