Re: what are claims mirrors? from Kingsley Idehen on 2012-01-16 (public-xg-webid@w3.org from January 2012)

From: Kingsley Idehen <kidehen@openlinksw.com>
Date: Mon, 16 Jan 2012 07:11:10 -0500
To: public-xg-webid@w3.org
Message-ID: <4F1413DE.3080802@openlinksw.com>

On 1/16/12 6:20 AM, Henry Story wrote:
> Kingsley keeps speaking of "Claims mirrors" in support of his arguments. What are they? How do they work?
>
> Henry
>
> Social Web Architect
> http://bblfish.net/
>
>
>
I mean the graph that is created in the IdP space. It holds a mirror of 
claims in the x.509 certificate in a local key store.

We make certificates and persist them to a local keystore. We then make 
a set of claims via triples in Idp oriented data space that mirrors 
whats in the local key store.

If you have a relation associating a subject with a public key in a 
certificate that resides in your local store, having the same relation 
in your idp oriented data space via triples implies a mirror.

I hope that clears up the matter of "mirrored claims" re. WebID.

btw -- some Idp spaces will mirror other claims too e.g. fingerprints, 
some can even hold a complete carbon copy of the x.509 certificate.

-- 

Regards,

Kingsley Idehen	
Founder&  CEO
OpenLink Software
Company Web: http://www.openlinksw.com
Personal Weblog: http://www.openlinksw.com/blog/~kidehen
Twitter/Identi.ca handle: @kidehen
Google+ Profile: https://plus.google.com/112399767740508618350/about
LinkedIn Profile: http://www.linkedin.com/in/kidehen

Attachments

application/pkcs7-signature attachment: S/MIME Cryptographic Signature

Received on Monday, 16 January 2012 12:11:58 UTC