OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]


Subject: Visio diagrams for assertion


All,

	Attached are a set of diagrams for the current assertion schema.
There is a visio file and for the visio impared two sets of HTML/GIF
versions. The protocol diagrams will follow.

	The difference between the 2 HTML editions is that one has
annotation by Phill and the other does not. I discovered a couple of odd
things about the schema while making the diagrams. Visio-able people can
turn the annotation on and off as layers.

	The first seven drawings consist of the actual schema as it is
today. The last three are two possible modifications. The first uses
substitution groups to avoid the use of xsiType= at the top level. 

	The second shows an alternative structure which differenetiates the
assertion container from the statement made within. This proposal allows
Prateek's desire to have 'content ignorant' processors be able to work on
the wrapper of an assertion without bothering themselves with the semantics
of the statements. It also allows the addition of multi-statement and
multi-assertion containers at a later date that would be capable of
containing SAMLv1.0 statements, the current structure is inflexible in that
regard.

	The second proposal could be implemented without substitution
groups.

	This is a Zip file 'cos there are a lot of moving parts.

		Phill

Phillip Hallam-Baker FBCS C.Eng.
Principal Scientist
VeriSign Inc.
pbaker@verisign.com
781 245 6996 x227

Phillip Hallam-Baker (E-mail).vcf

Assertion 15.zip



[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]


Powered by eList eXpress LLC