OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Re: [security-services] Draft SSTC Meeting Minutes - 15-Jul-2008 w/Roll Call (attendance)


On Tue, Jul 15, 2008 at 10:03 PM, =JeffH <Jeff.Hodges@neustar.biz> wrote:
> ============================================================================
> SSTC/SAML concall Tue Jul 15 08:57:58 PDT 2008
> ----------------------------------------------------------------------------
>
>
>> 2.2 Holder of Key Browser SSO Profile
>> Draft-04 was posted with discussion and comments on draft-03
>
> bc: some disc on this on list, but from Nate who is not on call today
>
> Tom Scavo (ts): was reviewing draft -03, sent comments to list, but since
> -04 is only slight update to -03, comments relevant
>
> sc: no fundamental disagreement w/Nate, but there is a question (ques) wrt
> rules for requesting SubjectConfirmation (SubjConf), there's a ques wrt
> syntax rules for requiring a HOK assertion -- so there's a ques on whether
> or not one always needs to pass SubjConf data in a request, and perhaps the
> same thinking applies to queries

Just to clarify, I believe Scott was saying that he and I were in
fundamental agreement (which I think is a fair statement).  Evidently
Nate hasn't had a chance to review the comments or the discussion.

Tom


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]