OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Groups - sstc-saml-profiles-2.0-draft-08-diff.pdf uploaded

Hi Frederick, some comments on 08, by line number in

117 - as it matches the pattern 'Foo profile of SAML', your use of the title
'SSO Profiles of SAML' on line 244 implies that the SSO Profiles are of the
second 'type' of profile, rather than the first (as defined by  'use of SAML
... for a particular environment of context of use').

More generally, it would be nice if we could define a naming schema for the
first type as well.

254 - SOAP Binding is omitted.

264 - also updates (or at least subsumes) artifact confirmation method

297 - suggest text '..... service provider without the steps preceeding Step

299 - Section references are mistargetted, should be and

324 - In both of sections or, the possibility of the
<AuthnRequest> and <Response> being passed through the artifact binding is
presented but no mention is made of the subsequent dereferencing step.

333 - does the recommendation 'that the HTTP exchanges in this step be made
over SSL or TLS' include both front and back-channel HTTP interactions? Same
for line 358.

346 - 'in the form of <RequestedAuthnContext> or <Scoping>'

456 - the URI for ecp doesn't include 'SSO', as does the browser profile,
e.g. '...profiles:ecp' versus '...profiles:SSO:browser'
530 - reference to LEC in title (and others throughout this section)


>-----Original Message-----
>From: frederick.hirsch@nokia.com [mailto:frederick.hirsch@nokia.com]
>Sent: Friday, May 14, 2004 3:26 PM
>To: security-services@lists.oasis-open.org
>Subject: [security-services] Groups -
>sstc-saml-profiles-2.0-draft-08-diff.pdf uploaded
>The document sstc-saml-profiles-2.0-draft-08-diff.pdf has been 
>submitted by Frederick Hirsch (frederick.hirsch@nokia.com) to 
>the OASIS Security Services TC document repository.
>Document Description:
>Changes based on 5/11/04 SSTC conference call.
>1. replace Identifier with ID in elements
>2. in elements and attributes replace Authentication with Authn
>Specifically, changed AuthenticationStatement, 
>NameIdentifierMappingRequest, NameIdentifierMappingResponse, 
>EncryptedIdentifier, NameIdentifierMappingService
>Also uploaded OpenOffice source.
>Download Document:  
>View Document Details:
>PLEASE NOTE:  If the above links do not work for you, your 
>email application
>may be breaking the link into two pieces.  You may be able to 
>copy and paste
>the entire link address into the address field of your web browser.
>To unsubscribe from this mailing list (and be removed from the 
>roster of the OASIS TC), go to 

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]