OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Proposed clean up on subject text

> What about the case of, say, an Attribute query over SOAP?  An Attribute
> Authority will respond with an assertion saying that "the entity with
> identifier X has the following associated attributes".  
> I don't imagine that subject confirmation would be included, because the
> referenced entity isn't part of the exchange.  So, the default
> interpretation of that assertion should definitely not be "bearer".  

Right, that's my use case today.

> I'd like to see text in core, section 2.4.1 "Element <Subject>", state
> that the absence of any SubjectConfirmation elements MUST be interpreted
> as having no correlation to any presenter of the assertion.  Leaving it
> up in the air seems very dangerous to me.

I'm happy saying it's just "unspecified", as Ron said...the authority is
making no statement about subject confirmation whatsoever.

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]