| ... | ... | @@ -24,7 +24,7 @@ Note that OAuth tokens can also be issued by Key Server (@@@really?@@@) administ |
|
|
|
|
|
|
|
# Enrollment
|
|
|
|
|
|
|
|
Users present their OAuth tokens to PEP's Key Server, which uses the OAuth token's details to produce enrollment data. These consist of cryptographic materials required to perform actions in PEP:
|
|
|
|
Users present their OAuth tokens to the PEP system to enroll themselves with the system. (Technically, the Access Manager and Transcryptor services work together to issue the enrollment data.). Enrollment produces the cryptographic materials required to perform actions in PEP:
|
|
|
|
|
|
|
|
- A combination of a private key and a certificate, which are used to cryptographically sign and verify requests to PEP's services.
|
|
|
|
- A pseudonym key, which is used to generate polymorphic pseudonyms for this particular user @@@really?@@@.
|
| ... | ... | |
