[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] Comment on sstc-saml-glossary-2.0 (also c losesAI #0114)
Mishra, Prateek wrote on 3/12/2004, 4:00 PM: > [proposed-definition] > An principal's identity is said to be federated between a pair > (set) of providers when there is agreement between the providers > on an identifier (or a class of identifiers) and a time-period > during which the identifier is to be used to refer to the > principal. > [/proposed-definition] This looks good to me. > Many different policies could be used to govern the chosen identifier. > For example, providers might agree to any one of the following > identity federation policies: An aditional example: (5) The IdP and the SP agree on a handle for the user out-of-band (such as an employee number used between an employer and their payroll service provider. Conor
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]