OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

Messages By Date: members message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: 15-day Public Review for SAML V2.0 Kerberos Attribute Profile


To OASIS Members, Public Announce Lists:

The OASIS Security Services (SAML) TC members have recently
produced an updated Committee Specification Draft (CSD) and
submitted this specification for 15-day public review:

SAML V2.0 Kerberos Attribute Profile Version 1.0
Committee Specification Draft 02 /
Public Review Draft 02
14 December 2010

Overview: This specification defines an attribute profile for
the Kerberos protocol. The SAML V2.0 Kerberos Attribute Profile
describes a SAML attribute profile for requesting and
expressing Kerberos protocol messages. In this version of the
specification, this is constrained to the Kerberos KRB-CRED
message type. The mechanisms that are used to generate the
Kerberos message are outside the scope of this document and
are described by IETF RFC 4120: 'The Kerberos Network
Authentication Service (V5)'.

The OASIS Security Services (SAML) TC [1] was chartered to
to "define, enhance, and maintain a standard XML-based
framework for creating and exchanging authentication and
authorization information.

Inter- and intra-enterprise application architectures require
interoperable security solutions that transcend the boundaries
of single security domains. The interoperable exchange of
security information between domains, including the ability to
federate identities across such domains, is crucial to
developing solutions for business problems such as performing
Web Single Sign-On, utilizing distributed authorization services,
and securing e-business transactions."

Public Review Period:  The public review starts today,
12 March 2011 and ends 27 March 2011. The specification was
previously submitted for a 60-day public review on 28 Jan 2010
[2]. This 15-day review is limited in scope to changes made from
the previous review of 28 Jan 2010. Changes are highlighted in
the diff-marked PDF file and diff-notes file [3].

This is an open invitation to comment. OASIS solicits feedback
from potential users, developers and others, whether OASIS
members or not, for the sake of improving the interoperability
and quality of its technical work.

URIs: The prose specification document and related files are
available here:

Editable Source (Authoritative):
http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-attribute-kerberos-csprd02.odt
HTML:
http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-attribute-kerberos-csprd02.html
PDF:
http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-attribute-kerberos-csprd02.pdf

Diff version noting changes or change log:
http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-attribute-kerberos-csd02-diff.pdf
http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-attribute-kerberos-csd02-diff-notes.pdf

ZIP archive:
http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-attribute-kerberos-csprd02.zip

Additional information about the specification and the
OASIS Security Services (SAML) TC may be found at the
TC's public home page located at:

http://www.oasis-open.org/committees/security/

Comments may be submitted to the TC by any person through the use
of the OASIS TC Comment Facility which can be accessed via the
button labeled "Send A Comment" at the top of the TC public home
page, or directly at:

http://www.oasis-open.org/committees/comments/form.php?wg_abbrev=security

Feedback submitted by TC non-members for this work and for other
work of this TC is publicly archived and can be viewed at:

http://lists.oasis-open.org/archives/security-services-comment/

All comments submitted to OASIS are subject to the OASIS Feedback
License, which ensures that the feedback you provide carries the same
obligations at least as the obligations of the TC members. In
connection with this public review of 'SAML V2.0 Kerberos Attribute
Profile Version 1.0', we call your attention to the OASIS IPR
Policy [4] applicable especially [5] to the work of this technical
committee. All members of the TC should be familiar with this
document, which may create obligations regarding the disclosure and
availability of a member's patent, copyright, trademark and license
rights that read on an approved OASIS specification. OASIS invites
any persons who know of any such claims to disclose these if they
may be essential to the implementation of the above specification,
so that notice of them may be posted to the notice page for this
TC's work.

- rcc

Robin Cover
Interim TC Administrator
OASIS, Director of Information Services
Editor, Cover Pages and XML Daily Newslink
Email: robin@oasis-open.org
Staff bio: http://www.oasis-open.org/who/staff.php#cover
Cover Pages: http://xml.coverpages.org/
Newsletter: http://xml.coverpages.org/newsletterArchive.html
Tel: +1 972-296-1783

========== Additional references:

[1] OASIS Security Services (SAML) TC
     http://www.oasis-open.org/committees/security/

[2] Previous public review (28 January 2010)
    http://lists.oasis-open.org/archives/tc-announce/201001/msg00007.html

[3] Diff files
    http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-attribute-kerberos-csd02-diff.pdf
    http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-attribute-kerberos-csd02-diff-notes.pdf

[4] http://www.oasis-open.org/who/intellectualproperty.php

[5] http://www.oasis-open.org/committees/security/ipr.php
    http://www.oasis-open.org/who/intellectualproperty.php#s10.2.2
     RF on RAND Mode



[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]