X.509 proxies allow us to program workflows andmaintain a secure identity
•This is known as single sign on
User management of certificates can beburdensome
•Online certificate “banks” can simplify this
Software systems have to be modified to acceptcertificates for authentication
The certificate is only identity management, decidingwhat a user can do (authorization) still needs work.
Like any new software, management isn’t 0
•But, projects like BIRN are significantly easing thistransition