Skip to Content.
Sympa Menu

mace-opensaml-users - [OpenSAML2] Encryption for SAML1.1 assertions

Subject: OpenSAML user discussion

List archive

[OpenSAML2] Encryption for SAML1.1 assertions


Chronological Thread 
  • From: "Pantvaidya, Vishwajit" <>
  • To: "" <>
  • Subject: [OpenSAML2] Encryption for SAML1.1 assertions
  • Date: Thu, 6 Nov 2008 18:54:57 -0800
  • Accept-language: en-US
  • Acceptlanguage: en-US

Does the SAML1.1 spec support encryption of assertions – I mean as an implementer of the browser post profile on the service provider (relying party) side, do I need to be prepared to receive encrypted assertions? I could not see anything specific on this in the core spec or in the security considerations. Also I do see that the SAML2 classes in OpenSAML2 have the EncryptedAssertion type. But I could not find the SAML1 counterpart of that.

 




Archive powered by MHonArc 2.6.16.

Top of Page