[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [dss] some changes in requirements draft 3
Regarding the requestor identity (3.2.1), I think that it is important that this is extensible to cover alternative name forms. Also, I suggest that there should be a means of identifying the authentication mechanaism used to confirm the requestor's identity in the signature. This could be directly by an identifier to the authentication mechanism, or as part of some more general policy identifier. Nick > -----Original Message----- > From: Trevor Perrin [mailto:trevp@trevp.net] > Sent: 07 April 2003 21:21 > To: dss@lists.oasis-open.org > Subject: [dss] some changes in requirements draft 3 > > > > To list some of the changes in the last requirements draft, so people can > comment on them: > > 1. In "3.2.1 Requestor Identity", John Messing added a question: do we > want to restrict the methods of identifying a Requestor to only > the listed > two (string or SAML Assertion as signed attribute), or consider other > methods explicitly, or make it extensible to other methods? >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]