Digital certificate ignorance and CardSpace


Let me be frank (”Hi, my name is Frank!”), I don’t know anything about digital certificates other than a little theory and this is a stumbling block for learning how to implement CardSpace.

In the CardSpace model the Identity Provider signs and encrypts the user’s claims with the Relying Party’s public key to create a security token which the Relying Party will decrypt with its private key and check that the token was really signed by the Identity Provider.

I realise that maybe I’m jumping ahead of myself and you don’t know what an Identity Provider, Relying Party or user claims are; but I’ll explain that as I get closer to my talk. It’s safe enough for now to understand that if you’re building a website that will use Infocards to authenticate users; you’re going to have to have a certificate to communicate with the Identity Provider.

More on this is shortly…

Information and Links

Join the fray by commenting, tracking what others have to say, or linking to it from your blog.

Information
February 14th, 2007
One Response
Feeds and Links
Comment Feed
From This Author
Del.icio.us
Digg
Technorati
Categories
Development

Other Posts
Making a CardSpace and certificates work
Alternative weather gadget for Vista

Write a Comment

Take a moment to comment and tell us what you think. Some basic HTML is allowed for formatting.

Reader Comments

Comment Number:
1
Written by:
The Mailowl Scrolls » WPF/E for unexpected uses
Posted on:
26 February 2007 at 7:29 am

[…] ows Presentation Foundation Everywhere? Well, I’d like to find out (after I’ve done my talk on CardSpace and OpenID) and I’m going to make some simple arcade style games to test the theory. Ta […]