Security

Client-Based CardSpace-OpenID Interoperation

Download Now Free registration required

Executive Summary

The authors propose a novel scheme to provide interoperability between two of the most widely discussed identity management systems, namely CardSpace and OpenID. In this scheme, CardSpace users are able to obtain an assertion token from an OpenID-enabled identity provider, the contents of which can be processed by a CardSpace-enabled relying party. The scheme, based on a browser extension, is transparent to OpenID providers and to the CardSpace identity selector, and only re-quires minor changes to the operation of the CardSpace relying party.

  • Format: PDF
  • Size: 174.1 KB