[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: Re: [security-services] Action A11: XML Signature requirements forSOAPProfile
> The <dsig:Signature> element MUST apply to all the SAML assertion elements > in the SOAP <Header>, and all the relevant portions of the SOAP <Body>, as > required by the application. Specific applications may require that the > signature also apply to additional elements. Can a message have more than one set of assertions? If I'm communicating over a VPN or other strong transport-level secure system, can I omit the signature? Am I no longer compliant? /r$ -- Zolera Systems, Securing web services (XML, SOAP, Signatures, Encryption) http://www.zolera.com
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC