Official SSTC Submission of SAML 2.0 for consideration as an OASIS Stand

(resent with a subject line this time so the Kavi mail list archiver will accept the message – ooops)

Hello Mary,

The SSTC has successfully completed a final public review of the SAML 2.0 specifications and subsequently completed a vote to reaffirm the specifications as SSTC Committee Draft Specifications. We also completed a vote to submit the specifications to OASIS for consideration of approval as an OASIS Standard.

The current OASIS TC process identifies the following items that must be provided when submitting a TC Committee Draft to OASIS for consideration of adoption as an OASIS Standard. The SSTC is providing the information supplied below to satisfy the TC process in this regard.

Please let Prateek and myself know if there are any questions or whether you require additional information to satisfy this request.

Thank you.

OASIS Security Services Technical Committee Chairs:

Prateek Mishra

Principal identity

p: 617-969-5745

c: 617-872-7737

mailto:pmishra@principalidentity.com

Rob Philpott

RSA Security Inc.

Tel: 781-515-7115

Mobile: 617-510-0893

RSA Security

mailto:rphilpott@rsasecurity.com

------------------------------------------------------------------------------------

A formal specification that is a valid member of its type, together with appropriate documentation for the specification, both of which must be written using approved OASIS templates

A consolidated zip file with all specifications and schema is publicly available from:

http://www.oasis-open.org/committees/download.php/11045/sstc-saml-2.0-cd-04-pdf-xsd.zip

The 8 individual SAML V2.0 PDF files (with no diff’s) are publicly available at:

http://www.oasis-open.org/committees/download.php/11044/sstc-saml-conformance-2.0-cd-04.pdf

http://www.oasis-open.org/committees/download.php/11042/sstc-saml-core-2.0-cd-04.pdf

http://www.oasis-open.org/committees/download.php/11040/sstc-saml-bindings-2.0-cd-04.pdf

http://www.oasis-open.org/committees/download.php/11038/sstc-saml-profiles-2.0-cd-04.pdf

http://www.oasis-open.org/committees/download.php/11036/sstc-saml-metadata-2.0-cd-04.pdf

http://www.oasis-open.org/committees/download.php/11047/sstc-saml-authn-context-2.0-cd-04.pdf

http://www.oasis-open.org/committees/download.php/11031/sstc-saml-sec-consider-2.0-cd-04.pdf

http://www.oasis-open.org/committees/download.php/11029/sstc-saml-glossary-2.0-cd-04.pdf

The 7 individual main SAML V2.0 schema files are publicly available at:

http://www.oasis-open.org/committees/download.php/11027/sstc-saml-schema-assertion-2.0.xsd

http://www.oasis-open.org/committees/download.php/11026/sstc-saml-schema-protocol-2.0.xsd

http://www.oasis-open.org/committees/download.php/11025/sstc-saml-schema-ecp-2.0.xsd

http://www.oasis-open.org/committees/download.php/11024/sstc-saml-schema-metadata-2.0.xsd

http://www.oasis-open.org/committees/download.php/11023/sstc-saml-schema-x500-2.0.xsd

http://www.oasis-open.org/committees/download.php/11022/sstc-saml-schema-xacml-2.0.xsd

http://www.oasis-open.org/committees/download.php/11021/sstc-saml-schema-dce-2.0.xsd

The 2 individual core SAML V2.0 Authentication Context schema files are publicly available at:

http://www.oasis-open.org/committees/download.php/11020/sstc-saml-schema-authn-context-2.0.xsd

http://www.oasis-open.org/committees/download.php/11019/sstc-saml-schema-authn-context-types-2.0.xsd

The 24 individual SAML V2.0-defined Authentication Context Class schema files are publicly available at:

http://www.oasis-open.org/committees/download.php/11018/sstc-saml-schema-authn-context-auth-telephony-2.0.xsd

http://www.oasis-open.org/committees/download.php/11017/sstc-saml-schema-authn-context-ip-2.0.xsd

http://www.oasis-open.org/committees/download.php/11016/sstc-saml-schema-authn-context-ippword-2.0.xsd

http://www.oasis-open.org/committees/download.php/11015/sstc-saml-schema-authn-context-kerberos-2.0.xsd

http://www.oasis-open.org/committees/download.php/11014/sstc-saml-schema-authn-context-mobileonefactor-reg-2.0.xsd

http://www.oasis-open.org/committees/download.php/11013/sstc-saml-schema-authn-context-mobileonefactor-unreg-2.0.xsd

http://www.oasis-open.org/committees/download.php/11012/sstc-saml-schema-authn-context-mobiletwofactor-reg-2.0.xsd

http://www.oasis-open.org/committees/download.php/11011/sstc-saml-schema-authn-context-mobiletwofactor-unreg-2.0.xsd

http://www.oasis-open.org/committees/download.php/11010/sstc-saml-schema-authn-context-nomad-telephony-2.0.xsd

http://www.oasis-open.org/committees/download.php/11009/sstc-saml-schema-authn-context-personal-telephony-2.0.xsd

http://www.oasis-open.org/committees/download.php/11008/sstc-saml-schema-authn-context-pgp-2.0.xsd

http://www.oasis-open.org/committees/download.php/11007/sstc-saml-schema-authn-context-ppt-2.0.xsd

http://www.oasis-open.org/committees/download.php/11006/sstc-saml-schema-authn-context-pword-2.0.xsd

http://www.oasis-open.org/committees/download.php/11005/sstc-saml-schema-authn-context-session-2.0.xsd

http://www.oasis-open.org/committees/download.php/11004/sstc-saml-schema-authn-context-smartcard-2.0.xsd

http://www.oasis-open.org/committees/download.php/11003/sstc-saml-schema-authn-context-smartcardpki-2.0.xsd

http://www.oasis-open.org/committees/download.php/11002/sstc-saml-schema-authn-context-softwarepki-2.0.xsd

http://www.oasis-open.org/committees/download.php/11001/sstc-saml-schema-authn-context-spki-2.0.xsd

http://www.oasis-open.org/committees/download.php/11000/sstc-saml-schema-authn-context-srp-2.0.xsd

http://www.oasis-open.org/committees/download.php/10999/sstc-saml-schema-authn-context-sslcert-2.0.xsd

http://www.oasis-open.org/committees/download.php/10998/sstc-saml-schema-authn-context-telephony-2.0.xsd

http://www.oasis-open.org/committees/download.php/10997/sstc-saml-schema-authn-context-timesync-2.0.xsd

http://www.oasis-open.org/committees/download.php/10996/sstc-saml-schema-authn-context-x509-2.0.xsd

http://www.oasis-open.org/committees/download.php/10995/sstc-saml-schema-authn-context-xmldsig-2.0.xsd

A clear English-language summary of the specification:

The Security Assertion Markup Language (SAML) defines the syntax and processing semantics of assertions made about a subject by a system entity. In the course of making, or relying upon such assertions, SAML system entities may use other protocols to communicate either regarding an assertion itself, or the subject of an assertion.

This specification defines both the structure of SAML assertions, and an associated set of protocols, in addition to the processing rules involved in managing a SAML system. SAML assertions and protocol messages are encoded in XML and use XML namespaces. They are typically embedded in other structures for transport, such as HTTP POST requests or XML-encoded SOAP messages. The SAML bindings specification provides frameworks for the embedding and transport of SAML protocol messages. The SAML profiles specification provides a baseline set of profiles for the use of SAML assertions and protocols to accomplish specific use cases or achieve interoperability when using SAML features.

A statement regarding the relationship of this specification to similar work of other OASIS TCs or other standards developing organizations:

To our knowledge, this specification has no relationship to the work of other OASIS TCs or other standards developing organizations.

Certification by at least three OASIS member organizations that they are successfully using the specification consistently with the OASIS IPR Policy:

(a) Trustgenix attestation of successful use of SAML 2.0:

· http://lists.oasis-open.org/archives/security-services/200412/msg00014.html

(b) Entrust attestation of SAML 2.0 implementation:

· http://lists.oasis-open.org/archives/security-services/200411/msg00042.html

· http://lists.oasis-open.org/archives/security-services/200411/msg00105.html

An account of each of the comments/issues raised during the public review period, along with its resolution:

Available from http://lists.oasis-open.org/archives/security-services/200501/msg00070.html

An account of and results of the voting to approve the approve the specification as a Committee Draft:

(a) Vote to affirm approval of the current specification set as a committee draft:

· 34 Yes, 0 No, 0 Abstain (Out of 39). Two-thirds vote required for passage.

· http://www.oasis-open.org/apps/org/workgroup/security/ballot.php?id=667&

(b) Vote to submit current specification set to OASIS for standardization.

· 33 Yes, 0 No, 0 Abstain (Out of 39). Simple majority required for passage.

· http://www.oasis-open.org/apps/org/workgroup/security/ballot.php?id=668&

An account of or pointer to votes and comments received in any earlier attempts to standardize substantially the same specification, together with the originating TC's response to each comment;

This specification has not previously been submitted to OASIS for standardization.

A pointer to the publicly visible comments archive for the originating TC;

http://lists.oasis-open.org/archives/security-services-comment/

A statement from the chair of the TC certifying that all members of the TC have been provided with a copy of the OASIS IPR Policy:

Notice published to the list on November 30, 2004:

· http://lists.oasis-open.org/archives/security-services/200411/msg00131.html

Optionally, a pointer to any minority reports submitted by one or more TC members who did not vote in favor of approving the Committee Draft, or certification by the chair that no minority reports exist.

No such report exists.

security-services message