3819Re: [decentralization] De-centralizing single sign on.
- Sep 2, 2001On Sun, 2 Sep 2001, Chris Hanson wrote:
> Single sign-on needs a system where you authenticate to yourPassport does this...
> authentication provider, provide other parties with an authentication
> token of some sort, and have your provider validate that token.
> (This is the Kerberos model.)
> I've been wondering if this might be possible with cookies somehow;...using cookies, redirects, and some swiss numbers IIRC.
> the problem is that cookies only get sent to the site that set the
(A "swiss number" is an unguessable random number, which can come in handy
in surprisingly many situations. I will also head off the nit-pickers by
pointing out that "unguessable" and "random" are very tricky concepts that
have caused sleepless nights for many a cryptographer.)
Wesley Felter - wesley@... - http://felter.org/wesley/
- << Previous post in topic Next post in topic >>