OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [saml-dev] Only plaintext Attributes in AttributeQuery

On 11/1/12 9:57 AM, "Dennis Felsch" <lists@dfelsch.de> wrote:
>While studying the documentation and the xml schemas, I noticed that an
>AttributeStatement allows to use Attribute- or EncryptedAttribute-elements
>(or both) as children. An AttributeQuery in contrast allows only plaintext
>I wonder if this serves a specific purpose or if
>EncryptedAttribute-elements were just simply forgotten in this context. It
>would make sense for me to have an opportunity to encrypt Attributes in a
>query. Are there any protocols that require Attributes in AttributeQueries
>to be sent in plaintext?

I think it was probably a combination oversight and/or lack of explicit
use case, since in general the idea of passing values in a query is pretty
rare, and there's not much call to encrypt the names.

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]