[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [saml-dev] relative position of RelayState parameter in URL
On 4/1/11 8:49 AM, "bhaskar jain" <bhaskar.jain2002@gmail.com> wrote: >Regarding SubjectConfirmation. I'm looking >for a concise comparison of each, and specifically when each should be >used. Use the strongest method that is appropriate for their use case and the constraints they're operating under. If you can use holder of key, that's obviously better than using bearer. Anything else people have come up with is usually some kind of technically specific variant of holder of key, but it amounts to the same thing. >I've read all I can find in the specification >library and I don't seem to be able to put my finger on a good single >source >comparison or usage description. SubjectConfirmation turns an assertion as a pile of data into a security token that allows it to be used for authentication by the presenter. It's like the difference between passing a certificate around as data and presenting it in a message signed by the private key. -- Scott
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]