Kammarkollegium och organisationslegitimationerna
Det är svårt att tänka om. Nyligen kom e-delegationen ut med sitt betänkande kring bla eID där man tydligt säger att man vill satsa på identitetsfederationer och på öppna lösningar för identifiering i...
View ArticleComputer Sweden picks up on Swedish eID problems
Computer Sweden har intervjuat Fredrik Ljunggren på Kirei om vår blog-plost om federerad e-id i Sverige. Dom har faktiskt uppfattat budskapet riktigt väl!
View ArticleGaps to Map
Right before the IETF in Anaheim I’m off to the ISOC Identity event: Mapping the Gaps in DC. This post is a set of possible discussion points for that event. The event will focus on the gaps between...
View ArticleNot posting enough
Clearly the blog has been, if not dead then asleep for quite some time. I have no idea if people are even reading this but I’ll start posting again presently. My lack of updates has not been due to...
View Articleconvergence & federations?
Convergence is one of several proposed solutions to the problem of lying and poorly managed CAs. DANE is of course another. I like fighting on multiple fronts so when rlbob sent me an inspirational...
View ArticleWhy you should care about the CABforum
The CA browser forum (aka CABforum) announced a couple of days ago that they would form a WG on “organizational reform”. Why is this important I hear you say? The CABforum has quite a lot of power....
View ArticleWhy it is (sometimes) ok to shoot yourself in the foot
I got this link on a list earlier today: Facebook (2 step authentication) fail ! I totally disagree with almost all the assumptions and conclusions of that post. The only bit I can sort-of agree with...
View ArticlepyFF – another metadata aggregator
In the world of large scale identity federations the problem-du-jour is how federation operators can connect their federations and share services. The eduGAIN program led by my good friends Valter...
View Article#rlbob
https://spaces.internet2.edu/display/rlbob/Home Next I’ll pick up the shovel and keep digging.
View ArticleThe bitter taste of good intentions
In a recent blogpost Eran explains why he withdrew from the OAUTH WG. Having observed the workings of that particular WG since its inception I thought I’d provide some perspective. To put it briefly:...
View ArticleClik here to view.
Its umbrellas all the way down
The NREN world is changing. It used to be that you could get away with running a network and a decent ftp-server and that would be good enough. Not so much anymore. NRENs are turning into service...
View ArticleAnfall är bästa försvar
Computer Sweden skriver igår om att 3 myndigheter ifrågasätter säkerheten i nya e-legsystemet och har bett MSB genomföra en granskning. Oberoende granskningar är mycket bra och borde ske oftare när...
View ArticleWe need an eIDAS IAF profile
The eIDAS directive was published the other day. Now follows the work on getting it implemented. To this end I propose the EU develop an eIDAS trust framework as a profile of the Kantara Initiative...
View ArticleAvoiding XML signature attacks
The other day the security folks over at DUO security posted about a class of bugs in several popular SAML implementations:...
View Article
