Skip to main content

Distributed Identity for the Web

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Sam Hartman
Last updated 2006-06-15
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


It is often useful to be able to use distributed identity--an identity from one organization for accessing resources from another. for example it would be useful to use an identifier corresponding to your work identity when accessing business partners' websites. Similarly collaborative projects can benefit from distributed identity. This memo proposes a scheme for distributed identity that meets requirements to minimize the risk of phishing attacks for HTTP- based applications including websites.


Sam Hartman

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)