idnits 2.17.1 draft-pkx-wwwogc-07.txt: Checking boilerplate required by RFC 5378 and the IETF Trust (see https://trustee.ietf.org/license-info): ---------------------------------------------------------------------------- No issues found here. Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt: ---------------------------------------------------------------------------- == The page length should not exceed 58 lines per page, but there was 1 longer page, the longest (page 6) being 63 lines == It seems as if not all pages are separated by form feeds - found 0 form feeds but 6 pages Checking nits according to https://www.ietf.org/id-info/checklist : ---------------------------------------------------------------------------- ** The document seems to lack a Security Considerations section. ** The document seems to lack an IANA Considerations section. (See Section 2.2 of https://www.ietf.org/id-info/checklist for how to handle the case when there are no actions for IANA.) ** There are 89 instances of too long lines in the document, the longest one being 33 characters in excess of 72. ** There are 82 instances of lines with control characters in the document. == There are 5 instances of lines with non-RFC2606-compliant FQDNs in the document. Miscellaneous warnings: ---------------------------------------------------------------------------- == The copyright year in the IETF Trust and authors Copyright Line does not match the current year == Line 121 has weird spacing: '...trieval searc...' -- The document date (Dec 3, 2016) is 2694 days in the past. Is this intentional? Checking references for intended status: Proposed Standard ---------------------------------------------------------------------------- (See RFCs 3967 and 4897 for information about using normative references to lower-maturity documents in RFCs) No issues found here. Summary: 4 errors (**), 0 flaws (~~), 5 warnings (==), 1 comment (--). Run idnits with the --verbose option for more detailed information about the items above. -------------------------------------------------------------------------------- 1 Network working group Pradeep Kumar Xplorer 2 Internet-Draft 3 Intended status: Standards Track Individual 4 Expires: May 3, 2017 Dec 3, 2016 6 Single SignON solution to WWW seen as one Giant computer and use of 7 a smartcard where a phone SIM can be inserted to authenticate 8 draft-pkx-wwwogc-07 10 Abstract 12 The document describes a SingleSignON solution to WWW seen as one Giant 13 computer. As WWW use increases, on average an user has many service login 14 accounts they have to manage. It would be better for most users at the 15 expense of some security risk to have one password for all the services and 16 a WWW shell and a control panel. Also the WWW as an intelligent being could 17 show information to an user interpreting their needs from all their accounts. 18 A smartcard could have a phone SIM slot and phone devices and computers can 19 have smartcard slots and email user should be able to allow login only by insertion 20 of smartcards.A smart card can be programmed with user details and a session 21 manager software can be used to allow the user to login / create and use many services. 23 Status of This Memo 25 This Internet-Draft is submitted in full conformance with the 26 provisions of BCP 78 and BCP 79. 28 Internet-Drafts are working documents of the Internet Engineering 29 Task Force (IETF). Note that other groups may also distribute 30 working documents as Internet-Drafts. The list of current Internet- 31 Drafts is at http://datatracker.ietf.org/drafts/current/. 33 Internet-Drafts are draft documents valid for a maximum of six months 34 and may be updated, replaced, or obsoleted by other documents at any 35 time. It is inappropriate to use Internet-Drafts as reference 36 material or to cite them other than as "work in progress." 38 This Internet-Draft will expire on May 24, 2017. 40 Copyright Notice 42 Copyright (c) 2013 IETF Trust and the persons identified as the 43 document authors. All rights reserved. 45 This document is subject to BCP 78 and the IETF Trust's Legal 46 Provisions Relating to IETF Documents 47 (http://trustee.ietf.org/license-info) in effect on the date of 48 publication of this document. Please review these documents 49 carefully, as they describe your rights and restrictions with respect 50 to this document. Code Components extracted from this document must 51 include Simplified BSD License text as described in Section 4.e of 52 the Trust Legal Provisions and are provided without warranty as 53 described in the Simplified BSD License. 55 Table of Contents 56 1. Introduction ............................................... 2 57 2. Background ..................................................2 58 3. General Information of the service ..........................2 59 4. Authors Addresses ...........................................5 60 5. Acknowledgements ............................................5 62 1. Introduction 64 To implement a Single SIgnON solution to WWW seen as one Giant computer 65 that would help navigate and use the WWW more easily, making passwords 66 more manageable and WWW navigation more intuitive. THis is a precursor to 67 futuristic project of Information as a bird that flies to the users. 69 2. Background 70 CUrrently as a user i have multiple WWW services, i have a 71 hosting account explodingmoon.org and email as pradeep@explodingmoon.org 72 and email service from hotmail.com, and yahoo.com and i have a 73 kasikorn K-cyber bank account, i have an account with cheaptickets.com 74 that i have not used and i can retrieve and reactivate the password, 75 i have two accounts with facebook. All accounts are used by me by using 76 different usernames/userids and passwords. There might be several other 77 services that i have registered and tried and never used and i do not 78 remember any of these. If i can just authenticate with WWW and access 79 all these serives seamlessly without typing in a password, that would 80 lead to a better User experience and would be more time efficient. 82 3. General Information of the service 84 I want to propose a WWW service that allows a WWW navigator to access all his 85 authenticated services by logging just once. I want to propose a Valid registered 86 email address as Single SignON key, or a WWW navigators primary email as WWW Single 87 SignON Id. So lets say it is pradeep@explodingmoon.org. 89 I want to propose concept of authentication ID. The authentication ID for an email 90 service is just the email ID. But there could be many different levels of 91 authentication needed to be authorized to perform operations in the WWW, or 92 your desktop. I have a hosting account and access to a control panel in my hosting 93 service, thats a username and password to an application of the hosting service. 94 Or it could be an application that I installed in my domain, like a blogging 95 software. I can propose a domainname and domainname/Filename/ where the application 96 is installed. But authentication ID can be numerous depending on the Operating 97 systems and kinds of software.So in my case now , I want to see my email 98 pradeep@explodingmoon.org as my primary email id and my SingleSignON Id. 99 I have a hosting account in bluehost.com, and a control panel user and password, 100 I have an additional secondary email @explodingmoon.org 101 pradeepkumarxplorer@explodingmoon.org. I have email services in hotmail.com, 102 pradeepan88@hotmail.com, a b2evolution blogging software loaded in 103 http://www.explodingmoon.org/FCSP with a username pradeepkumarxplorer 104 and a password. 106 Right now theres no way for an Information publisher to know who is accesing his 107 or hers website other than their IP addresses. This has been a problem for me as 108 a publisher. I wanted to be able to configure my website and say only authenticated 109 users can view my information. So if a user Helena@athens.net accesses my 110 information site, right now I would see an IP address used in Athens Internet 111 Service providers. I should be able to see the SingleSignON Id of Helena@athens.net 112 using a visitor tracking software. And by making a query to a WHois database or 113 some other Application level tool I should get more info about Helena@Athens.net. 114 I should be able to allow or disallow a user to my website at the HTTP daemon level. 115 So I propose two classes of WWW navigators, Authenticated and anonymous. 116 I can configure my website to allow anonymous users as well. 118 The browser is a common internet application and most users use some publicly 119 available services for email, or services of banks, eshops, travel planning etc. 120 Public meaning the domainames are advertised and can be obtained as part of 121 Information retrieval searches, Wellsfargo.com, cheaptickets.com etc.. 123 A User should be able to either browse anonymously or as an authenticated user. 124 When a User browse anonymously he or she should be restricted to see some 125 contents in the WWW. 127 The WWW should be seen as one Giant Computer. The desktop that you see on 128 Your device should be known as the WWW desktop. 129 A browser should have a Userid and Password field or user can proceed to 130 browse anonymously. 132 When i log into a computer, i should be able to invoke an Action to 133 Authenticate to WWW Desktop. 135 The URL field should have next to it a UserName textfield and a Password 136 TextField. 138 There should be toggle button which shows who the browser user is, an 139 Authenticated user or an anonymous user. 141 The Desktop and the browser can be configured to accept the Desktops 142 Sessions Username and Password as the WWW Desktops Username and password!. 144 If you are registering for first time, you create a Unique WWW User id 145 that would somehow linked to an external authentication. 147 Lets say i am able to register to the WWW as Pradeep. 148 My WWW id is Pradeep@Desktop.WWW 150 If Pradeep@Desktop.WWW never logs into internet again for two years, 151 how would you locate Pradeep@Desktop.WWW . So in the registration there should 152 be something that links Pradeep@Desktop.WWW to a Non internet realm. 153 Pradeep's travel document or finger print id or retinal scan or 154 that Pradeep carries an Unique Obsidian from California. 156 So the User can browse as anonymous or as an Authenticated User with 157 other attributes. 159 In this design it is only Anonymous and Authenticated. 160 The Single SignON eliminates the need to login multiple times. 162 Lets say I have chosen pradeep@explodingmoon.org as my primary email id or 163 SingleSignON id. Registering for pradeepan88@hotmail.com and pradeep@yahoo.com 164 Would be easy and just need one button click. 166 I am adding these concepts WWW shell 168 I propose a WWW shell, where I can do many operations related to SingleSignON 169 identity. 171 The WWW shell should have Operations like these. 173 Assign Username emailid 175 AddtoProfileofUserName Does not want to see Webpages related to 176 Hindi Movie stars 177 List SingleSignONUserName AuthenticationPages 179 (In this case) 181 List pradeep@explodingmoon.org AuthenticationPages 183 pradeepan88@hotmail.com 185 pradeeplugimwidnaus@yahoo.com 187 facebook.com/pdeep 189 facebook.com/xplorer.pradeep 191 www.bluehost.com/Explodingmoon.org 193 www.explodingmoon.org/b2-evolutionInstallDirectory/pxplorer 195 www.kasikornbank.com/K-CyberuserId 197 www.hover.com/UserId 199 pradeepkumarxplorer@gmail.com 201 www.cheaptickets.com/UserId 203 List ProfileSummary pradeep@explodingmoon.org 205 Interests: Fitness, food, Travel, backpacking, Yoga, 207 Webhosting, Journals, airtickets, Artificial intelligence, 209 Health 211 Replicate USername1 Username2 213 Merge Username1 Username2 Username3 215 Merge ProfileSummary1 ProfileSummary2 ProfileSummary3 216 Load ProfileSummary3 pradeep@explodingmoon.org 218 (May be a Database engine would help Profile management, creation etc) 219 The concept of profile is to implement software that allows Information 220 to fly to Users. 222 I am adding these. A smartcard device can be used for SingleSignON and it can enforce 223 additional authentication. I insert a card and the client requests me to put my fingers or 224 place my eyes for retinal scan. In addition information from services not used ot viewed 225 can be shown. If i dont login to some domains or servives and the messages in those domains 226 or services can be shown to remind me they are not looked at for long time. 228 Also browser can be opened with httpsso:// service to be in this mode. 230 I also want to propose a Logs file for Webserver available automatically without 231 use configuration for the privieleged users or owner of the website. So i own 232 http://www.explodingmoon.org, the weblogs should be available to privileged users 233 in http://www.explodingmoon.org/Logs and it should show some User Identitiies that 234 can be clicked on to find out all the emails, contact phone numbers and whatever the 235 User Identity wants to list. This can be made a HTTP standard so i dont have to install 236 congigure user tracking. 238 Added on Apr 8, 2016 239 I now want to propose that an internet session be abLE to be linked to a phone 240 number. This automatically happens if i am using an Android with a SIM card. 241 I should be able to do this from Operating system control panel and the awstats 242 or webstatistics should show phone numbers as well as IP address.A verification 243 is probably needed and it could be costly.The authentication id could be used 244 as the phone number. 245 Added on Nov 24, 2017 246 I want to propose a smartcard solution for webemail security. Currently anone with 247 password can login into most webbased emails. If a phone SIM that can be inserted into 248 A SMART CARD SLOT THAT CAN BE INSERTED INTO COMPUTER CAN BE USED AS ADDITIONAL AUTHENTICATION. 249 WHEN I LOGIN INTO PRADEEPAN88@HOTMAIL.COM IT CAN REQUEST FOR SMARTCARD IN ITS SLOT OR 250 PREVENT LOGIN. 252 I should be able to purchase a smartcard, insert my phone SIM and configure my details 253 and the computer operating systems can have a session manager, and i insert the smart card 254 into the slot in the smart phone or laptop or computer and then i can browse use services. 255 I can create new accounts without filling in details, use existing accounts without retyping 256 passwords. 258 4.Authors' Addresses 260 Pradeep Kumar Xplorer 261 EMail: pradeepan88@hotmail.com 262 URI: http://www.explodingmoon.org 263 http://www.dhyanayoga.info 265 5.Acknowledgement 267 I have been a publisher of http://www.dhyanayoga.info since 2004/2005 268 and http://www.explodingmoon.org since 2008. I have used bluehost.com 269 for hosting my website and have found the need to know who views my site, 270 their email addresses and not just IP address. If i can be shown a 271 Single SignON identity like a primary email address that when clicked 272 on expands to other identities that viewers allows to reveal, it would 273 be useful to me as a publisher.