[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Sun's answers to security questions
Please see inline. thanks Atul Rich Thompson wrote: Considering the number of customer requests for interoperable security profiles and the lack of a standardized policy framework for negotiating a security profile to use for WSRP-related messages, the WSRP TC is seeking input about whether simple interim, interoperable profiles could be defined for the use case of multiple vendor's implementations being deployed within a single security domain in the mid-2006 timeframe.No explicit support for multiple identities at this time. End-user identity on the SOAP message/headers. Consumer identity can be tackled via SSL client certificates. 1.b. What WS-Security tokens will be supported for transferring identities (e.g. UserName, SAML, Kerberos, Digital Signature, etc)?UserName, SAML, Digital Signature, Liberty, others.. (some current, some future) 1.c. Would transferring the End-User identity via a WS-Security token and the Consumer identity via transport-level security be supported?Yes. 1.d. Any restrictions on how multiple identities can be attached to a particular SOAP message?Not supported currently. Not currently, but exploring SAML attributes for future (not considered user role yet). Not at this time. Not at this time. |
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]