mitreid-connect / trust-framework Goto Github PK
View Code? Open in Web Editor NEWTrust Framework document
Trust Framework document
As per #4 this is a method to achieve final and formal version.
Document should have live hypertext crosslinks between all sections
What kinds of things are we wanting to discover and test?
Has old info and contract info stuff
Along lines of this scenario: https://github.com/mitreid-connect/trust-framework/blob/master/Scenarios/MIT-Login-to-Handshake.md
Idea is that if MITRE side is up for it then Sandy and PoC at MITRE would agree by email to try such a test such that Brian Sweat and other researchers would log in and perhaps discuss Big Data topics of mutual interest. Then we would look at how the Trust Framework suited the scenario and if any updates are revealed as needed.
Either into a separate file in the repository or a GitHub Wiki
Use case to allow social comments for JSMO: http://www2.mitre.org/public/jsmo/
Module ideas:
First Party as IdP
First Party as RP
Process for inclusion on whitelist
Process for determining compatibility with other trust frameworks
If users are going to be making runtime security decisions, then we need to be able to present them with appropriate guidance in making these decisions
"Have I made a similar decision before (modified TOFU)"
"Has anyone else made a similar decision?"
"How would one classify the action I'm taking?"
Move forward with OIDC
Related to #7
Especially noting section [2], legal
approval for continual collaboration release granted on November 22, 2013 (see: Case Number: 13-3970).
Create a template form of the document that can be filled in with variable values for items like the primary organization and any party that signs onto the agreement (or is signed on by a user)
Did we have any plan to introduce or giving support for identity federation
Document components to allow MIT account holders to log directly into Handshake using MIT's IdP
Track to the top priority or likely scenarios for early adopters or higher priority implementations.
Document scenario around binding mobile login to other accounts in multiple factor scenario
Use this to identify any key workflows, etc that may be appropriate for documentation and link from this section.
Not just about Identity anymore, and need something to capture "dynamic" nature
Roles, relationships, definitions, key interactions, data that is flowing, services, ...
Who are the people?
What are their interactions?
What data is going back and forth?
What systems are they using?
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.