Authentication / authorisation / security

The objective in this section is to set out requirements; draw connections with other fields with similar requirements; identify if there are differences.

Need: in conjunction with permissions, an equal associated need is to verify the identity of those either claiming to be the owner, or requesting information.

• Shibboleth etc. require the requester to belong to a trusted institution.
• Requirements imposed by Liberty Alliance.
• Compare security needs with other applications.

Questions:

• Are there any requirements here unique to e-portfolios?
• Assuming we will be following larger developments, where are they going, and how quickly?