WebID feedback

Maintained by @kenrb

Purpose

Below is a list of definitions for important terms in common use related to WebID. Many of the definitions are intended to match existing terms in identity standards, in some cases adapted and constrained for relevance in the context of WebID.

This document is continually evolving. Feedback is welcome.

Definitions

Authentication

Note that in some discussions and documentation, the term authentication is used to refer to the federated sign-in process. However, the user does not authenticate to the RP during federated sign-in. The user authenticates to the IdP, which then provides a claim to the RP asserting the user’s identity. The user does not prove their identity to the RP.

External references: OIDC terminology, OIDC authentication, SAML glossary

Authorization

References: OAuth 2.0, SAML glossary

Browser-mediated

Ceremony

References: WebAuthn glossary

Consent

Claim

References: OIDC terminology

Consumer (context)

Directed basic profile

This term is novel in WebID and its details could be subject to change.

Directed identifier

Enterprise (context)

Federated sign-in

References: OIDC

Identifier

References: SAML glossary

Identity Provider (IDP)

References: OIDC terminology

Identity Provider backwards compatibility

Identity Provider blindness

IDP tracking

References: WebID Threat Model

Relying Party (RP)

References: OIDC terminology, SAML glossary

Relying Party backwards compatibility

Relying Party blindness

RP tracking

References: WebID Threat Model

Standard claims

This term is defined as a part of the OpenID Connect specification. The use of this term in WebID refers to the OIDC definition.

References: OIDC

Verifiably directed identifier

User agent