security-services message
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]
Subject: RE: [security-services] Groups - draft-sstc-solution-profile-soap-02.pdfuploaded
- From: Michael McIntosh <mikemci@us.ibm.com>
- To: Anthony Nadalin <drsecure@us.ibm.com>
- Date: Tue, 10 Feb 2004 11:29:36 -0500
Here is a synopsis of our SOAP Client Proposal:
1) Use WSS to secure the AuthnRequest from Requestor
to SAML Authority via:
a) Security Token
Reference to identify the Subject:
i) SubjectConfirmation/KeyInfo/wsse:SecurityTokenReference
ii) Subject/wsse:SecurityTokenReference
b) Security Token
Reference to identify the Target
c) Security Token
Reference to identify the Delegate
d) Signature with
Security Token Reference to authenticate/identify Requestor
e) Encryption
to provide confidentiality
2) Use WSS to secure the AuthnResponse/Assertion from
SAML Authority to Requestor via:
a) Security Token
Reference to identify the Subject:
i) SubjectConfirmation/KeyInfo/wsse:SecurityTokenReference
ii) Subject/wsse:SecurityTokenReference
b) Security Token
Reference to identify the Target
c) Security Token
Reference to identify the Delegate
d) Signature with
Security Token Reference to authenticate/identify Issuer
e) Encryption
to provide confidentiality
i) to Requestor
ii) to Target
iii) to Delegate
*3) Use WSS Signature from SAML Authority to form
WSS SAML Token
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]