[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [saml-dev] Digital Signature Usage in X.509 Subject Attribute Query Specifications
On Wed, Apr 8, 2009 at 11:49 AM, Scott Cantor <cantor.2@osu.edu> wrote: > The main case that comes up is relying on WS-Security for actual > authentication of the SAML messages themselves, typically the request, and > in that case you wouldn't *also* sign the SAML request itself, typically. Understood. Any insights to share regarding the MUST vs. MAY usage of signing of the parts of the response in the two specs? Regards, - Anil
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]