[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Proposed text to resolve AI #0256
#0256: Ciphersuite selection Owner: Rob Philpott Status: Open Assigned: 2006-04-10 Due: 2006-04-30 Comments: ------------------------------------------------- In Conformance, I suggest adding:
· The algorithms
listed below as being required for SAML 2.0 conformance are based on the mandated
algorithms in the W3C recommendations for XML Signature and for XML Encryption,
but modified by the SSTC to ensure interoperability of conformant SAML
implementations. While the SAML-defined set of algorithms is a minimal
set for conformance, additional algorithms supported by XML Signature and XML
Encryption MAY be used. Note, however, that the use of non-mandated
algorithms may introduce interoperability issues if those algorithms are not
widely implemented. As additional algorithms become mandated for use in
XML Signature and XML Encryption, the set required for SAML conformance may be
extended. [RSP: not sure about including the last sentence… opinions?]
· The set up
algorithms required for SAML 2.0 conformance is equivalent to that defined in SAML
1.0 and SAML 1.1. These mandated algorithms were chosen by the SSTC because of their
wide implementation support in the industry. While the algorithms defined below
are the minimal set for SAML conformance, additional algorithms supported by
SSL 3.0 and TLS 1.0 MAY be used. Recommended changes, additions, and deletions are welcomed. Rob Philpott |
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]