OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Re: [security-services] Random Overdue Question on SubjectConfirmation


Thanks Scott, I'll admit to being in the 99.9% of the population that doesn't fully understand subject confirmation but aren't NotOnOrAfter and Recipient in SubjectConfirmationData also redundant AudienceRestriction/Audience and NotOnOrAfter Conditions?

On Wed, Jun 16, 2010 at 12:45 PM, Scott Cantor <cantor.2@osu.edu> wrote:
> Can anyone explain the rational behind having the MUST NOT on the
NotBefore
> attribute of <SubjectConfirmationData> in the Web Browerser SSO profile
> (section 4.1.4.2  of saml-core-2.0-os)?

I think it was to avoid a value that would just be redundant to IssueInstant
or a Condition.

-- Scott






[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]