OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: RE: [security-services] Groups - sstc-saml-bindings-2.0-draft-06-diff.sxw uploaded


Comments are below (lines number based on the diff version of the doc)

John


*************************************************

- Nothing explicitly says we do or do not support HTTP 1.0

- line 130: I believe should be TLS_RSA_WITH_AES_128_CBC_SHA (missing WITH)

- 1.3 as said in telecon - more natural for this section to be at beginning
at section 3.

- 1.3 Trivial point - but do we want to say anything re the NULL
ciphersuites - i.e. not acceptable

- line 211/212 "SAML problem domain" - don't understand (although I believe
I know what its trying to say)

- line 214 reference should be to section 4.4 (not 4.1)

- lines 219/222 - can we at least now refer to the latest XML schema
location

- line 342 - StatusCodevalue =>  StatusCode Value

- line 411 HTML401 not in references

- line 412 RFC2396 not in references

- line 412 would be good to reference the appropriate section of RFC2396
(There are a lot of encoding rules in that doc)

- lines 439/440 and 447 duplicate re 80bytes constraint

- line 451 RFC1952 not in references

- lines 450->463 and 464->484.  Are these processing rules something we have
invented or are the in use else where?

- line 713.  If you follow this reference u are shown SOAP 1.2.  To go
explicitly to SOAP 1.1 the url is http://www.w3.org/TR/soap11




> -----Original Message-----
> From: john.kemp@nokia.com [mailto:john.kemp@nokia.com]
> Sent: 02 March 2004 02:41
> To: security-services@lists.oasis-open.org
> Subject: [security-services] Groups -
> sstc-saml-bindings-2.0-draft-06-diff.sxw uploaded
>
>
> The document sstc-saml-bindings-2.0-draft-06-diff.sxw has been
> submitted by John Kemp (john.kemp@nokia.com) to the OASIS
> Security Services TC document repository.
>
> Document Description:
> Added a general URL-encoding section, a gzipped encoding section,
> and some rules for signing URL-encoded protocol messages.
>
> Download Document:
> http://www.oasis-open.org/apps/org/workgroup/security/download.php
> /5728/sstc-saml-bindings-2.0-draft-06-diff.sxw
>
> View Document Details:
> http://www.oasis-open.org/apps/org/workgroup/security/document.php
> ?document_id=5728
>
>
> PLEASE NOTE:  If the above links do not work for you, your email
> application
> may be breaking the link into two pieces.  You may be able to
> copy and paste
> the entire link address into the address field of your web browser.
>
>
>
> To unsubscribe from this mailing list (and be removed from the
> roster of the OASIS TC), go to
> http://www.oasis-open.org/apps/org/workgroup/security-services/mem
bers/leave_workgroup.php.



[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]