Michael Wechner wrote: > Jann Forrer schrieb: >> [ ... ] >>> >>> what is the difference to OpenID? >> I do not know OpenID very well but as far as I know one of the main >> problem at the moment is the missing trust infrastructure for OpenID >> Providers. > > I am not sure I really understand what you mean with "missing trust > infrastructure", but I would consider > A service provider needs to trust the information he gets from the Identity-Provider (e.g. that certain attributes belongs to a person). That means an organisation is necessary in order to set up / and control guidelines for the identity provider. AAI is such an infrastructure (using shibboleth as the sofware). You could do that with openId, too but you have to define and build (or enhance) the necessary infrastructure. That certainly needs some time. BTW do you know an application which restrict access to important information based on OpenID?
However I recently saw that within the UK they test an OpeID gateway which seems to provide a bridge between OpenID and shibboleth. [ ... ] Jann --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
