OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Groups - Action Item Closed: #0331 Revise Holder-of-Key Web Browser...

OASIS Security Services (SAML) TC member,

Mr Brian Campbell has closed this action item.

Number: #0331
Description: Revise Holder-of-Key Web Browser...
Owner: Mr. Nathan Klingenstein
Status: Closed

Mr Brian Campbell  2008-05-19 19:51 GMT
from http://lists.oasis-open.org/archives/security-services/200805/msg00024.html

"Keying Material

Nate: the question is what keying material gets placed into the Holder 
of the Key by the IDP. Options
 include key fingerprint, the public key, or the certificate itself.
Hal: Cert fingerprint is more typical than key fingerprint
Nate: wants to pick something usable, but easy.
Nate: likely to choose the cert option. Although makes for a big assertion
Scott: No correlation impact here ...
Nate: concern is that the IDP selects some keying material the SP cant 
Scott: put something in conformance then, mandatory to implement
Scott: I'd stay away from names, deliver the keys (or fingerprints etc) 
Hal: suggest we continue on list

AI: Nate to revise Holder-of-Key Web Browser SSO Profile to make X.509 
mandatory to implement"

View Details:

PLEASE NOTE:  If the above links do not work for you, your email application
may be breaking the link into two pieces.  You may be able to copy and paste
the entire link address into the address field of your web browser.

- OASIS Open Administration

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]