W3C home > Mailing lists > Public > public-webpayments@w3.org > April 2013

Re: Webkeys, OpenID, WebID, OAuth etc..

From: Dave Longley <dlongley@digitalbazaar.com>
Date: Sun, 21 Apr 2013 14:17:52 -0400
Message-ID: <51742D50.8080309@digitalbazaar.com>
To: Henry Story <henry.story@bblfish.net>
CC: public-webpayments@w3.org
On 04/21/2013 09:18 AM, Henry Story wrote:
>
> ... your initial implementation was not a
> WebID over TLS implementation at all.

This is false and perhaps even inflammatory at this point. We've had 
this discussion many times; each time you were disinterested in 
understanding the implementation we did. However, your disinterest had 
nothing to do with the technical merits of the implementation or its 
adherence to how WebID over TLS was described at the time.

Our implementation was of a TLS client that used a TLS client-side 
certificate with an alternate name that was a URL that the 
authentication server accessed to obtain the same public key in the 
client-side certificate given during the TLS handshake.

-Dave

-- 
Dave Longley
CTO
Digital Bazaar, Inc.
Received on Sunday, 21 April 2013 18:16:54 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:07:23 UTC