and optionally, iii) That this same "someone" has recently supplied a shared secret indicating that he or she is "logged in" to his or her account at the IdP.
Alternatively, that the same "someone" has recently demonstrated their possession of a non-shared secret (some OP's support the use of private/public key pairs for authentication).
-Shade _______________________________________________ specs mailing list [email protected] http://lists.openid.net/mailman/listinfo/openid-specs
