On Feb 14, 2012, at 7:32 PM, Klaas Wierenga wrote: >> Here I would use the term relationship anonymity. In the draft I used the >> example of a MIX-net whereby the attacker is assumed to observe every >> communication between the sender and the receiver. In your description, I >> believe, you implicitly assume that the identity provider (passport >> authority) does not get to see every message that the subject exchanges with >> the relying party > > Well, even more, the idp should not know at all which rp I talk to in the > first place. >
Right. Relationship anonymity would provide you that property. >> In any case, it is a good example. I could add it as an additional example >> to the draft since it gets frequently mentioned in identity management >> discussions these days. > > Another example is paying cash for something that you don't want to be traced > to you That may be quite difficult to deploy in practice with all the laws in the financial sector... But we will ignore that use case for a moment. _______________________________________________ ietf-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/ietf-privacy
