I've been working with JaNet(UK) on providing a federation solution for
client applications such as mail readers, filesystem clients,
XMPP clients and the like. There are fairly good solutions such as Open
ID, Information Card and SAML for web applications. Within an
enterprise, you have Kerberos.
JaNet(UK) runs one of the world's largest SAML federations. As their
customers are beginning to take advantage of federated access for web
applications they are also asking how they can gain the same flexibility
for client-server applications. This customer demand appears to have
traction across the entire European academic community. I suspect that
it may find traction within enterprises and other environments.
We'd like to have a bar BOF at IETF 77 in California with a goal of an
actual BOF this summer in Europe at IETF 78. We invite you to join our
mailing list at
https://www.jiscmail.ac.uk/cgi-bin/webadmin?A0=moonshot-community where
we can discuss timing.
We plan to discuss the general problem and a proposed solution at the
bar BOF. I've already prepared a feasibility analysis for JaNet(UK)'s
solution; the analysis does discuss the problem some, gives an outline
of the solution and discusses technical issues and required standards
work in detail. By IETF we'll have a use case paper, an internet draft
on the solution,and a slide set.
we look forward to your input. You can find a bit more detail on my
blog at http://www.painless-security.com/blog/2010/02/12/moonshot1
You can find the feasibility analysis at
http://www.painless-security.com/wp/wp-content/uploads/2010/02/moonshot-feasibility-analysis.pdf
Thanks,
Sam Hartman
Painless Security
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf