JInfocard

User-Centric Identity Management with Self-Issued Information Cards

Fraunhofer FOKUS, in cooperation with Microsoft, has developed a java-based open source web server plug-in which allows Microsoft CardSpace Information Cards to be accepted by other vendors’ systems such as IBM WebSphere, the Sun Application Server, Tomcat or JBoss. In the future Information Cards will greatly simplify access to the internet’s various services.

How a Self-Issued Information Card works:

1. The user contacts a service provider such as a bank, their email provider or similar (also known as an RP or Relying Party) using a browser.

2. The RP sends the qualification profile for the necessary personal data back to the browser using an http connection.

3. The browser launches an identity drop down menu (also known as an IS or Identity Selector) displaying a list of “InfoCards” which match the individual’s qualification profile.

4. The user now chooses a card.

5. In this scenario the identity selector then connects to a simulated identity provider (self-issued).

6. After this a security token is issued and sent to the RP.

7. The RP validates the security token and guarantees access to the desired service