SPAN Design

From

Revision as of 14:42, 2 November 2005 by Mstigge (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

Protocol Design

Phase 1: Service Discovery

(Bluetooth built-in? IP-based: Bonjour?)

Phase 2: Authentification and Authorization

All (?) communication can be done using (signed) SAML assertions and protocols

Client (mobile phone) authenticates to service device (beamer)
Client asks service device for usage access
Service device asks client for authorization
Client asks Access Control Manager for authorization to access service device
Client gets authorization from Access Control Manager
Client hands authorization over to service device
Service device grants access

Used SAML assertions and protocols:

SAML Authentication query
SAML Authentication statement
SAML Authorization decision query
SAML Authorization decision statement

Phase 3: Using the Service

...

Retrieved from "https://sarwiki.informatik.hu-berlin.de/index.php?title=SPAN_Design&oldid=1914"

SPAN