Category Archives: Federation architecture

Why is the configuration called metadata?

Posted on 03/02/2012 by david

Metadata is the ‘configuration’ of the identity federation. In a point-to-point-federation, where all entities must know each other, the configuration needs to be updated at all entities at regular intervals. Thus the name ‘metadata’. In a hub-and-spoke model, like WAYF, … Continue reading

Posted in Federation architecture, Federation stuff, Hub and spoke | Leave a comment

What’s the ‘purpose’? On consent dialogues, also in interfederation scenarios

Posted on 10/05/2011 by david

When users consent to data exchange, the consent dialogue must be ‘informed’. This means the user must understand what is going on. A tall order… The amount of personal information (the attribute release policy) must be balanced with the ‘purpose’ … Continue reading

Posted in Federation architecture, Federation stuff, Privacy, Usabillity | Leave a comment

User consent can be governed centrally but presented locally – letting the federation wear the “Cloak of Invisibility”.

Posted on 17/03/2011 by Jacob Steen Madsen

I saw a mail where Scott Cantor said that identity proxies (to his big regret?) might be the only way to make consent to data transfers scalable. Operating a federation hub I’ll just add to Scott’s statement that ensuring that … Continue reading

Posted in Federation architecture, Federation stuff, Hub and spoke, Usabillity | Leave a comment