[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Public Review of SAML Profiles
To OASIS members, Public Announce Lists: The OASIS Security Services TC has recently approved the following specifications as Committee Drafts and approved them for public review: Service Provider Request Initiation Protocol and Profile Version 1.0 SAML V2.0 Metadata Profile for Algorithm Support Version 1.0 The Service Provider Request Initiation Protocol and Profile defines a generic browser-based protocol by which a request can be made to a service provider to initiate a protocol-specific request for authentication, and to ask that particular options be used when making such a request. The SAML V2.0 Metadata specification [SAML2Meta] includes an element allowing entities to describe the XML Encryption [XMLEnc] algorithms they support. This specification defines metadata extension elements to enable entities to describe the XML Signature [XMLSig] algorithms they support, and a profile for using both elements to enable better algorithm agility for profiles that rely on metadata. The public review starts today, 14 August 2010, and ends 13 October 2010. This is an open invitation to comment. We strongly encourage feedback from potential users, developers and others, whether OASIS members or not, for the sake of improving the interoperability and quality of OASIS work. We also welcome interested parties to join the TC as it continues to further development of its specifications. Please feel free to distribute this announcement within your organization and to other appropriate mail lists. More non-normative information about the specifications and the technical committee may be found at the public home page of the TC at [1] below. Comments may be submitted to the TC by any person through the use of the OASIS TC Comment Facility which can be located via the button marked "Send A Comment" at the top of that page, or directly at [2] below. Submitted comments (for this work as well as other works of that TC) are publicly archived and can be viewed at [3] below. All comments submitted to OASIS are subject to the OASIS Feedback License, which ensures that the feedback you provide carries the same obligations at least as the obligations of the TC members. The specification document and related files are available here: Service Provider Request Initiation Protocol and Profile Version 1.0 Editable Source: http://docs.oasis-open.org/security/saml/Post2.0/sstc-request-initiation-cd-01.odt PDF: http://docs.oasis-open.org/security/saml/Post2.0/sstc-request-initiation-cd-01.pdf HTML: http://docs.oasis-open.org/security/saml/Post2.0/sstc-request-initiation-cd-01.html Schema: http://docs.oasis-open.org/security/saml/Post2.0/sstc-request-initiation.xsd SAML V2.0 Metadata Profile for Algorithm Support Version 1.0 Editable Source: http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-metadata-algsupport-cd-01.odt PDF: http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-metadata-algsupport-cd-01.pdf HTML: http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-metadata-algsupport-cd-01.html Schema: http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-metadata-algsupport.xsd We also call your attention to the OASIS IPR Policy applicable to the work of this technical committee, which can be found at [4] below. All members of the TC should be familiar with this document, which may create obligations regarding the disclosure and availability of a member's patent, copyright, trademark and license rights that read on an approved OASIS specification. OASIS invites any persons who know of any such claims to disclose these if they may be essential to the implementation of the above specification, so that notice of them may be posted to the notice page for this TC's work, at [5] below. OASIS and the SAML TC welcome your comments. Mary P McRae Director, Standards Development Technical Committee Administrator OASIS: Advancing open standards for the information society email: mary.mcrae@oasis-open.org web: www.oasis-open.org twitter: @fiberartisan #oasisopen phone: 1.603.232.9090 [1] http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security [2] http://www.oasis-open.org/committees/comments/index.php?wg_abbrev=security [3] http://lists.oasis-open.org/archives/security-services-comment/ [4] http://www.oasis-open.org/who/intellectualproperty.php [5] http://www.oasis-open.org/committees/security/ipr.php
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]