Trust chain diagram in backwards order
I hate to say it, but the trust chain diagram in https://openid.bitbucket.io/connect/openid-federation-1_0.html#name-trust-chain (Figure 5) will confuse some people because it starts from the Trust Anchor and finishes with the Leaf, whereas actual trust chains are in the opposite order. I know that this will be a pain to do, but we should reverse this diagram to put it in the actual order.
And we should do the same for any other diagrams that are also in the wrong order.
Comments (5)
-
-
The way of my interpretation Is that an array is horizontal, where the first element is at position zero
If we read It vertically, the zero index, the first position, is the lower element, that’s the leaf at the lower position, while the TA is the top element.
I agree that we may resolve this issue by adding these considerations in the figure preamble
-
reporter Yes, we could say something like “Note that the first member of the Trust Chain (the Leaf) is depicted at the bottom of the diagram and that the last member (the Trust Anchor) is depicted at the top.“
Also, when we touch this paragraph, let’s change “relation” to “relationship”.
-
-
- changed status to resolved
- Log in to comment
In terms of evaluation, the federation entity discovery starts from the leaf, while a static trust chain starts from the trust anchor, having the TA's public key
That order respect the hierarchy, while the order of the evaluation can start from the first or the last element. The first, from the bottom, is the leaf while the last from the top Is the trust anchor.
It works to me