>>>>> "Stefan" == Stefan Paetow <[log in to unmask]> writes:
Stefan> Once the trust router is involved in a Moonshot
Stefan> infrastructure, the authentication response will come
Stefan> directly from the home IdP to you (after negotiation via the
Stefan> trust router), which will require you to rely on the trust
Stefan> relationship between your SP and the home IdP as set in the
Stefan> Community of Interest that you are both part of.
Sure. However, unless you perform a check IDP 1 can assert a CUI
belonging to a user at IDP2.
|