[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] Authentication Method
Not sure of the overlap, the URI (whatever the SSTC version is) simply indicates that the authentication context for the assertion can somehow be described using the AuthnContext structure. Is this a meaningful constraint? i.e. are there authentication technologies that couldn't be described using the authncotnext structure? If there are, we should modify authncontext to include them. Paul >-----Original Message----- >From: Scott Cantor [mailto:cantor.2@osu.edu] >Sent: Friday, March 12, 2004 10:42 AM >To: 'Paul Madsen'; security-services@lists.oasis-open.org >Subject: RE: [security-services] Authentication Method > > >> Liberty stipulated that the saml:AuthenticationMethod would logically >> indicate 'see Authentication Context' with a value of >> 'urn:liberty:ac:2003-08.' > >I left this in (with a modified URI) when I added AuthnContext >to core, but >I think there's an overlap to examine between AuthenticationMethod and >AuthnContextClassRef. Seems to me that both could be read as >constraining >the set of context statements one might be dealing with. > >-- Scott >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]