OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Proposal for assertion-level subjects

> Are you concerned about repeating the confirmation process or its 
> representation in the assertion. Avoiding both would be desirable. The 
> former seems more significant to me.

Both. The common case (today) is bearer, and as such is just wasted space,
so that is a bigger factor.

If in future HOK or equivalent became common, then the space savings would
pale next to the runtime cost, and people would be forced to do bizarre DOM
equivalence testing to try and avoid repeating the verification.

It's a bad idea not to optimize it out no matter how you slice it.

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]