Thursday, October 09, 2008

Threads

Tieing them up.
  1. TrustBearer is picked by Microsoft HealthVault as an approved OP.
  2. TrustBearer is proud of the distinction (perhaps seeing Msft as a strategic partner?)
  3. TrustBearer CEO vows to do whatever is necessary to keep strategic partner happy (educated guess)
  4. Along with others, TrustBearer proposes an extension to PAPE that would allow OPs to describe specific authentication mechanisms, rather than the PAPE 'policies'
Is it reasonable to assume that a certain strategic RP wants to see information as to particular authentication methods when a User SSOs in from TrustBearer - PAPE's abstractions not sufficient?

No comments: