Eric Rescorla wrote: > And you'd prefer to have your identity provider have a record > of every site you've visited? >
What if the identity provider is an identity subsystem either on your own computer or in some adjunct such as a smart card? Then this problem does not come up. See December 2004 USENIX Login: Security Special issue. Eliot _______________________________________________ dix mailing list [email protected] https://www1.ietf.org/mailman/listinfo/dix
