OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [saml-dev] Digital Signature Usage in X.509 Subject Attribute Query Specifications

On Wed, Apr 8, 2009 at 11:49 AM, Scott Cantor <cantor.2@osu.edu> wrote:
> The main case that comes up is relying on WS-Security for actual
> authentication of the SAML messages themselves, typically the request, and
> in that case you wouldn't *also* sign the SAML request itself, typically.

Understood.

Any insights to share regarding the MUST vs. MAY usage of signing of
the parts of the response in the two specs?

Regards,

- Anil

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]