From OSIS Open Source Identity Systems
| Identity Agent Feature | IA 1 | IA2 |
|---|
| Card Creation & Review |
|---|
| Can this selector create & populate self-issued cards? |
|
|
|
Can the contents be viewed & edited? |
|
|
|
Can you associate a picture? |
|
|
| Can this selector import a managed card? |
|
|
|
Can the contents be retrieved & viewed? |
|
|
|
Can the selector authenticate the user to the IdP in the following ways: |
|
|
|
*** Username/Password |
|
|
|
*** X.509 Certificate |
|
|
|
*** Kerberos Ticket |
|
|
|
*** Smart Card |
|
|
|
Can the user secure individual cards? |
|
|
| Selector Trigger Mechanisms |
|---|
| Can this selector be triggered by an embedded HTML <OBJECT> tag? |
|
|
| Can this selector be triggered by an XHTML <ic:informationCard>
object? |
|
|
| Can this selector retrieve policy from an RP STS? |
|
|
| Card Import/Export |
|---|
| Can the selector import one or more cards from a single file of type .crds? |
|
|
| Can the selector export one or more cards from a file of type .crds? |
|
|
| RP Site Interaction |
|---|
Does the selector notify the user of first-time usage of a card at an RP site? |
|
|
|
Does the selector display site credentials to the user? |
|
|
|
Does the selector display a link to a privacy statement if that statement is properly announced by the site? |
|
|
| Does the selector indicate to the user which claims requested by the RP are required? |
|
|
| Does the selector indicate to the user which claims requested by the RP are optional? |
|
|
| Does the selector allow users to choose whether or not to send optional claims? |
|
|
| Does the selector allow users to edit card data before sending? |
|
|
| In the case of self-issued cards, does the selector issue a PPID which is non-correlatable between RP sites? |
|
|
| Audit |
|---|
| Can see what sites have been visited by what card |
|
|
