I am pleased to announce the publication of the Identity Selector Interoperability Profile V1.5 and companion guides. The ISIP (as it’s come to be called) documents the protocols and data formats used by Windows CardSpace so as to enable others to build compatible Information Card software.
Version 1.0 of these documents corresponded to the.NET Framework 3.0 version of CardSpace. Version 1.5 corresponds to CardSpace as of .NET Framework 3.5 Service Pack 1. Like the previous version, ISIP 1.5 is licensed under Microsoft’s Open Specification Promise.
Significant new content covers:
- Relying Parties without SSL certificates
- Use of WS-Trust 1.3 and WS-SecurityPolicy 1.2
- Relying Party STSs
- More stable PPID algorithm
- Specifications for computing ic:IssuerId and ic:IssuerName
- Token references by Identity Providers via wst:RequestedAttachedReference and wst:RequestedUnattachedReference elements
- Custom issuer information in cards
- Custom error messages
- Clarification that an ic:MasterKey is required for managed cards
- Plus numerous of clarifications that were found by others building Information Card software – especially during the OSIS interops
The three new document versions are:
- Identity Selector Interoperability Profile V1.5 by Arun Nanda and yours truly, which provides normative specifications of the protocol elements and data interchange formats employed by CardSpace-compatible Identity Selectors and other interoperable Information Card components,
- An Implementer’s Guide to the Identity Selector Interoperability Profile V1.5, co-authored by Microsoft and Ping Identity, which provides informative advice and commentary on how to use the ISIP specifications when building interoperable Information Card software, and
- A Guide to Using the Identity Selector Interoperability Profile V1.5 within Web Applications and Browsers, also by yours truly, which provides informative advice and commentary on how these specifications are used by Web sites that accept Information Cards and by Web browsers when communicating with these sites.
Thanks to the literally dozens of you who provided comments on ways to improve the ISIP and companion docs and who reviewed drafts of this material. This version of the docs benefited substantially from your detailed knowledge of and experience with the previous spec gained through implementing interoperable Information Card software.
Finally, I’d like to thank the members of the CardSpace team who diligently documented many of these features on the CardSpace Team Blog in advance of their publication under the ISIP. Your work let the industry gain early experience with implementing these features and was a tremendous resource to me as I was producing these versions of the documents.
7 Comments » Posted under Documentation & Information Cards & Interoperability & Specifications & Windows CardSpace
7 Responses to “Identity Selector Interoperability Profile V1.5”
Mike Jones: self-issued » WS-Addressing Identity Extension Published on 27 Aug 2008 at 10:54 am #
[…] This specification is referenced by the Identity Selector Interoperability Profile (ISIP) and is covered by Microsoft’s Open Specification Promise (OSP). This completes the publication […]
Mike Jones: self-issued » PPID Compatibility Note for Sites Accepting Self-Issued Information Cards on 27 Aug 2008 at 2:54 pm #
[…] Unfortunately, the PPIDs and Signing Keys generated by self-issued (a.k.a. personal) Information Cards using the algorithm originally shipped with Windows CardSpace (and documented in ISIP V1.0) for sites using regular certificates were not stable under several important conditions. Therefore, after considering industry feedback on the long-term problems that this continued instability would cause, and in consultation with other Identity Selector authors, a decision was made to change these algorithms in a way that will provide much better long-term stability of these important Subject identifiers for Relying Parties. The new algorithm is documented in the Identity Selector Interoperability Profile (ISIP) V1.5. […]
Mike Jones: self-issued » Information Card Standardization Work Commencing on 26 Sep 2008 at 11:47 pm #
[…] the level of interop achieved between the participants are a testament to the maturity both of the Identity Selector Interoperability Profile specification, which will be a primary input to the standardization work, and of the numerous […]
Cardspace Community Bloggers on 21 Nov 2008 at 11:29 pm #
Information Cards for Google Apps…
Information Cards are an industry standard that enable people to maintain a set of personal digital identities….
In Context » PPID Interoperability on 22 Feb 2010 at 2:19 pm #
[…] .Net 3.0 version: implements ISIP 1.0 according to Mike Jones […]
Mike Jones: self-issued » Information Card Standard Approved! on 08 Mar 2010 at 12:09 am #
[…] clarifications were incorporated as a result, while still maintaining compatibility with the Identity Selector Interoperability Profile V1.5 (ISIP 1.5) […]
Mike Jones: self-issued » Information Card Specification Public Review on 12 Nov 2010 at 1:35 am #
[…] Interoperability Version 1.0 specification. This spec is based upon, and compatible with, the Identity Selector Interoperability Profile V1.5 (ISIP 1.5) specification and related Information Card documents submitted to the IMI TC. My sincere […]