saml-dev message
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]
Subject: Re: [saml-dev] question on Holder fo the key
- From: swu@axolotl.com
- To: "Cantor, Scott E." <cantor.2@osu.edu>
- Date: Tue, 24 May 2011 10:20:41 -0700
Thanks Scott,
I guess then my question would be how
would SAML establish trust relationship in HOK case if no certificate is
included (neither from IdP nor Client).
thanks so very much !!
Stephen
From:
"Cantor, Scott
E." <cantor.2@osu.edu>
To:
"swu@axolotl.com"
<swu@axolotl.com>, "saml-dev@lists.oasis-open.org" <saml-dev@lists.oasis-open.org>
Date:
05/23/2011 04:06 PM
Subject:
Re: [saml-dev]
question on Holder fo the key
On 5/23/11 6:12 PM, "swu@axolotl.com" <swu@axolotl.com>
wrote:
>Sorry to bother you guys, one of our client
>is using HOK and do not send any x509 certificate, I know OASIS spec
>requires
>that for HOK
No, it doesn't. HoK is an abstraction, it's out of scope how you decide
what constitutes a "key" and how it has to be used. That's left
to other
material to define.
-- Scott
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]