OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Groups-draft-sstc-solution-profile-soap-02.pdfuploaded

>Perhaps there isn't a need for every single authentication mechanism to
>its own profile, but we need to make sure we can support these mechanisms
>when used with SAML. We are proposing a profile of how WSS can be used with

Let me clarify my point a little...I'm asking what is special about securing
the SAML request/response protocol with WSS as opposed to any other
SOAP-bound req/resp protocol. I don't see anything specific to SAML

Secondarily, the SOAP client "profile" as we're calling it now, is a
different beast. It's a specific use case in which the SAML protocol is
bound to SOAP because all the parties speak it. I see no clear reason why
WSS has to be part of that "profile" discussion in the sense that it's
orthogonal. Not that it's not applicable or relevant, simply a different

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]