Higgins Cloud Selector

From IIW

Conference IIW8 Room/Time: 3/E

Convener: Markus Sabadello

Notes-taker: Markus Sabadello


Technology Discussed/Considered: Higgins “Cloud Selector” http://wiki.eclipse.org/Cloud_Selector

Discussion notes, key understandings, outstanding questions, observations, and, if appropriate to this discussion: action items, next steps:

The Higgins “Cloud Selector” is a web-based application that allows you to access and use your i-cards without the need to install anything on your local machine. It uses OpenID Attribute Exchange as a transport layer to move claims and entire tokens around.

It’s useful in situations in which you don’t have a locally installed selector, but it also has downsides such as reduced security and privacy.

The Cloud Selector can operate in different modes.. It can work with any existing OpenID RP, and it can work with special RPs that take advantage of IMI features.

It tries to internally map IMI claim identifiers to OpenID AX and SREG attribute identifiers.

A question came up on whether the same user experience could be achieved by a traditional OpenID. The answer was that this is mostly true, except that the Cloud Selector also offers the possibility to transport entire tokens (as opposed to just simple claim values).

Next steps:

  • Improve UI
  • Display requested / optional claims to user and let them choose the optional ones they want to send