OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Conformance document questions

Some things we noticed here recently about the 
sstc-saml-conformance-2.0-cd-02.pdf document:

Table 4 only discusses responder conformance requirements, but does not 
define ny request requirements.  I suppose you could turn "must process" 
on the responder into "must send" on the server, but is that the intent; 
if so, it should be made explicit. Or is requestor conformance currently 
unspecified by design?

The Identity Provider proxy references section 3.4.1.6 of the core; 
should that be 3.4.1.5 (since .6 doesn't exist)?

	/r$

-- 
Rich Salz, Chief Security Architect
DataPower Technology                           http://www.datapower.com
XS40 XML Security Gateway   http://www.datapower.com/products/xs40.html
XML Security Overview  http://www.datapower.com/xmldev/xmlsecurity.html

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]