[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] Drafts for review: Kerberos & SAML profiles
Folks, Attached is another document that belongs with the recent set of Kerberos-related documents. We hope it can provide some background to the other 3 docs that Josh sent out last week. Generally speaking the purpose of this document is to be a "framework" doc in order to explain and understand better the role/integration of Kerberos in the SAML world. (ie. a way to figure-out where things fit in a SAML system). /thomas/ > -----Original Message----- > From: Josh Howlett [mailto:josh.howlett@gmail.com] > Sent: Tuesday, June 23, 2009 4:04 PM > To: security-services@lists.oasis-open.org > Cc: Josh Howlett > Subject: [security-services] Drafts for review: Kerberos & SAML profiles > > > > -----Original Message----- > From: Josh Howlett [mailto:josh.howlett@gmail.com] > Sent: Tuesday, June 23, 2009 4:04 PM > To: security-services@lists.oasis-open.org > Cc: Josh Howlett > Subject: [security-services] Drafts for review: Kerberos & SAML profiles > > Please find attached three draft profiles. > > - Kerberos Attribute Profile 00: defines an attribute profile of > Kerberos. > > - Kerberos Attribute Query Profile 06: defines how a SAML requestor > can obtain a SAML attribute, that contains a Kerberos ticket, from a > SAML attribute authority. > > - Kerberos Holder-of-Key Assertion Profile 02: defines how to confirm > an attesting entity using Kerberos. > > These documents are relatively early drafts. Once confidence in the > approach of these three documents has been established, my intent is to > compose these using a fourth Web SSO Profile. This will define how to do > these things within the context of Web SSO. This document will be more > complex than the other three, and so I'm holding back until I'm certain > that those are done. > > I have requested a slot on the agenda of the next conference call (30 > June) to discuss these documents. Your comments, either via email or at > the conference call, would be greatly appreciated. > > best regards, josh. > >
Oasis_SSTC__Kerberos_Framework_v0005.pdf
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]