Re: [security-services] Groups - sstc-saml-exec-overview-2.0-draft-04.pdfuploaded

[Anthony Nadalin <drsecure@us.ibm.com>]

Here is proposed text

Securing Web Services (existing)
SAML Assertions can be used as Security Tokens within SOAP Header blocks in order to carry security and identity information between actors in web service transactions. The SAML Token Profile of the OASIS WS-Security TC specifies how SAML assertions should be packaged into the WS-Security <Security> element in an interoperable manner. The Liberty Alliance's ID-Web Service Framework also uses SAML assertions as the base security token format for enabling secure & privacy respecting access to identity-based web services. Also WS-Trust and WS-Federation use SAML assertions as one of the base token formats as described by the OASIS WS-Security TC specifies

WS-* (new)

WS-* is an initiative consisting of many companies that are defining specifications and standards for Web Services, including security. These specifications are based on the concept of being able to use security tokens as described in the OASIS WS-Security TC which include the usage of the SAML assertions as security tokens.

Anthony Nadalin | Work 512.838.0085 | Cell 512.289.4122
Paul Madsen <paulmadsen@rogers.com>

Paul Madsen <paulmadsen@rogers.com>

02/20/2005 06:53 PM

To	security-services@lists.oasis-open.org
cc
Subject	Re: [security-services] Groups - sstc-saml-exec-overview-2.0-draft-04.pdf uploaded

Hi Tony, yes there are two references to WSF, one in the context of SAML
2 being used within WS-Security for securing web services, the other in
the context of how SAML relates to other standards/initiatives. I don't
feel this is an unreasonable emphasis.

If the other efforts you refer to have a meaningful and demonstrated
tie-in to SAML then I agree they should be added and would welcome any text

Thanks

Paul

Anthony Nadalin wrote the following on 20/02/2005 18:10:

> Paul,
>
> There are several references to ID-WSF in this document, there also
> other efforts in the industry (can you believe it ?), so I would
> suggest that you remove or add the other efforts. I would be glad to
> provide additional sentences on additional efforts in the industry.
>
> Anthony Nadalin | Work 512.838.0085 | Cell 512.289.4122
> Inactive hide details for paulmadsen@ntt-at.compaulmadsen@ntt-at.com
>
>
>                         *paulmadsen@ntt-at.com*
>
>                         02/01/2005 11:40 AM
>
>
>
> To
>
> security-services@lists.oasis-open.org
>
> cc
>
>
> Subject
>
> [security-services] Groups - sstc-saml-exec-overview-2.0-draft-04.pdf
> uploaded
>
>
>
>
> Reflecting feedback from Scott, Tom, Eve, and Prateek.
>
> -- Paul Madsen
>
> The document named sstc-saml-exec-overview-2.0-draft-04.pdf has been
> submitted by Paul Madsen to the OASIS Security Services (SAML) TC document
> repository.
>
> Document Description:
> PDF of v4 of SAML 2 Executive Overview
>
> Download Document:  
> http://www.oasis-open.org/apps/org/workgroup/security/download.php/11275/sstc-saml-exec-overview-2.0-draft-04.pdf
>
> View Document Details:
> http://www.oasis-open.org/apps/org/workgroup/security/document.php?document_id=11275
>
>
> PLEASE NOTE:  If the above links do not work for you, your email
> application
> may be breaking the link into two pieces.  You may be able to copy and
> paste
> the entire link address into the address field of your web browser.
>
> -OASIS Open Administration
>

--
Paul Madsen                        e:paulmadsen@ntt-at.com
NTT                                p:613-482-0432
Co-Chair, Technology Expert Group  m:613-302-1428
Liberty Alliance Project           aim:PaulMdsn5




---------------------------------------------------------------------
To unsubscribe, e-mail: security-services-unsubscribe@lists.oasis-open.org
For additional commands, e-mail: security-services-help@lists.oasis-open.org