OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [saml-dev] Digital Signature Validation

Can you provide any link,which can help the beginner to understand the same.


On Sun, Jun 15, 2014 at 7:38 AM, Cantor, Scott <cantor.2@osu.edu> wrote:
On 6/12/14, 10:02 AM, "Phalguni Mukherjee"
<phalgunimukherjee1007@gmail.com> wrote:

>Can some one give me an abstract overview how actually digital signature
>validation for the saml assertion done?

Abstractly? You verify an XML signature along with a very specific content
profile assessment to prevent wrapping attacks, and then you apply a
deployment specific determination of trust against the signing key to
ensure it belongs to the SAML issuer.

That glosses over a tremendous amount of complex code.

-- Scott





--
Thanks & Regards
Phalguni Mukherjee

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]