Re: [Ideas] Diasambugating Identifier and Identity

Toerless Eckert <tte@cs.fau.de> Sat, 08 April 2017 01:31 UTC

Return-Path: <eckert@i4.informatik.uni-erlangen.de>
X-Original-To: ideas@ietfa.amsl.com
Delivered-To: ideas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C472A126DFB for <ideas@ietfa.amsl.com>; Fri, 7 Apr 2017 18:31:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7ofY5zimBy_r for <ideas@ietfa.amsl.com>; Fri, 7 Apr 2017 18:31:45 -0700 (PDT)
Received: from faui40.informatik.uni-erlangen.de (faui40.informatik.uni-erlangen.de [131.188.34.40]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE869127978 for <ideas@ietf.org>; Fri, 7 Apr 2017 18:31:44 -0700 (PDT)
Received: from faui40p.informatik.uni-erlangen.de (faui40p.informatik.uni-erlangen.de [131.188.34.77]) by faui40.informatik.uni-erlangen.de (Postfix) with ESMTP id D352958C4AE; Sat, 8 Apr 2017 03:31:40 +0200 (CEST)
Received: by faui40p.informatik.uni-erlangen.de (Postfix, from userid 10463) id B5A36B0BC41; Sat, 8 Apr 2017 03:31:40 +0200 (CEST)
Date: Sat, 08 Apr 2017 03:31:40 +0200
From: Toerless Eckert <tte@cs.fau.de>
To: Dino Farinacci <farinacci@gmail.com>
Cc: Robert Moskowitz <rgm-ietf@htt-consult.com>, Hesham Elbakoury <Hesham.ElBakoury@huawei.com>, Padma Pillay-Esnault <padma.ietf@gmail.com>, alexander.clemm@huawei.com, ideas@ietf.org, Axel.Nennker@telekom.de
Message-ID: <20170408013140.GA6386@faui40p.informatik.uni-erlangen.de>
References: <7443f8eb-181c-be31-8e80-9250b4a54e60@htt-consult.com> <CAG-CQxrADDG68WO6eA0v2Shg79d2Ro2pDEMMUMzCpf4iaCcQ=g@mail.gmail.com> <etPan.58dae51d.6489b56.379d@localhost> <644DA50AFA8C314EA9BDDAC83BD38A2E0DF8E814@SJCEML701-CHM.china.huawei.com> <C3855D43D6701846AD1151A536E7A0582405C202@SJCEML701-CHM.china.huawei.com> <e64ae39f16584eb0b2f92afa490b70aa@HE101655.emea1.cds.t-internal.com> <28a19ae6-bf14-a848-ba17-6b0d0bb2b887@htt-consult.com> <68650443-E3C6-4810-AD0E-B0EBC336BB1F@gmail.com> <52460b04-55a6-1ade-31f6-d27f814ccd06@htt-consult.com> <BA3B59A3-9B89-4DEB-8B92-BA0096A559F3@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <BA3B59A3-9B89-4DEB-8B92-BA0096A559F3@gmail.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ideas/YfRscS5z1K20OL_fHt8IrPDlQo4>
Subject: Re: [Ideas] Diasambugating Identifier and Identity
X-BeenThere: ideas@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Discussions relating to the development, clarification, and implementation of control-plane infrastructures and functionalities in ID enabled networks." <ideas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ideas>, <mailto:ideas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ideas/>
List-Post: <mailto:ideas@ietf.org>
List-Help: <mailto:ideas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ideas>, <mailto:ideas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Apr 2017 01:31:48 -0000

Inline

On Wed, Mar 29, 2017 at 09:08:32AM -0700, Dino Farinacci wrote:
> > For some there is seems to be no distinction between Identifier and Identity, but when you get to registration and services, Identity starts going into policy decisions.
> 
> But an Identifier identifies an entity, so when the entity is registered it is described by an Identifier value. When an identity is described in a policy statement, it is described by an Identifier value.
> 
> It is hard to disagree with my statement above because it is such a fundamental and basic definition.
  ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Well...

https://en.wikipedia.org/wiki/Digital_identity
  ISO/IEC 24760-1 defines identity as "set of attributes related to an entity"

So lets say GRIDS stores for an entity one or more identifier entries. Each identifier
entry has data like locators associated as well as some authenticator like a cert owned
by the entity.

Entity connects to grids, "asserts its identity" by a cryptographic proof of ownership
operation for the authenticator (eg: cert) and then it can change the data, eg: locators
associated with the identifier entry of the entity.

In this example, i guess (identifier, authenticator) is one identity of the the entity.
Maybe someone wants to spend 118 CHF on that ISO standard to get the IDEAS terminology
in compliance with it ? ;-))

How many disagreement points do i score ?

Cheers
    Toerless

> Dino
> 
> _______________________________________________
> Ideas mailing list
> Ideas@ietf.org
> https://www.ietf.org/mailman/listinfo/ideas