MozillaWiki

Privacy/Reviews/BrowserID.org: Difference between revisions

Page Discussion

Privacy/Reviews/BrowserID.org (view source)

Revision as of 22:39, 11 October 2011

262 bytes added ,  11 October 2011
→‎Components
Line 68: Line 68:
* Browserid.org verifier
* Browserid.org verifier
* Browserid.org implementation server
* Browserid.org implementation server
* Relying party (sites deploying the sign-on)
* RP user-agent window (e.g., Firefox loading the RP site)
* RP user agent window (e.g., Firefox loading the RP site)
* Sign-In user-agent window (e.g., Firefox loading the pop-up browserid sign-on)
* Sign-In user agent window (e.g., Firefox loading the pop-up browserid sign-on)
* Email Provider User-Agent Window (Firefox loading a webmail site)
* email provider
* Relying party (External - uses BrowserID for sign-in)
* Email Provider (External)
* DNSSEC system (External)


=== Verifier ===
=== Verifier ===
Line 125: Line 127:
| success flag and, if true, user email address, timestamp, and relying party hostname
| success flag and, if true, user email address, timestamp, and relying party hostname
|}
|}


=== Implementation Server  ===
=== Implementation Server  ===
Line 177: Line 180:
| only when user is successfully logged in
| only when user is successfully logged in
|}
|}
'''Communication with Email Provider User-Agent Window'''
TODO
'''Communication with Email Provider'''
TODO


=== BrowserID User-Agent Window  ===
=== BrowserID User-Agent Window  ===
Line 216: Line 229:
| via postMessage, to other browser window.
| via postMessage, to other browser window.
|}
|}
'''Communication with Email Provider User-Agent Window'''
{| class="wikitable"
|-
! Direction
! Message
! Data
! Notes
|-
| ''Out:''
| provisionCert()
| email address, public key
|
|-
| ''In:''
| provisionCert()
| certificate
| binding public key and email address with expiration date
|}


=== Relying Party (external)  ===
=== Relying Party (external)  ===
Line 240: Line 275:
'''Communication with Verifier Service'''  
'''Communication with Verifier Service'''  


See the Verifier communication section.


{| class="wikitable"
|-
! Direction
! Message
! Data
! Notes
|-
| ''Out:''
| verifyAssertion()
| assertion and RP hostname (audience)
|-
| ''In:''
| verifyAssertion()
| result of assertion verification, including confirmation of user email, expiration date, and issuer.
|}


=== RP User-Agent Window (external)  ===
=== RP User-Agent Window (external)  ===
Line 264: Line 285:


See BrowserID User-Agent Window section.
See BrowserID User-Agent Window section.
'''Communication with Relying Party'''
See Relying Party communication section


=== Email Provider User-Agent Window (external)  ===
=== Email Provider User-Agent Window (external)  ===
Line 271: Line 298:
'''Communication with BrowserID User-Agent Window'''  
'''Communication with BrowserID User-Agent Window'''  


{| class="wikitable"
See BrowserID User-Agent Window communication Section.
|-
 
! Direction
=== Email Provider ===
! Message
 
! Data
TODO
! Notes
 
|-
=== DNS and Domain Web Sites ===
| ''In:''
| provisionCert()
| email address, public key
|
|-
| ''Out:''
| provisionCert()
| certificate
| binding public key and email address with expiration date
|}


= User Data Risk Minimization =
= User Data Risk Minimization =
Sidstamm
canmove, Confirmed users
1,537

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/357223"