Hi, Rhys I agree with the point that credential re-use is more accurate. If someone prefers to use the result of network access authentication, the view of credential re-use is OK. If does not, one can choose to initiate another authentication for higher security, it also works. It MAY depend on local policy.
----------- Yinxing Wei Rhys Smith <[email protected]> 发件人: [email protected] 2011/11/03 07:11 收件人 Sam Hartman <[email protected]> 抄送 [email protected], [email protected], [email protected], [email protected] 主题 Re: [abfab] Please review the use case "4.x Federated Cross-Layer Access" On 2 Nov 2011, at 22:19, Sam Hartman wrote: I object to this going into the use case doc until we resolve the question about authentication vs credential re-use. I want wording that is neutral on that subject or that favors credential re-use. OK - you're right, it's important that this is made clear in the use case. Yinxing, what does the federated cross-layer idea that you're promoting actually do in terms of reuse of an authentication instance versus reuse of a credential to create new authentications? We need to make sure the description is accurate, and when it's accurate, we then need to make sure that there's consensus in this group that this (whatever your ideas are) is a good thing. R. -- Dr Rhys Smith: Identity, Access, and Middleware Specialist Cardiff University & JANET(UK) email: [email protected] / [email protected] GPG: 0xDE2F024C -------------------------------------------------------- ZTE Information Security Notice: The information contained in this mail is solely property of the sender's organization. This mail communication is confidential. Recipients named above are obligated to maintain secrecy and are not permitted to disclose the contents of this communication to others. This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the originator of the message. Any views expressed in this message are those of the individual sender. This message has been scanned for viruses and Spam by ZTE Anti-Spam system.
_______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
