+xns/Authentication
Data: PersonalAgentCredential

+xns/Core/XNSObject
   |
   +--+xns/Authentication/Credential
         |
         +--+xns/Authentication/PersonalAgentCredential


An authentication credential created by a personal agent (in an active login session) for the purpose of utilizing that login session to authenticate to another agent. The agent this credential will be used for has a trust relationship with the personal agent, allowing it to be used as an authentication agent. The personal agent may be a web based personal agent, or a hardware based agent such as a smart card capable of producing and signing authentication certificates.


 

Data Elements
String AuthCert Encrypted authentication certificate, Base64 encoded.
Boolean Compressed Is the AuthCert compressed?
+xns/Core/AgentAddress EncryptedFor Address of the agent owning the public key the AuthCert was encrypted using.
+xns/Core/AgentAddress PersonalAgent Address of the personal agent the credential represents.
+xns/Core/AgentAddress SignedBy Address of the agent who signed the contained AuthCert.
 

Element Detail

AuthCert

Encrypted authentication certificate, Base64 encoded. This certificate was created by the +xns/Authentication/CertifySession for the purpose of certifying a login session with the specified PersonalAgent. The AuthCert has been signed, possibly compressed, then encrypted using the public key of the EncryptedFor agent. If the SignedBy agent supports the Certification service, it may be used to verify the AuthCert. It may also be used to register for notification of session logout.  

DataType: String
 


Compressed

Is the AuthCert compressed? True=the AuthCert was compressed prior to encryption, and must be uncompressed after decryption; False=the AuthCert is not compressed.  

DataType: Boolean
 


EncryptedFor

Address of the agent owning the public key the AuthCert was encrypted using. This will be either the agent for which the PersonalAgentCredential will be used to authenticate against, or its host. It usually will be encrypted for the host, which reduces the number of public keys required to be known.  

DataType: +xns/Core/AgentAddress
 


PersonalAgent

Address of the personal agent the credential represents.  

DataType: +xns/Core/AgentAddress
 


SignedBy

Address of the agent who signed the contained AuthCert. This can be one of either the specified PersonalAgent, or the host of the personal agent. Most AuthCerts are signed by hosts vs. the actual agent to reduce the number of public keys required to be known.  

DataType: +xns/Core/AgentAddress
 


Publishing Agent: +xns Last Updated: 07/09/2002