OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Authentication Method

Not sure of the overlap, the URI (whatever the SSTC version is)  simply
indicates that the authentication context for the assertion can somehow be
described using the AuthnContext structure. 

Is this a meaningful constraint? i.e. are there authentication technologies
that couldn't be described using the authncotnext structure? If there are,
we should modify authncontext to include them.


>-----Original Message-----
>From: Scott Cantor [mailto:cantor.2@osu.edu]
>Sent: Friday, March 12, 2004 10:42 AM
>To: 'Paul Madsen'; security-services@lists.oasis-open.org
>Subject: RE: [security-services] Authentication Method
>> Liberty stipulated that the saml:AuthenticationMethod would logically
>> indicate 'see Authentication Context' with a value of
>> 'urn:liberty:ac:2003-08.'
>I left this in (with a modified URI) when I added AuthnContext 
>to core, but
>I think there's an overlap to examine between AuthenticationMethod and
>AuthnContextClassRef. Seems to me that both could be read as 
>the set of context statements one might be dealing with.
>-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]