Online Mind Mapping and Brainstorming

Create your own awesome maps

Online Mind Mapping and Brainstorming

Even on the go

with our free apps for iPhone, iPad and Android

Get Started

Already have an account? Log In

IdInterOp by Mind Map: IdInterOp
0.0 stars - 0 reviews range from 0 to 5


Laws of Identity Kim Cameron Microsoft 

1. User Control and Consent

Digital identity systems must only reveal information identifying a user with the user’s consent

2. Limited Disclosure for Limited Use

The solution which discloses the least identifying information and best limits its use is the most stable, long-term solution.

3. The Law of Fewest Parties

Digital identity systems must limit disclosure of identifying information to parties having a necessary and justifiable place in a given identity relationship.

4. Directed Identity

A universal identity metasystem must support both “omnidirectional” identifiers for use by public entities and “unidirectional” identifiers for private entities, thus facilitating discovery while preventing unnecessary release of correlation handles.

5. Pluralism of Operators and Technologies

A universal identity metasystem must channel and enable the interworking of multiple identity technologies run by multiple identity providers.

6. Human Integration

A unifying identity metasystem must define the human user as a component integrated through protected and unambiguous human-machine communications.

7. Consistent Experience Across Contexts

A unifying identity metasystem must provide a simple consistent experience while enabling separation of contexts through multiple operators and technologies.


Problem Statement


SAML 2.0

OpenID 2.0



Project Initiatives





Use Cases

Authenticate to a CardSpace enabled relying party using an OpenID URL identifier

Authenticate to a OpenID enabled relying party with a CardSpace card over CardSpace protocol

(different card types with different tokens)

Cardspace enabled SAML Attribute Authority for attribute exchange

OpenID enabled SAML Attribute Authority for attribute exchange

Authenticate to a Cardspace enabled relying party with Higgins iCard

Higgins enabled SAML Attribute Authority context provider

Authenticate to a Higgins enabled relying party with OpenID URL identifier



Identity Selector Interoperability Profile



Difference between Higgins i-card & CardSpace Infocards



Digital Me


MS Passport

Single Sign On


SAML vs OpenID

SAML vs CardSpace

OpenID vs CardSpace