4.5. What is the semantics for OK and FAIL when the "authentication
event" is logged by the RP, as mentioned in 2.: "Each log message is
generated at a federation entity (eg an identity provider or a relying
party)"? Wrt 7 (and my comment below) the RP may not generate the same
(hashed) PN for the same subject as the IdP (which is unavoidable, I'm
just trying to understand the role of the RP within F-ticks).
Peter S:
4.5. What is the semantics for OK and FAIL when the "authentication event" is logged by the RP, as mentioned in 2.: "Each log message is generated at a federation entity (eg an identity provider or a relying party)"? Wrt 7 (and my comment below) the RP may not generate the same (hashed) PN for the same subject as the IdP (which is unavoidable, I'm just trying to understand the role of the RP within F-ticks).