OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Subject: [saml-dev] Web Server Certificates

The Interop spec currently says:
Browser: users will access URLs protected by SSL. Please check to see that the recommended browsers (type and version number) trust the certificate root for the certificate you plan to use to secure your https URLs.

Since several of the organizations involved in this demo own the roots in question,  (at least: Baltimore, Entrust?, RSA and Verisign) is somebody willing to act as a sponsor and issue short lived SSL server certificates for the purpose of this demo. I am sure the Burton Group would agree to some signage on the order of "certificates provided by...". It might be a good way to remind people that SAML builds on other security mechanisms, it does not replace them.
How about it guys? Any takers?

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Powered by eList eXpress LLC