...
The InCommon Certificate Authority already gives us one potential method of support for entity federation. A client could use its certificate to register with an entity registry, or to get a credential from an authorization service.
Emerging Issues
| IssueID | Issue Title | Notes | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|
1 | Entities as Agents (Clients, Services)
| API Security turns out to be the driver for taking up non-person entities | ||||||||
2 | Authorization policies have a fundamental structure
| |||||||||
| 3 | ||||||||||
| 4 |