[foaf-protocols] PubKey trusted store
Kingsley Idehen
kidehen at openlinksw.com
Wed Nov 25 19:20:10 CET 2009
Peter Williams wrote:
>
> We discussed that a server receiving a webid via SSL client needs to
> use a trust store to decide: is the client cert valid for the Person
> which retrieved foaf metadata describes the webid.
>
> But foaf+ssl doesn’t say how the trust store should/must be
> represented or implanted.
>
> For all it matters, the SSL server could be using a mix of a local
> linked data store and Google Wave bus, using the wave federation
> protocol get signer operation to remotely access a trust store of the
> server.
>
> We keep hinting that a webid should be a name of a Person entity. But,
> presumably it could also be a URI pointing a wavelet, which has a
> signer (which has a certified pubkey that one can recover using the
> get signing operations on the wave bus).
>
I think WebIDs should be scoped to foaf:Agent not foaf:Person.
>
> Im trying to marry in my brain foaf+ssl with the class of integrations
> it portends. Then, like SSL it will last 10-20 years.
>
:-)
Kingsley
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> foaf-protocols mailing list
> foaf-protocols at lists.foaf-project.org
> http://lists.foaf-project.org/mailman/listinfo/foaf-protocols
--
Regards,
Kingsley Idehen Weblog: http://www.openlinksw.com/blog/~kidehen
President & CEO
OpenLink Software Web: http://www.openlinksw.com
More information about the foaf-protocols
mailing list