|
Trust exchange needs a secure method to communicate trust representations across
trust domains. All the communication protocols in the network layers should be
supported. And trust exchange is expected to offer not only communication channel
security, but also message security. At the same time, users will expect trust exchange
to guarantee not only end-to-end security, but also the integrity and privacy of the
exchanged information. Although formalization and standardization of the network diagram is desired, no
single format can express all types of factors in trust. There is neither a standard
syntax nor distribution mechanism by which an authority can make trust-related
information available for consumption by all potential relying parties. So trust
exchange needs to provide a content interpretation service to translate trust
information between different policy languages and message or token formats, and
make the final action descriptions easy to understand and enforce.
|
