OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: RE: [security-services] Comment on sstc-saml-glossary-2.0 (also c losesAI #0114)




Mishra, Prateek wrote on 3/12/2004, 4:00 PM:


 > [proposed-definition]
 > An principal's identity is said to be federated between a pair
 > (set) of providers when there is agreement between the providers
 > on an identifier (or a class of identifiers) and a time-period
 > during which the identifier is to be used to refer to the
 > principal.
 > [/proposed-definition]

This looks good to me.


 > Many different policies could be used to govern the chosen identifier.
 > For example, providers might agree to any one of the following
 > identity federation policies:

An aditional example:

(5) The IdP and the SP agree on a handle for the user out-of-band (such
as an employee number used between an employer and their payroll
service provider.

Conor





[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]