OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Subject: RE: [security-services] MS announces SAML support (?)

Title: RE: [security-services] MS announces SAML support (?)

In a later talk, it became very clear that what MS wants to do is what Phill said on the last call: treat SAML as a first class object WRT WS-Security headers.

Don't expect Passport to start using SAML.

MS also is much enamored of XrML. They also identified XrML as something they want to also put in WS-Security headers. They expressed the idea that XrML duplicates SAML, which at first seemed absurd to me. However on reflection, I think that their intention is to use XrML licenses as capabilities.

When I was first exposed to Access Control theory back around 1985, I was told "capabilities don't scale." as if it were scripture. It was so long ago, I don't even clearly remember the reasoning in detail. I will have to think about how the world has changed and if it has altered the argument.

I also need to think about the semantic difference between an XrML license or XACML policy and the response to a soon to be proposed AuthZ Dec Query, with enhanced XACML output context.

I'll write more on this soon.


> -----Original Message-----
> From: Jeff Hodges [mailto:Jeff.Hodges@sun.com]
> Sent: Thursday, July 18, 2002 3:09 PM
> To: oasis sstc
> Subject: [security-services] MS announces SAML support (?)
> Anyone have any details on what Kim actually said in his talk
> @Catalyst?
> thanks,
> JeffH
> > Microsoft backs Web services security
> > standard
> > By ComputerWire
> > Posted: 16/07/2002 at 10:17 GMT
> > http://www.theregister.co.uk/content/4/26211.html
> >
> > Microsoft Corp is supporting a multi-vendor web services security
> > specification, opening the door on interoperability with
> rivals, Gavin
> > Clarke writes.
> >
> > The Redmond, Washington-based company said it will adopt Security
> > Assertion Mark-up Language (SAML), officially launched
> yesterday, as it
> > relates to WS-Security - developed by Microsoft and IBM
> with VeriSign
> > Inc.
> <snip/>
> > Microsoft architect Kim Cameron disclosed Microsoft's plans at the
> > Burton Group Catalyst 2002 Conference in San Francisco, California,
> > yesterday.
> <snip/>
> ----------------------------------------------------------------
> To subscribe or unsubscribe from this elist use the subscription
> manager: <http://lists.oasis-open.org/ob/adm.pl>

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Powered by eList eXpress LLC