AMDG Big Questions
Questions we are not ready to answer, but it is worth keeping a list
- Is SAML the only protocol we need for moving identity attributes between parties?
- If we need another one, say for provisioning and provisioning-like scenarios, is SCIM in the ballpark?
- If so, would SAML & SCIM+ cover the waterfront?
- CW: Protocol for moving... SAML (say, in moving around xACML atrributes) so JASON is more the SAML equivalent I think. SCIM is more a brand of a process in my view. I think there is a workflow ;aspect we haven't touched. Maybe xPDL? and wf-XML?
- What kinds of attribute metadata are required to fulfill identified requirements?
- Will there be as many metadata schema as there are attribute schema, or does metadata's higher level of abstraction allow convergence on a (core) generic set of metadata elements?
- CW: In my view, metadata's higher level of abstraction will allow convergence on a (core) generic set of metadata elements? You can have a 'core identity' metadata element with attributes of name, date of birth etc etc
- Will there be as many metadata schema as there are attribute schema, or does metadata's higher level of abstraction allow convergence on a (core) generic set of metadata elements?
- If the domain of interest is attributes and associated metadata, is RDF a good logical model?
- Needs checking with developers but first guess is yes.
- Is attribute exchange a first rung on an evolutionary ladder that reaches up to something like a distributed and federated event-driven model of application/service integration?