[JDEV] Distributed Authentication - thoughts people?

Jonathan Siegle jsiegle at psu.edu
Wed Sep 26 17:08:19 CDT 2001

What problem are you trying to solve that isn't solved by Kerberos/GSSAPI 
or DCE?

On Tue, 25 Sep 2001, Michael Hearn wrote:

> Recently MS Passport hit Version 2. It's progressing rapidly and will 
> soon support SOAP based authentication for web services (or so I believe).
> Therefore I think it's time to start work on an open version of Passport 
> that doesn't need centralised servers. The Jabber network is an ideal 
> candidate for this, so therefore I'd like to sound out the creation of 
> an Authentication JIG. The aims of the JIG would be as follows:
> -  Develop a system that allows for users to authenticate themselves 
> with websites and services using their Jabber account in a secure and 
> easy-to-use fasion.
> -  Optionally abstract this system so Jabber is not a necessary 
> component for the authentication.
> This would involve the following steps:
> - Create an authentication protocol, and produce bindings to the Jabber 
> protocol and SOAP.
> - Create a Jabber server plugin that allows for this authentication
> - Create authentication web software that would allow users to login to 
> web sites in a similar fashion to Passport, with semi single-sign-in.
> - Documenting all the above!
> I think that authentication could well be one of the next important 
> stages in the development of the net. And I think Jabber can do it best. 
> So what do people think? Should I go ahead and submit a JEP for the 
> creation of the Authentication JIG?
> thanks -mike
> _______________________________
> Michael Hearn
> mhearn at neuk.net
> Jabber (jabber.org) tweedledee at jabber.org
> _______________________________________________
> jdev mailing list
> jdev at jabber.org
> http://mailman.jabber.org/listinfo/jdev

More information about the JDev mailing list