OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

xacml message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: XACML Profile for SAML 2.0, Draft 03

Attached is an updated XACML Profile for SAML 2.0.  It includes
the specification and two schema: one extending the SAML 2.0
Assertion schema and the other extending the SAML 2.0 Protocol

This profile specifies:
o Use of existing SAML AttributeQuery and AttributeStatement to
  request, store, and convert SAML Attributes to XACML
o New SAML extensions XACMLAuthzDecisionQuery and
  XACMLAuthzDecisionStatement for requesting, responding with,
  and storing an XACML Authorization Decision.
o New SAML extensions XACMLPolicyQuery and XACMLPolicyStatement
  for requesting, responding with, and storing XACML Policy or
  PolicySet instances.

The only changes made between Draft 02 and Draft 03 were minor
edits and the changes needed to make the Profile conform to the
current SAML 2.0 specification and schemas.  The extensions were
much easier to do this time!  I also changed
XACMLAuthorizationDecisionQuery/Statement to
XACMLAuthzDecisionQuery/Statement, since SAML changed their
corresponding names.

Comments invited.  Also available in repository as

Anne H. Anderson             Email: Anne.Anderson@Sun.COM
Sun Microsystems Laboratories
1 Network Drive,UBUR02-311     Tel: 781/442-0928
Burlington, MA 01803-0902 USA  Fax: 781/442-1692

XACML Profile for SAML 2.0,Working Draft 03 plus two associated schemas

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]