[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: Re: Minutes of 8 May 2001 Focus subcommittee telecon
> >>btw: who's doing the general integrity/encryption thing for > >>assertions, > >>since I assume we will need at least (partial) assertion signing for > >>v1.0? > >> > > Most of this material will end up in the bindings section which > is now picking up momentum. I think the general approach will be > to distinguish between "secret" artifacts (indx refs, passwords, ...) vs. > others. Pieces of SAML that contain secret artfs MUST be exchanged over > encrypted > channels, or use some other forms of data encryption for privacy > protection. Agreed. I'd be interested in helping out on this since I've some ideas about how we can have a general solution. > Signing will be addressed in a parallel fashion; I have yet to call this > out. Likewise. Stephen. -- ____________________________________________________________ Stephen Farrell Baltimore Technologies, tel: (direct line) +353 1 881 6716 39 Parkgate Street, fax: +353 1 881 7000 Dublin 8. mailto:stephen.farrell@baltimore.ie Ireland http://www.baltimore.com
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC