|
Because federated trust management deals with different trust factors across
security domains, such a system needs to provide flexibility to allow subjective
adjustments to objective trust factors. For example, within one security domain, the
system architect can be expected to have access to enough information to assure that a
trust representation accurately reflects the accuracy of the underlying authentication
technology; but for inter-domain federation, special managerial exceptions should be
allowed. For example, if a user from a foreign network support domain wants to use the fingerprint
template obtained at the foreign domain, but the local administrator does not fully
trust that template because of lack of knowledge concerning the foreign domain's
authentication devices and methods, the local administrator may lower the trust level
of that fingerprint template to a password equivalent one in order to reduce risk in the
local system.
|
