OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: saml-metadata draft comments

I have a few comments reguarding the metadata spec, to whit:

- was the ommition of the BNF of entityIDType deliberate?

- i noticed you dropped the cacheDuration attribute.  when the
resolution protocols are re-introduced, i think we will need to include
this (which is a more common caching model in resolvers, AFAICT)

- ds:sig indicates pubkeys for signing are exchanged outofband
with a non-normative must.  i think this statement is unneccesary,
instead "keys required to verify the signature is out of scope for this

- SPDescriptor drops support for the pulication of multiple
assertionconsumerserviceurl. the uses case (from RSA) which supported
this design choice, i think, are still quite valid, imho

--- peterd

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]