[Auth]all AIS is supposed to be

dotgnu-auth

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Auth]all AIS is supposed to be

From:	david nicol
Subject:	[Auth]all AIS is supposed to be
Date:	Wed, 10 Jul 2002 00:58:06 -0500

a framework for extending an authentication realm.

The nature of the authentication that is used by the realm
is orthogonal to AIS. Passwords, v-codes, retinal scans, AIS
does not care how the AIS server figures out who the user is, it
just defines a protocol used for passing a ticket by way of
the user, and then opening up a back-channel through which
the ticket is exchanged for the identity.

I don't have a https cgi-bin to play with at this time so
my demonstration is all sniffable, but if the demonstration
scripts were put in a SSL web server and the aissri changed
accordingly and the client altered to support https (perhaps
by using LWP instead of composing a http/1.1 request right
there in a hereis string) it should work fine.

So that's all it ovelaps with.

[Prev in Thread]

Current Thread

[Next in Thread]

[Auth]all AIS is supposed to be, david nicol <=

Prev by Date: [Auth]meeting notes and LOC
Next by Date: Re: [Auth]meeting notes and LOC
Previous by thread: [Auth]meeting notes and LOC
Next by thread: [Auth]XMS specs
Index(es):
- Date
- Thread