2. Quick Poll
• Who always use the same PW for
every new account on a new site?
•Who has a blog?
• Who has an OpenID?
3. BA
SI
C
prove you are really who you suppose to be
S
Authentication
Username & Password Challenge-response Public-Private Key
what are you allowed to do
Authorization
ACL (Access Control List) RBAC (Role-based Access Control)
4. BA
SI
C
ability to uniquely identify yourself
S
Identity
Your Name AHV-Nr / SSN Fingerprint
ability to control what others know about you
Privacy
Can you keep a secret? Virtualization Opt-in
5. BA
SI
C
S
SSO
Single-Sign-On
using the same identity automatic
to access multiple authentication beyond
services session and service