IETF Logo Mail Archive

Re: [ogpx] A Review of Multi-Domain Use Cases [Was: Re: OpenID and OGP : beginning the discussion ...]

Carlo Wood <carlo@alinoe.com> Tue, 30 June 2009 15:45 UTC

Return-Path: <carlo@alinoe.com>
X-Original-To: ogpx@core3.amsl.com
Delivered-To: ogpx@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BD76A3A6E62 for <ogpx@core3.amsl.com>; Tue, 30 Jun 2009 08:45:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.328
X-Spam-Level:
X-Spam-Status: No, score=-1.328 tagged_above=-999 required=5 tests=[AWL=0.102, BAYES_00=-2.599, HELO_EQ_AT=0.424, HOST_EQ_AT=0.745]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5ul65WBMlVeg for <ogpx@core3.amsl.com>; Tue, 30 Jun 2009 08:45:39 -0700 (PDT)
Received: from viefep22-int.chello.at (viefep22-int.chello.at [62.179.121.42]) by core3.amsl.com (Postfix) with ESMTP id 819523A6924 for <ogpx@ietf.org>; Tue, 30 Jun 2009 08:45:38 -0700 (PDT)
Received: from edge01.upc.biz ([192.168.13.236]) by viefep16-int.chello.at (InterMail vM.7.09.01.00 201-2219-108-20080618) with ESMTP id <20090630135741.ZVNV8253.viefep16-int.chello.at@edge01.upc.biz>; Tue, 30 Jun 2009 15:57:41 +0200
Received: from mail9.alinoe.com ([77.250.43.12]) by edge01.upc.biz with edge id ADxe1c0150FlQed01Dxfhx; Tue, 30 Jun 2009 15:57:41 +0200
X-SourceIP: 77.250.43.12
Received: from carlo by mail9.alinoe.com with local (Exim 4.69) (envelope-from <carlo@alinoe.com>) id 1MLdqJ-0006X1-JA; Tue, 30 Jun 2009 15:57:51 +0200
Date: Tue, 30 Jun 2009 15:57:51 +0200
From: Carlo Wood <carlo@alinoe.com>
To: Morgaine <morgaine.dinova@googlemail.com>
Message-ID: <20090630135751.GA24477@alinoe.com>
References: <b8ef0a220906290413u5a7358eao300c2ff8ee1ab709@mail.gmail.com> <20090629114512.GC1053@alinoe.com> <b8ef0a220906290751s5131c401h1d55ace39348c89e@mail.gmail.com> <20090629161121.GA17251@alinoe.com> <20090629161815.GB17251@alinoe.com> <591737.89462.qm@web82608.mail.mud.yahoo.com> <3a880e2c0906291219t1990272fkb276979ebc97d292@mail.gmail.com> <897153.73396.qm@web82601.mail.mud.yahoo.com> <4A4926EE.5060509@lindenlab.com> <e0b04bba0906300003y18207430k95f9b8e901dcff87@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <e0b04bba0906300003y18207430k95f9b8e901dcff87@mail.gmail.com>
User-Agent: Mutt/1.5.18 (2008-05-17)
Cc: ogpx@ietf.org
Subject: Re: [ogpx] A Review of Multi-Domain Use Cases [Was: Re: OpenID and OGP : beginning the discussion ...]
X-BeenThere: ogpx@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Virtual Worlds and the Open Grid Protocol <ogpx.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ogpx>, <mailto:ogpx-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ogpx>
List-Post: <mailto:ogpx@ietf.org>
List-Help: <mailto:ogpx-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ogpx>, <mailto:ogpx-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jun 2009 15:45:39 -0000

On Tue, Jun 30, 2009 at 08:03:28AM +0100, Morgaine wrote:
>  1. Arbitrary in-world name tags, which have only one intent: to provide a
>     customer-satisfying visual name.
>  2. Globally unique identifiers, either UUID or formed by composition of N-part
>     local name @ issuing authority.
>  3. Entirely separate authentication credentials, in other words, unrelated to
>     1) or 2).
> 
> Keeping these 3 things entirely disjoint would serve us well in many ways,
> particularly in the key areas of scalability, flexibility, uniqueness, and
> user-friendliness / appropriateness.
> 
> Morgaine.

While I also totally agree-- I think there is something missing there.
The authentication credentials will be 'constant', of course, but the
way the above is formulated, it could very well be possible that 2) is
not constant (A new UUID could be generated every login).

However, it is necessary that 2) is sent to all the viewers that come
into contact with an agent and in order to be able to recognize/verify
that agent automatically as having been seen before, and not being
an imposter, or even to just be sure you can append to the correct
log file (for example), 2) has to be the same every login.

Therefore, I'd like to propose this:

 1. Arbitrary in-world name tags, which have only one intent: to provide a
    customer-satisfying visual name.
 2. Globally unique identifiers, either UUID or formed by composition of N-part
    local name @ issuing authority, that remain the same over logins for any
    given account and that are passed to every viewer that receives 1).
 3. Entirely separate authentication credentials, in other words, unrelated to
    1) or 2).


-- 
Carlo Wood <carlo@alinoe.com>

v2.8.7 | Report a Bug | By Email