...
| UMA + reln mgr | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|
login-time attribute transfer |
| yes | yes | yes |
|
|
|
|
|
|
back-channel controlled access | yes |
| yes |
| yes |
|
|
|
|
|
separate policy decision hub | yes |
|
|
|
|
| yes |
|
|
|
on-board storage of user data | yes (if RM is a Host) | yes (self-issued cards) | yes (self-issued cards) | yes |
|
|
| yes (required) |
|
|
user-imposed policy (unilateral) | yes |
|
|
| yes | yes (through XACML/CARML) | yes (through CARML) | ? | ? |
|
user-imposed terms (agreed) | yes |
|
|
|
|
|
|
| yes (link contract) | partial (user selection among RP terms) |
binding of ID(s) to data shared | late | early (usually) | early (usually) | early | late | late |
| late |
| early |
RESTful/resource oriented | yes |
|
| yes | yes | potentially (ID-WSF Evo) |
| yes |
| yes |
co-ownership of data write access | pseudo (single authorizing user grants write access to others) |
| yes |
|
|
|
|
|
|
|
Following are some potential synergies between UMA and the other technologies mentioned.
...