On 19-Jan-06, at 11:56 PM, John Merrells wrote:
Ah yes, 'Third Party' is commonly taken to refer to a party outside
the transaction whom has given the first party something for
presentation to the second party. Goodness this is fun. I'll ponder
on an agreeable term for the second party. Oh, maybe that's the
term? Maybe we define FP, SP, and TP... 1P, 2P, 3P... where 1P is
the user's agent, 2P is the relying party, and 3P is the
authoritative source.
OK...
We have principal and non-principal parties, which gets Ben his
useful intermediaries.
And, now i use 'the other party' to refer to the party at the other
end... and then state clearly that it's either a relying party or an
asserting party. (Thanks Peter)
"An identity information exchange should involve just three principal
parties: the user, their agent, and another party. The user’s agent
is where they authenticate themselves and a repository where they
store their identity information and the other party is either a
relying party requesting identity information or an asserting party
providing identity information. Non-principal parties may participate
in an information exchange by providing facilitating services, such
as proxying, caching or agency."
John
_______________________________________________
dix mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dix
