Versions Compared

Old Version 9

changes.mady.by.user Keith Hazelton (wisc.edu)

Saved on

compared with

New Version Current

changes.mady.by.user Keith Hazelton (wisc.edu)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migration of unmigrated content due to installation of a new plugin

Portability must be included as part of a thoroughgoing review/rewrite of the section of eduPerson (200806) on "Identifier Concepts:"

http://middleware.internet2.edu/eduperson/docs/internet2-mace-dir-eduperson-200806.html#IdentifierConceptsImage Removed

1) uniqueness

...

Panel
borderColor#3C78B5
bgColor#F8F7EF
borderWidth1px
titleBGColor#EFEFFF
titleThe Trouble with Glossaries -- RL "Bob" Morgan
borderStylesolid

Beyond that, while a few (if any) [Few of the properties] are properties of the identifiers themselves, most are properties of the use of the identifiers in the context of many interacting systems (privacy being perhaps the best example of this).

I observe that glossary exercises are doomed to failure if they are merely dictionary-style definitions. The useful activity is in building a model of interacting systems and components that support real-world processes, within which properties such as those above can be explained (insert obligatory reference to http://is.gd/g7bdnImage Removed). This is somewhat depressing as building a model is on the face of it more difficult than defining some terms (scope creep is inevitable) but at least it has a chance at success.

Look at reassignment. It has to do with practices at the IdP, whether an identifier continues to apply to the same entity or can be used for a different one. The identifier stays the same, it's the mapping to the "real world entities" that might change. So the model needs to include those entities, the IdM system that maintains (or doesn't) the mapping, and the interest of the RP in the continuity of the mapping. These are the same components that are called out in the Assurance material.
--RL "Bob" Morgan

Gliffy Diagram
sizeL
nameIdentifiers in Context

Here's a trial run with further revisions (dependency is indicated by indentation)

From perspective of the University of Wisconsin-Madison as IdP

Name Properties of Identifier Properties Usage

ePPN

UUID

PVI

ePTID

– Scope

wisc.edu

wisc.edu

wisc.edu

wisc.edu

  • Uniqueness

within scope

global

within scope

global

– Reversible

reversible

reversible

reversible

reversible

– Persistence

persistent

persistent

persistent

persistent

– Transparency

transparent

opaque

opaque

opaque

  • Palatibility

palatable

no

palatable

no

– Mutable

mutable on approved user request

mutable only in case of mistaken identity

mutable only in case of mistaken identity

mutable

  • Reassignable

potentially

no

potentially

no

  • Resynchable

resynchable

no

no

resynchable

– Correlatable

correlatable

correlatable

correlatable

only within specific application group

– Portable

no

potentially

no

no

...