> It turns out that the EU data protection regime does not have any > opinions about an IdP either confirming or denying if an identifier is > associated with a user.
Following further discussion, it turns out that life isn't quite so simple, which largely breaks my proposal and so I retract it. However there is definitely value in the acceptor constructing the initiator name from data provided by the initiator, rather than the AAA server. Josh. JANET(UK) is a trading name of The JNT Association, a company limited by guarantee which is registered in England under No. 2881024 and whose Registered Office is at Lumen House, Library Avenue, Harwell Oxford, Didcot, Oxfordshire. OX11 0SG _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
