[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: Re: [security-services] draft-sstc-bindings-07.doc
Hi Prateek, One comment: Section 7.2.0.3 Message Integrity: Current wording means message integrity is mandatory when using the SOAP binding over HTTP. Is this the intention? If it's not, I'd like it to be modified to something similar to the one in section 7.2.0.4. The proposed wording is: When message integrity is required, SAML receivers MUST implement message integrity by utilizing HTTP over SSLv3 or TLS1.0[AppendixC] with a server-side certificate. Thanks, Emily > Content-return: allowed > Date: Wed, 05 Dec 2001 19:33:31 -0500 > From: "Mishra, Prateek" <pmishra@netegrity.com> > Subject: [security-services] draft-sstc-bindings-07.doc > To: "'security-services@lists.oasis-open.org'" <security-services@lists.oasis-open.org> > List-Owner: <mailto:security-services-help@lists.oasis-open.org> > List-Post: <mailto:security-services@lists.oasis-open.org> > List-Subscribe: <http://lists.oasis-open.org/ob/adm.pl>, <mailto:security-services-request@lists.oasis-open.org?body=subscribe> > List-Unsubscribe: <http://lists.oasis-open.org/ob/adm.pl>, <mailto:security-services-request@lists.oasis-open.org?body=unsubscribe> > List-Archive: <http://lists.oasis-open.org/archives/security-services> > List-Help: <http://lists.oasis-open.org/elists/admin.shtml>, <mailto:security-services-request@lists.oasis-open.org?body=help> > List-Id: <security-services.lists.oasis-open.org> > > Review comments are requested by end of day, Wednesday, December 12. > > > - prateek > > >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC