OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Antwort: RE: [saml-dev] Overlap SAML 2.0 and WS-Trust



<img
src="http://zdownload.zurich.com/mailimages/ZHP_MailHeader.gif"; />
Hi Scott

>>>
Artifact resolution has little to do with WS-Trust,
>>>
You can interpret the artifact as a security token also which can be
validated (validate binding) and transformed.

>>>
but with respect to acquiring SAML assertions (or anything else), the
reverse is also true (and SAML was standardized first).
>>>
The reverse is only true if the security token is SAML. WS-Trust is
designed to handle not only SAML but also other kind of security tokens.

IMHO, WS-Trust is the cleaner and token agnostic approach for some SAML
bindings than the current SAML specification and I'd appreciate to see a
discussion around that - if not already started.

Thanks
Oliver






                                                                           
             "Scott Cantor"                                                
             <cantor.2@osu.edu                                             
             >                                                          An 
                                        "'Oliver Wulff'"                   
             27.09.2010 15:33           <oliver.wulff@zurich.ch>,          
                                        <saml-dev@lists.oasis-open.org>    
                                                                     Kopie 
                                                                           
                                                                     Thema 
                                        RE: [saml-dev] Overlap SAML 2.0    
                                        and WS-Trust                       
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           





> I got the impression that there is some overlap between SAML 2.0
> protocol/binding spec and WS-Trust. IMHO, the bindings "SOAP" and "PAOS"
> for the protocols "Authentication Request Protocol" and "Artifact
> Resolution Protocol" could be covered by WS-Trust.

Artifact resolution has little to do with WS-Trust, but with respect to
acquiring SAML assertions (or anything else), the reverse is also true (and
SAML was standardized first).

-- Scott



---------------------------------------------------------------------
To unsubscribe, e-mail: saml-dev-unsubscribe@lists.oasis-open.org
For additional commands, e-mail: saml-dev-help@lists.oasis-open.org









******************* BITTE BEACHTEN *******************
Diese Nachricht (wie auch allfällige Anhänge dazu) beinhaltet
möglicherweise vertrauliche oder gesetzlich geschützte Daten oder
Informationen. Zum Empfang derselben ist (sind) ausschliesslich die
genannte(n) Person(en) bestimmt. Falls Sie diese Nachricht
irrtümlicherweise erreicht hat, sind Sie höflich gebeten, diese unter
Ausschluss jeder Reproduktion zu zerstören und die absendende Person
umgehend zu benachrichtigen. Vielen Dank für Ihre Hilfe.



[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]