[voiceinteraction] Move accounts/authentication box to individual IPA's? from Deborah Dahl on 2021-10-14 (public-voiceinteraction@w3.org from October 2021)

From: Deborah Dahl <Dahl@conversational-Technologies.com>
Date: Thu, 14 Oct 2021 14:35:56 -0400
To: <public-voiceinteraction@w3.org>
Message-ID: <024a01d7c12a$540267f0$fc0737d0$@conversational-Technologies.com>

Looking at the architecture diagram
https://w3c.github.io/voiceinteraction/voice%20interaction%20drafts/paArchitecture-1-2.htm#walkthrough, I'm wondering if the
accounts/authentication box should be removed from the Provider Selection Service box and added to each individual IPA Provider.
That way each individual IPA provider would be responsible for authenticating users according to its own requirements. Some IPA's
might want to be completely open and some, like a financial site, might have strict authentication requirements. It's hard to think
of how a central accounts/authentication step would be able to meet the needs of any arbitrary IPA.
This architecture would also be more in line with the Web, where each website is responsible for authenticating its own users.
Comments?

Received on Thursday, 14 October 2021 18:36:10 UTC