OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

members message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Review of WSS v1.1

To: OASIS members, public announce lists

The OASIS Web Services Security TC has recently approved the following specifications as Public Review Drafts:

Message Security v1.1
SAML Token Profile v1.1
x509 Token Profile v1.1
Kerberos Token Profile v1.1
Username Token Profile v1.1
REL Token Profile v1.1
SwA Token Profile v1.1

The public review starts today, 11 July 2005 and ends 10 September 2005.

Public review from potential users, developers and stakeholders is an important part of the OASIS process to assure interoperability
and quality. Comments are solicited from all interested parties. Please feel free to forward this message to other appropriate lists
and/or post this information on your organization's web site. Comments may be submitted to the TC by any person via a web form found
on the TC's web page at http://www.oasis-open.org/committees/wss. Click the button for "Send A Comment" at the top of the page or
use the following direct link: http://www.oasis-open.org/committees/comments/form.php?wg_abbrev=wss

Submitted comments (for this work as well as other works of that TC) are publicly archived and can be viewed at
A summary and the file locations follow below. 

Mary P McRae
Manager of TC Administration, OASIS


This specification describes enhancements to SOAP messaging to provide message integrity and confidentiality. The specified
mechanisms can be used to accommodate a wide variety of security models and encryption technologies.

Message security 1.1 formalizes passing keys as tokens, encrypting headers, and security correlation of messages. The SAML 1.1
profile describes support for SAML 2.0 tokens in WSS messages. The Kerberos token profile describes using Kerberos tokens with WSS
messages. The SwA profile describes securing SwA messages using the message security mechanisms.


The files are available here:

Message Security v1.1
pdf:  http://www.oasis-open.org/committees/download.php/13397/wss-v1.1-spec-pr-SOAPMessageSecurity-01.pdf
html: http://www.oasis-open.org/committees/download.php/13396/wss-v1.1-spec-pr-SOAPMessageSecurity-01.htm

SAML Token Profile v1.1
pdf:  http://www.oasis-open.org/committees/download.php/13405/wss-v1.1-spec-pr-SAMLTokenProfile-01.pdf
html: http://www.oasis-open.org/committees/download.php/13404/wss

x509 Token Profile v1.1
pdf:  http://www.oasis-open.org/committees/download.php/13384/wss-v1.1-spec-pr-x509TokenProfile-01.pdf
html: http://www.oasis-open.org/committees/download.php/13383/wss-v1.1-spec-pr-x509TokenProfile-01.htm

Kerberos Token Profile v1.1
pdf:  http://www.oasis-open.org/committees/download.php/13390/wss-v1.1-spec-pr-KerberosTokenProfile-01.pdf
html: http://www.oasis-open.org/committees/download.php/13389/wss-v1.1-spec-pr-KerberosTokenProfile-01.htm

Username Token Profile v1.1
pdf:  http://www.oasis-open.org/committees/download.php/13394/wss-v1.1-spec-pr-UsernameTokenProfile-01.pdf 
html: http://www.oasis-open.org/committees/download.php/13392/wss-v1.1-spec-pr-UsernameTokenProfile-01.htm

REL Token Profile v1.1
pdf:  http://www.oasis-open.org/committees/download.php/13301/wss-v1.1-spec-pr-RELTokenProfile.pdf
html: http://www.oasis-open.org/committees/download.php/13301/wss-v1.1-spec-pr-RELTokenProfile.htm 

SwA Token Profile v1.1
pdf:  http://www.oasis-open.org/committees/download.php/13287/wss-v1.1-spec-pr-SwAProfile-01.pdf
html: http://www.oasis-open.org/committees/download.php/13288/wss-v1.1-spec-pr-SwAProfile-01.html

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]