OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Groups - Shared Credential Use Case Discussion (draft-saml-shared-credential-discussion-04.pdf) uploaded


Revised based on TC feedback

 -- Paul Madsen

The document revision named Shared Credential Use Case Discussion
(draft-saml-shared-credential-discussion-04.pdf) has been submitted by Paul
Madsen to the OASIS Security Services (SAML) TC document repository.  This
document is revision #1 of draft-saml-shared-credential-discussion-02.pdf.

Document Description:
An IDP will be unable to assert to an SP a particular identity for a user
if that user authenticates to the IDP
using a credential known to be shared with other users. If the credential
by which a user authenticates
does not uniquely identify them (e.g. a phone at home, access to a
workstation, PPPoE authentication
etc) then the IDP will be unable to assert anything beyond the fact that
the user was one of the set of
individuals that shared that credential. An SP may deem such an assertion
as insufficient for enabling
access to resources associated with a particular individual identity and so
may request of the IDP an
assertion characterized by a credential unique to that individual.

View Document Details:
http://www.oasis-open.org/apps/org/workgroup/security/document.php?document_id=18253

Download Document:  
http://www.oasis-open.org/apps/org/workgroup/security/download.php/18253/draft-saml-shared-credential-discussion-04.pdf

Revision:
This document is revision #1 of
draft-saml-shared-credential-discussion-02.pdf.  The document details page
referenced above will show the complete revision history.


PLEASE NOTE:  If the above links do not work for you, your email application
may be breaking the link into two pieces.  You may be able to copy and paste
the entire link address into the address field of your web browser.

-OASIS Open Administration


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]