[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: SAML for Authentication vs SAML for Authorisation [SEC=UNCLASSIFIED]
Hi All, I mentioned on the last call that a new way of using SAML tokens has emerged and that I was concerned that it did not follow the standard. In investigating further, I have learned that in this case, SAML has not been used as
a part of authentication, rather as a part of authorisation as set out in section 7.10 of ebMS3 Core. I have written up a short discussion to illustrate difference in mechanism. Please find attached. Regards, Ian Otto. Ian Otto Department of Industry SAP House, Level 8.49, Bunda Street, Canberra City ACT 2600 ************************************************************************* The Commonwealth does not warrant that any attachments are free The security of emails transmitted in an unencrypted environment |
Attachment:
For and Against SAML Bearer Token in ebMS3.docx
Description: For and Against SAML Bearer Token in ebMS3.docx
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]