Hi Kevin,

Sounds like you're leaning towards a root authority for IdPs who can
audit procedures and verify protection in order to sign the IdP's
keys?

Joe blogger doesn't care much about identity assertions from an IdP,
but it's a reasonable bet to expect that a Bank might care...

Kind Regards,
Chris Drake


_______________________________________________
specs mailing list
specs@openid.net
http://openid.net/mailman/listinfo/specs

Reply via email to