Sign in or 
| Version | User | Scope of changes |
|---|---|---|
| Apr 24 2009, 9:21 AM EDT (current) | gcraigburton | 210 words added |
| Apr 24 2009, 9:21 AM EDT | gcraigburton |
Changes
Key: Additions Deletions
Beyond being used to login to sites, information cards can also facilitate other kinds of interactions. The information card model provides great flexibility because cards can be used to convey any information from an identity provider to a relying party that makes sense to both of them and that the person is willing to release. The data elements carried in information cards are called claims.
One possible use of claims is online age verification. With identity providers providing proof-of-age cards, and relying parties accepting them for purposes such as online wine sales; other attributes could be verified as well. Another is online payment, where merchants could accept online payment cards from payment issuers, containing only the minimal information needed to facilitate payment. Role statements carried by claims can be used for access control decisions by relying parties.
For example, a traveler could be a flight passenger as well as a hotel guest, if the airline and the hotel use a federated identity management system. This means that they have a contracted mutual trust in each other's authentication of the user. The traveler could identify him/herself once as a customer for booking the flight and this identity can be carried over to be used for the reservation of a hotel room.
One possible use of claims is online age verification. With identity providers providing proof-of-age cards, and relying parties accepting them for purposes such as online wine sales; other attributes could be verified as well. Another is online payment, where merchants could accept online payment cards from payment issuers, containing only the minimal information needed to facilitate payment. Role statements carried by claims can be used for access control decisions by relying parties.
For example, a traveler could be a flight passenger as well as a hotel guest, if the airline and the hotel use a federated identity management system. This means that they have a contracted mutual trust in each other's authentication of the user. The traveler could identify him/herself once as a customer for booking the flight and this identity can be carried over to be used for the reservation of a hotel room.
