- From: Matt DeMoss <demoss.matt@gmail.com>
- Date: Thu, 30 Jun 2011 16:04:09 -0400
- To: Kingsley Idehen <kidehen@openlinksw.com>
- Cc: Henry Story <henry.story@bblfish.net>, Mo McRoberts <mo.mcroberts@bbc.co.uk>, Peter Williams <home_pw@msn.com>, "public-xg-webid@w3.org XG" <public-xg-webid@w3.org>
Are you using either LDAPS or LDAP + StartTLS? Is the authenticity of attributes addressed in some other way? On Thu, Jun 30, 2011 at 3:54 PM, Kingsley Idehen <kidehen@openlinksw.com> wrote: > On 6/30/11 8:22 PM, Henry Story wrote: >> >> Kingsley tweeted few pictures on his ldap WEbID implementation: >> >> http://twitpic.com/5j0ucl >> >> Kingsley, what do you use in the ldap directory to describe the public >> key? >> >> Would it be worth writing up your experience on the wiki? Perhaps under >> protocols/ldap ? > > Yes, there will be a step by guide covering: > > 1. Cert. Generation > 2. LDAP profile management -- this includes X509 Cert. association with LDAP > DN > 3. WebID verification service. > > Kingsley >> >> Henry >> >> >> On 30 Jun 2011, at 00:00, Henry Story wrote: >> >>> LDAP in semweb >>> -------------- >>> >>> Following up on the idea of ldap urls in WebID endpoints. >>> >>> - What does such an ldap url look like btw? (the one we want to put in >>> the X509 cert and that points to a dereferenceable resource) >>> - can one put a public key in there? Is there a attribute pair for those? >>> (I guess there will be) >>> >>> That is all that is needed for ldap URL authentication >>> >>> - does ldap allow for linking between ldap directories? a kind of ldif >>> version of linked data? Can we have a foaf:knows relation in ldap so that >>> someone can store her friends there? Or is it perhaps better just to have a >>> see:also link to point to an http resource which can describe relations >>> between people and things more flexibly? >>> - How many ldap endpoints are open to the world? Do they usually allow >>> global access to anyone, as web pages servers usually give access to anyone? >>> Or are they mostly just closed to the company employees behind a firewall? >>> (trying to evaluate the market size here) >>> -> those that do could allow webid type url dereferencing >>> + but what is the proportion of those? >>> + how many have access control mechanisms, so that if I am a friend >>> of ldap://orange.fr/@cn=Barbara Doe,dc=example,dc=com I would be able to >>> access more of her ldap entries? >>> + what is the interest of those in ldap land to open up their ldap >>> servers this way? Why would they be interested? Who are they? Are they >>> willing to work on WebID implementations for this, and write specs for it? >>> (Apart from OpenLink of course) >>> >>> Henry >> >> Social Web Architect >> http://bblfish.net/ >> >> > > > -- > > Regards, > > Kingsley Idehen > President& CEO > OpenLink Software > Web: http://www.openlinksw.com > Weblog: http://www.openlinksw.com/blog/~kidehen > Twitter/Identi.ca: kidehen > > > > > > >
Received on Thursday, 30 June 2011 20:04:37 UTC