|
[XML-DEV Mailing List Archive Home] [By Thread] [By Date] [Recent Entries] [Reply To This Message] Re: Blended Authentication (AKA "Granular Access Control")
> 2) Create a cartel of like-minded businesses, based upon agreed uses of data
>interchanged, from which each party can assure itself that a requester of data has a
>need-to-know which the supplier of that data considers legitimate. This is the model
>for which Messrs. Chiusano and Cavnar-Johnson are discussing the implementation
>logistics of 'X.509 certs, SAML, Kerberos tickets, etc.'
>
Except for part of the original query saying "how could I add this to
WSDL," nothing in this dicussion thread has limited how data can be
used. Most of the discussion has been about how to present
authentication information. Authorization hasn't entered into it. SAML
et al aren't limited to your model described above. Authenticating the
parties can be orthogonal to the data and how it's being used, ya know.
/r$
|
PURCHASE STYLUS STUDIO ONLINE TODAY!Purchasing Stylus Studio from our online shop is Easy, Secure and Value Priced! Download The World's Best XML IDE!Accelerate XML development with our award-winning XML IDE - Download a free trial today! Subscribe in XML format
|
|||||||||

Cart








