Re: [pkng] WebID - RESTful Authentication for the Social Web
Henry Story <henry.story@bblfish.net> Wed, 13 October 2010 07:35 UTC
Return-Path: <henry.story@bblfish.net>
X-Original-To: pkng@core3.amsl.com
Delivered-To: pkng@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BBF253A6909 for <pkng@core3.amsl.com>; Wed, 13 Oct 2010 00:35:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.284
X-Spam-Level:
X-Spam-Status: No, score=-2.284 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, SARE_MILLIONSOF=0.315]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bGgGVfzaxq4I for <pkng@core3.amsl.com>; Wed, 13 Oct 2010 00:35:01 -0700 (PDT)
Received: from mail-ww0-f50.google.com (mail-ww0-f50.google.com [74.125.82.50]) by core3.amsl.com (Postfix) with ESMTP id 4FF793A67D4 for <pkng@irtf.org>; Wed, 13 Oct 2010 00:35:01 -0700 (PDT)
Received: by wwb39 with SMTP id 39so603700wwb.19 for <pkng@irtf.org>; Wed, 13 Oct 2010 00:36:16 -0700 (PDT)
Received: by 10.216.11.129 with SMTP id 1mr846035wex.90.1286955371486; Wed, 13 Oct 2010 00:36:11 -0700 (PDT)
Received: from bblfish.lan (89-145-220-151.xdsl.murphx.net [89.145.220.151]) by mx.google.com with ESMTPS id r18sm5885421weo.24.2010.10.13.00.36.10 (version=TLSv1/SSLv3 cipher=RC4-MD5); Wed, 13 Oct 2010 00:36:10 -0700 (PDT)
Mime-Version: 1.0 (Apple Message framework v1081)
Content-Type: text/plain; charset="us-ascii"
From: Henry Story <henry.story@bblfish.net>
In-Reply-To: <4CB55FB0.9010201@sunet.se>
Date: Wed, 13 Oct 2010 08:36:08 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <9C2199A2-A53B-495F-8CEE-ACC5725BF195@bblfish.net>
References: <7E307EC1-03E0-416D-B0FF-B157122F4727@bblfish.net> <4CB55FB0.9010201@sunet.se>
To: Leif Johansson <leifj@sunet.se>
X-Mailer: Apple Mail (2.1081)
Cc: pkng@irtf.org
Subject: Re: [pkng] WebID - RESTful Authentication for the Social Web
X-BeenThere: pkng@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Public Key Next Generation \(PKNG\) Research Group" <pkng.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/listinfo/pkng>, <mailto:pkng-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/pkng>
List-Post: <mailto:pkng@irtf.org>
List-Help: <mailto:pkng-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/pkng>, <mailto:pkng-request@irtf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Oct 2010 07:35:14 -0000
On 13 Oct 2010, at 08:28, Leif Johansson wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On 10/12/2010 10:41 PM, Henry Story wrote: >> Hi, >> >> just before closing down this mailing list you may be interested in WebID (aka foaf+ssl) which >> uses PKI based TLS in a decentralised manner without changing anything to the TLS communication, but >> by shifting the authentication algorithm server side. This allows one to use non CA signed certificates to log in globally. Trust is very flexible in this system, and is built on a web of published relationships in the Linked Data network. >> >> There is quite a lot of detailed information here: >> >> http://esw.w3.org/Foaf%2Bssl > > Does it support anything that looks like signing or is it just > authentication? Currently we have only just explored authentication. I am not sure how good the javascript APIs are at getting the browser to sign pieces of text after asking the user to select a key.... If they can be made to do that then the advantage of WebID is to possibly enable millions of people to have public keys. I think the payswarm folks want to put the certificate in a flash store, making it easier to do things like signing.... > > Cheers Leif > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.10 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iEYEARECAAYFAky1X7AACgkQ8Jx8FtbMZnemaACdGz+Cjf/bHlw0H6T2AqRHc8lp > PnwAoIx7S/AIiFfwFTVHiLBmc+pdygOy > =F4ID > -----END PGP SIGNATURE----- > _______________________________________________ > pkng mailing list > pkng@irtf.org > https://www.irtf.org/mailman/listinfo/pkng Social Web Architect http://bblfish.net/
- [pkng] WebID - RESTful Authentication for the Soc… Henry Story
- Re: [pkng] WebID - RESTful Authentication for the… Leif Johansson
- Re: [pkng] WebID - RESTful Authentication for the… Henry Story