OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [security-services] Groups - Draft Webinar on SAML 2.1 Plans uploaded

I think a big drawback is that these sorts of test usually just test
to see if one can eventually get product A to talk to product B.  They
do not, as far as I can tell, test for spec compliance.  Both in my
professional consulting and in my work with Shibboleth I have
encountered a number of impls (especially commercial ones) that simply
are not standards compliant.  This invariablly leads to a significant
amount of consternation and comments of how "this SAML stuff" is crap.

On Wed, Jul 11, 2012 at 2:41 PM, Cantor, Scott <cantor.2@osu.edu> wrote:
> On 7/11/12 12:54 PM, "Chad La Joie" <lajoie@itumi.biz> wrote:
>>Posting on behalf of Tim...
>>---------- Forwarded message ----------
>>From: Timothy Bennett <timothy@drummondgroup.com>
>>Should there be a slide that markets the interoperbility test that
>>Kantara sponsors and the list of SAML products that are certified as
> I'm...unenthused. The kindest that could be said is that the testing does
> not appear to reflect the feature set that my community cares about, or
> perhaps that if your domain is very small deployments with static feature
> sets, the testing is perhaps representative.
> -- Scott

Chad La Joie
trusted identities, delivered

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]