<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.6000.16705" name=GENERATOR></HEAD>
<BODY>
<DIV><FONT face=Arial size=2>To the PAPE Working Group: </FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2>Please find a draft called 'Provider Authentication
Policy Extension - Authentication Mechansims (PAPE-AM)'. This <SPAN
class=312133419-29092008>addendum </SPAN>is intended to extend the policies
supported by the existing PAPE specification. PAPE-AM enables OpenID providers
to provide more granular policies and information to the Relying Parties.
</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial><FONT size=2>For example, Relying Parties will be able to
request that the end user authenticate to the OpenID Provider using certain
forms of credentials such as a digital certificate on smart card issued by a
particular organization, an OTP token, or that OpenID users be authenticated to
the provider under other certain specific security-related
conditions. </FONT></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial><FONT size=2><SPAN class=312133419-29092008>Specifically,
t</SPAN>his <SPAN class=312133419-29092008>addendum currently </SPAN>covers
four areas which relate to the assurance of an authentication against the OpenID
provider. Three of these areas govern the actual authentication process and
method: PKI, OTP, and password. An additional category governs the channel
security used in the connection which <SPAN
class=312133419-29092008>e</SPAN>stablished the authenticated
session.</FONT></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>The authors have deliberated on each of the
attributes below and have tried to keep a sensible balance between simplicity
and functionality. They identify some use cases where such granular control
would be beneficial to the Relying Parties. </FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>The authors <SPAN
class=312133419-29092008>want to submit this work to the PAPE WG for
consideration to be included in the PAPE specification or as appropriate.
</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=312133419-29092008></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2>Thank you for your consideration, </FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2>Taylor Venable, Brian Kelly, Mingliang Pei,
Siddharth Bajaj & Daniel Perry. </FONT></DIV></BODY></HTML>