+xns
Service: Certification

 
Enables an identity to issue a certificate attesting that some object (e.g., a driver's license) is a truthful representation. Certificates can be revoked, with interested identities being notified. Certificates are signed and validated using the public key infrastructure (PKI.) This service also generates and publishes the public key for an identity, and can notify other identities if the public key changes.

See specifications: Web Services Description Language (WSDL) XML Schema Definition (XSD)


 

Message Summary
Authorize Authorizes a message to run.
ConfirmAttrCert Confirms or denies certification, sent when a pending certification is finalized.
ConfirmRevocation Notifies an identity who has registered for revocation notification that a certificate has been revoked.
GenerateKeyPair Generates a new public/private key pair and returns a public key certificate.
GetCACerts Retrieves all the CA certificates of the specified certificate type.
GetCRL Retrieves the identity's current Certificate Revocation List (CRL).
GetPublicKeys Retrieves the public key certificates for an XNS identity.
RequestAttrCert Requests an attribute certificate for the specified object.
RevokeCert Revokes a certificate issued by this identity and notifies all identities previously registered to be notified upon revocation.
SubmitForAttrCertConfirm Allows the certifying identity to sign the certificate.
VerifyCert Confirms validity of a certificate and optionally requests notification of revocation.
VerifySignature Ensures that the data being verified has not changed.
 

Data Summary
AttributeCert A certificate that makes reference to the XNS object being certified.
AuthenticationCert A certificate signifying that the principal represented by an identity has been authenticated to that identity.
AuthorizationCert A certificate signifying that the principal has been authorized to execute a message.
CACert Assertion that the identity who has this object has been certified to be a certifying authority (CA) for the represented certificate type.
CRL Certificate Revocation List; a list of certificates, by type, which this identity has created and subsequently revoked.
Certificate An XNS digital certificate.
CredentialCert A certificate created by a credential collector representing the contained credentials as an authentication attempt.
PublicKeyCert An identity's certified public key.
SAMLAssertion A SAML assertion; a package of information that supplies one or more statements made by an issuer.
SAMLAttributeAssertion A SAML assertion containing an attribute statement.
SAMLAttributeStatement A SAML attribute statement; a statement that asserts that the specified subject is associated with the supplied attributes.
SAMLAuthenticationAssertion A SAML assertion containing an authentication statement.
SAMLAuthenticationStatement A SAML authentication statement; a statement that asserts that the specified subject was authenticated by a particular means at a particular time.
SAMLAuthorizationDecisionAssertion A SAML assertion containing an authorization decision statement.
SAMLAuthorizationDecisionStatement A SAML authorization decision statement; a statement that asserts that a request to allow the specified subject to access the specified resource has been granted or denied.
SAMLSubjectAssertion A SAML assertion containing a subject statement.
SAMLSubjectStatement A SAML subject statement.
TrustedIdentity An identity that is directly or indirectly trusted by the identity holding this object, along with specification of what it is trused to certify.
 

Datatype Summary
Signature A digital signature as defined by the XML DSIG specification.
 

Service Dependencies
+xns/Authentication
+xns/Core
 


Publishing Identity: +xns
© 2002 XNSORG
Last Updated: 07/09/2002