[security-services] Core 23 draft

[Krishna Sankar <ksankar@cisco.com>]

Title: [security-services] SAML core editors: an item to put into doc

Hi,

 

    I have added the digital signature stuff to core 22 and publishing as Core 23. The changes are as follows:

 

    1.    Added : <element ref = “ds:Signature” minOccurs=”0” maxOccurs=”unbounded”/> to RequestAbstractType &

    2.    Added : <element ref = “ds:Signature” minOccurs=”0” maxOccurs=”unbounded”/> to AssertionType

    3.    Added Signature specific section (as new section 5.0) in core 22 and published as core 23.

 

    Please let me know if I have missed anything.

 

    There are a couple of things we need to do in the document :

 

    1.    Fill-in Section 1.3. May be Darren's white paper could be inserted here with some editing.

    2.    Need to run the schema thru a checker. Tibco Extensibility tool gave me some errors. Didn't get a chance to investigate them further. I will do that in the next few days. (Am flying to Vegas for presenting for a Security conf tomorrow)

 

cheers

 

Attached :

 

    Schema for assertions-23

    Schema for protocol-23

    Core 23 document (.doc) (.pdf)

    Core 23 document with changes highlighted (.doc)

 

-----Original Message-----
From: Hallam-Baker, Phillip [mailto:pbaker@verisign.com]
Sent: Monday, December 31, 2001 1:34 PM
To: 'security-services@lists.oasis-open.org'
Subject: [security-services] Core 22 draft

All,

 

    Attached are the core22 draft and the corresponding schemas.

 

    The draft is complete with the exception of the non-normative section 1.3. I could not track down a version of the requirements doc that had language suitable for cut and paste and I said I would finish this before the end of the year.

 

    The major changes to note:

 

StatusReason

    Added with minor changes to reflect change to assertion structure

Assertion

    Removed single and multiple statement assertions and converted into one assertion package as agreed at F2F

RespondWith

    Added as discussed

TargetRestrictionCondition

    Added as agreed

AuthorizationDecision Statement/Query

    Both are now DECISION

Confirmation method identifiers

    Have been defined

Action identifiers

    Have been defined

References

    Have been considerably extended

 

 

    I spent some considerable time going through the disparate records to identify agreed on changes. If your favorite change is not there then say so. In particular if your name is not in the credits and you think it should be then now is your time to say. I compiled the list by adding the people who spoke at the last F2F to the previous list.

 

        Phill

draft-sstc-schema-protocol-23.xsd

draft-sstc-schema-assertion-23.xsd

draft-sstc-core-23-changes-highlighted.doc

draft-sstc-core-23.pdf

draft-sstc-core-23.doc