[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Telling the PIP where to pull from
Hi everyone in the TAS3 project we have been developing the PDP to be able to pull various user credentials from different IDPs. We use the SAML/XACML protocol to communicate between the PEP and the PDP. One of the things we need to do is for the PEP to direct the PIP of the PDP where to go to fetch extra user attributes/credentials/claims. The solution we are proposing is to put a WSSE security token in the SOAP header of the SAML request. What do the group think about this approach? Have other ways of directing the PIP been discussed? Is the group willing to standardise the way that the PEP can dynamically inform the PDP/PIP where to pull additional attributes/claims from regards David -- ***************************************************************** David W. Chadwick, BSc PhD Professor of Information Systems Security School of Computing, University of Kent, Canterbury, CT2 7NF Skype Name: davidwchadwick Tel: +44 1227 82 3221 Fax +44 1227 762 811 Mobile: +44 77 96 44 7184 Email: D.W.Chadwick@kent.ac.uk Home Page: http://www.cs.kent.ac.uk/people/staff/dwc8/index.html Research Web site: http://www.cs.kent.ac.uk/research/groups/iss/index.html Entrust key validation string: MLJ9-DU5T-HV8J PGP Key ID is 0xBC238DE5 *****************************************************************
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]