From Bandit-project.org
This is a summary of the different bandit components. Click on the icon of each component for more details. The Bandit project also makes available a growing set of Solutions.
|
|
|
The reference applications show the merits of integrating of all of the Bandit components. This includes client and relying party applications and includes all of the Bandit componets, Higgins, Liberty, Cardspace, etc. These will be made available for all to use and evaluate.
|
|
|
DigitalMe interacts directly with a user to manage and select information cards. DigitalMe consists of the following:
- Card selector user interface
- Card management interface
- Firefox extension (for launching the card selector UI when a relying party site requests a security token)
- Card registry
- One or more card store providers (file system, CASA, Bluetooth, etc.)
- Embedded STS (for issuing tokens based on self-issued information cards)
|
|
|
The Common Identity component is an implementation of the Higgins framework that represents any digital identity. This framework contain context providers that aggregate data from any identity vault (LDAP, Liberty, InfoCard, /etc/password, etc); a configurable, caching, virtual identity object. Common Identity Home
|
|
CASA is a service with multiple components to provide a comprehensive authentication with single sign-on infrastructure on desktops and servers. CASA also provides a single point of credential management across multiple credential stores such as gkring, kwallet, Firefox Password Manager and miCASA. CASA currently provides secure credential storage and a very simple API set to enable SSO for applications. CASA is evolving to provide a policy engine, built-in vault, synchronization across stores and network and support for authentication to various identity vaults (LDAP, Kerberos, etc) by providing an authentication selector mechanism. CASA Home
|
|
|
CASA, Common Identities, and the Role Engine will emit unified audit records that policies can filter to verify compliance to a corporate standard or regulation. This component is an open audit record emitter, so now, applications can provide common event information, including identity, as a basis for compliance verification. Audit Record Framework Home
|
|
|
The Bandit Role Engine component is a role based system that uses the Bandit Common Identity. The Role Engine is:
- An open source component that can be integrated into any application.
- A consistent role calculator that unifies authorization across diverse systems and services.
- An emitter of Bandit audit records (Audit Record Framework).
- Based on the open standards: RBAC and XACML.
|
|
