[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [security-services] ENISA report on SAML Authentication Context and IDABC LOA
Giles, I didn't see a ref to Internet2 MACE-Dir eduPersonAssurance in your document, so this is FYI: https://spaces.internet2.edu/display/macedir/Draft+-+eduPersonAssurance Tom On Wed, Sep 17, 2008 at 10:14 AM, Giles Hogben <Giles.Hogben@enisa.europa.eu> wrote: > Dear All, > I wonder if we could have some comments on the attached document from the TC - and some advice on how to take the conclusions of the attached document forward...: > > In 2007, I attended an SSTC call to discuss some possible updates/extensions to SAML (mostly Authentication Context). The next step was to produce a gap analysis between a European Authentication Levels model and SAML AC. Various hold-ups in the publication of the European model and our own resources delayed this more than I would have liked, but we now have a first version of a detailed gap analysis and some recommendations which came out of it. I have seen that some work has been progressing on this matter already with the NIST AAL's so I thought it would be a good time to send our contribution. > > I've attached a PDF of our first draft. The most important points are in the conclusion and the details of our analysis of AC vs IDABC model are in the gap analysis section. > > I've put Kostas, the co-author of this (who did most of the work) in cc. > > Regards, > > Giles > > Giles Hogben > Network Security Policy Expert > European Network & Information Security Agency (ENISA) > Tel: +30 2810 391892 > Fax: +30 2810 39000 > > >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]