security-services message
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]
Subject: Feedback on SAML 1.1 Assertions (sstc-saml-core-1.1-cs-01.pdf)
- From: John Kemp <john.kemp@earthlink.net>
- To: security-services@lists.oasis-open.org
- Date: Thu, 29 May 2003 14:40:34 -0400
1. lines 324-326 note that three kinds of assertion are specified by SAML. When reading the schema, <Statement> and <SubjectStatement> are treated as if they might appear independently of these three kinds of assertion, which is not in fact the case - they are for extensions that specify additional kinds of assertion. I would recommend that this distinction is made clear in this introductory text.
2. line 331 states that "Assertions have a nested structure". 'Nesting' implies that one assertion may be contained within another, which as far as I can tell from the schema is not possible. I would recommend that this sentence be changed to note that an "assertion acts as a container for a number of assertion statements" or some similar text.
Thanks,
- John Kemp
______________________________
John Kemp / john.kemp@earthlink.net
(+1) 413.458.9053 / frumioj@AOL
Coordinating Editor / Project Liberty
PGP.sig
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]