OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: RE: [saml-dev] RE : [saml-dev] Which version to use?


Title: Message

Jean-Noel,

 

To a great extent this choice depends upon your project completion time-lines. I think till 2H05 it will be hard to get many different vendor products that support SAML 2.0 (note, your favorite vendors’ product may support it early next year, but I am making a more general statement here).

 

So I would say that if the implementation phase for your project is mostly after the middle of next year, then SAML 2.0 is the better choice. If you need to get something completed before that time I would recommend SAML 1.1.

 

As a specification, SAML 2.0 is now pretty stable and has been reviewed by many people.  It has an enormous amount of new material (all of ID-FF 1,2 functionality and more!) as compared to SAML 1.1 and also incorporates many improvements and clarifications.  From the point of view of the future is the correct specification to work with.

 

 

- prateek

 


From: anastase adonis [mailto:aadonis@objective-networks.com]
Sent: Monday, October 18, 2004 6:31 AM
To: 'Jean-Noel Colin'; saml-dev@lists.oasis-open.org
Subject: [saml-dev] RE : [saml-dev] Which version to use?

 

Hello,

I am also in favour of v2.0, because of the expected updates. But you will need to be careful on the additional gum you need for transparent further developments ( web services.....).

 

BR

Anastase ADONIS

Objective Networks

 

-----Message d'origine-----
De : Jean-Noel Colin [mailto:jean-noel.colin@oxys.be]
Envoyé : lundi 18 octobre 2004 11:15
À : saml-dev@lists.oasis-open.org
Objet : [saml-dev] Which version to use?

Hello,

 

We are in the process of defining a Federated Identity Management framework for a large European research project. Our idea is to rely on SAML to develop our model and implementation. The question today is: which version to use? 1.1 or 2.0?

 

Our need are the following:

  • the environment is made of eLearning environments (E), through which users (U) access services (S) external to those E.
  • one U is linked to a particular E
  • S has to make sure that invoking U has been properly authenticated by their environment, and is authorized
  • S may be chained: S may invoke another S
  • all exchanges are based on Web Services

I would be in favor of SAML 2.0, as it seems that the specification are quite stable now, and ready to be approved as a standard, after the public review phase.  

 

What would be your recommendation?

 

Thanks for your help

 

Jean-Noel Colin

 



[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]