[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: [wss] WSS-SAML-03 (dated 11/18)
I attached an update to the SAML binding document.
The document addresses the following issues
1. SAML STR does not contain responder URL
2. (Exclusive) Canonicalization of SAML assertions
3. The processing model was modified to account for the
selection, by the receiver and based on its policy, of of the
assertions it will process.
Other issues:
1. Vulnerability of Holder-of-Key signaature validation if assertion is
not signed
Attachment:
WSS-SAML-03.pdf
Description: Adobe PDF document
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC