OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Slightly revised proposals to core/bindin gs


I am unable to access the URL in your message. Could
you please check the link? 

Within the next week I will
start organizing a SAML 1.1 working documents repository at the OASIS SSTC.

- prateek

>>-----Original Message-----
>>From: Scott Cantor [mailto:cantor.2@osu.edu]
>>Sent: Friday, February 28, 2003 1:58 PM
>>To: 'SAML'
>>Subject: [security-services] Slightly revised proposals to 
>>I'm not going to clutter up the list with another meg of 
>>files, but please find an update to the core and binding 
>>extensions for new
>>SSO profiles in Word form here:
>>The change that I made is something I'm coming to feel fairly 
>>strongly about in light of the complexities I'm seeing in Liberty
>>regarding changes to their SAML extensions. What I did was 
>>reformulate the original proposal, an extension to 
>>samlp:Request, as an
>>extension to samlp:Query within an unchanged samlp:Request.
>>I have come to believe that just as Assertions extend by 
>>defining new statement types, profiles that use requests 
>>should extend by
>>defining new Query types. We can quibble about whether a 
>>request for SSO is a proper query, or what the name of it 
>>should be, but
>>the control over versioning the semantics of the query are 
>>much cleaner this way.
>>As a simple example of why, our model for indicating 
>>expectations on the part of requesters and responders is the 
>>RespondWith and
>>AuthorityKind elements, and both of them deal with query and 
>>statement types as QNames. While they may not be applicable 
>>in the case
>>of this interaction, which is not the usual query to an 
>>authority interaction, the consistency of the approach is the point.
>>-- Scott
>>To subscribe or unsubscribe from this elist use the subscription
>>manager: <http://lists.oasis-open.org/ob/adm.pl>

To subscribe or unsubscribe from this elist use the subscription
manager: <http://lists.oasis-open.org/ob/adm.pl>

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]