OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Drafts for review: Kerberos & SAML profiles

Folks,

Attached is another document that belongs with the recent set of
Kerberos-related documents. We hope it can provide some background to the
other 3 docs that Josh sent out last week.

Generally speaking the purpose of this document is to be a "framework" doc
in order to explain and understand better the role/integration of Kerberos
in the SAML world. (ie. a way to figure-out where things fit in a SAML
system).

/thomas/




> -----Original Message-----
> From: Josh Howlett [mailto:josh.howlett@gmail.com]
> Sent: Tuesday, June 23, 2009 4:04 PM
> To: security-services@lists.oasis-open.org
> Cc: Josh Howlett
> Subject: [security-services] Drafts for review: Kerberos & SAML profiles
> 
> 
> 
> -----Original Message-----
> From: Josh Howlett [mailto:josh.howlett@gmail.com]
> Sent: Tuesday, June 23, 2009 4:04 PM
> To: security-services@lists.oasis-open.org
> Cc: Josh Howlett
> Subject: [security-services] Drafts for review: Kerberos & SAML profiles
> 
> Please find attached three draft profiles.
> 
>   - Kerberos Attribute Profile 00: defines an attribute profile of
> Kerberos.
> 
>   - Kerberos Attribute Query Profile 06: defines how a SAML requestor
> can obtain a SAML attribute, that contains a Kerberos ticket, from a
> SAML attribute authority.
> 
>   - Kerberos Holder-of-Key Assertion Profile 02: defines how to confirm
> an attesting entity using Kerberos.
> 
> These documents are relatively early drafts. Once confidence in the
> approach of these three documents has been established, my intent is to
> compose these using a fourth Web SSO Profile. This will define how to do
> these things within the context of Web SSO. This document will be more
> complex than the other three, and so I'm holding back until I'm certain
> that those are done.
> 
> I have requested a slot on the agenda of the next conference call (30
> June) to discuss these documents. Your comments, either via email or at
> the conference call, would be greatly appreciated.
> 
> best regards, josh.
> 
>

Oasis_SSTC__Kerberos_Framework_v0005.pdf

smime.p7s

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]