RE: [security-services] BPP vs BAP for SAML 1.1

["Philpott, Robert" <rphilpott@rsasecurity.com>]

> -----Original Message-----
> From: Scott Cantor [mailto:cantor.2@osu.edu]
> Sent: Wednesday, March 24, 2004 2:57 PM
> To: 'Rich Salz'
> Cc: 'Security-Services'
> Subject: RE: [security-services] BPP vs BAP for SAML 1.1
> 
> > I don't mind :), but can you explain why the yelp?
> 
> Just a general aversion to password management, primarily. A federation of
> many Shibboleth origins and targets would have a nasty bit of work to do.
> 
[Rob] I agree - as solutions scale up to many trust relationships, it can
become quite a problem.  Fortunately, most commercial deployments haven't
reached that level yet (and many may never get that big).  When customers
start out in these deployments, I've been finding they want the simplest
mechanisms we can offer, which is BASIC Auth/Server SSL.

But I certainly understand it from the Shib position.

> -- Scott
> 
> 
> To unsubscribe from this mailing list (and be removed from the roster of
> the OASIS TC), go to http://www.oasis-
> open.org/apps/org/workgroup/security-services/members/leave_workgroup.php.