Access Process As Claims
Transformation
Three dimensions of claims transformations:
Form:
X.509 certificates
SAML Assertions
Trust:
Unsigned claims
signed claims; claims
facts
Enrichment: credentials
membership claims
capability
claims
Transformation rules:
Policies describing claims relations
Transformers:
Security Token Service, PKI Authorities,
etc.
Form
Enrichment
Trust
Policy
Facts
Claims