security-services message

Subject: Re: [security-services] Using SAML Artifacts in the WSS SAML Token Profile

From: Greg Whitehead <grw@trustgenix.com>
To: Ron Monzillo <Ronald.Monzillo@Sun.COM>
Date: Fri, 8 Jul 2005 12:22:10 -0500


On Jul 8, 2005, at 12:02 PM, Ron Monzillo wrote:

> Would exchange of a (non-encrypted) assertion id introduce any privacy 
> concerns that do not apply when artifacts are exchanged?

Almost certainly.

-Greg

References:
- RE: [security-services] Using SAML Artifacts in the WSS SAML Token Profile
  - From: "Scott Cantor" <cantor.2@osu.edu>
- Re: [security-services] Using SAML Artifacts in the WSS SAML TokenProfile
  - From: Ron Monzillo <Ronald.Monzillo@Sun.COM>
- Re: [security-services] Using SAML Artifacts in the WSS SAML Token Profile
  - From: Greg Whitehead <grw@trustgenix.com>
- Re: [security-services] Using SAML Artifacts in the WSS SAML Token Profile
  - From: "Conor P. Cahill" <concahill@aol.com>
- Re: [security-services] Using SAML Artifacts in the WSS SAML TokenProfile
  - From: Ron Monzillo <Ronald.Monzillo@Sun.COM>