OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Re: [security-services] NIST prohibits use of SAML assertions atLOA 4


Paul Madsen wrote:
 > more generally, rather than pick on SAML, the policy should preclude
 > 'browser redirect SSO systems that rely on bearer tokens'

doh!  but of course..

=JeffH



[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]