shibboleth-dev - Re: authentication strength
Subject: Shibboleth Developers
List archive
- From: Ian Young <>
- To:
- Subject: Re: authentication strength
- Date: Thu, 16 Feb 2006 13:02:40 +0000
Scott Cantor wrote:
I don't quite know what 'password' means in this case. SAML 2.0 does
a better job of this (Password, InternetProtocolPassword,
PasswordProtectedTransport, SecureRemotePassword) so I guess my
question is how do we make these kind of fine-grain distinctions in
SAML 1.1?
See above, attributes or a shoehorning of stuff into AuthenticationMethod.
Or sure, if it's static, somebody could decide on a metadata extension. I
had a conversation with Ian about potentially extracting saml:Attribute
elements from entity metadata and publishing those alongside user
attributes, just to keep things relatively automatic.
I have now dumped some of that discussion into a bugzilla enhancement request, as previously discussed. Interested parties can find it here:
http://bugzilla.internet2.edu/show_bug.cgi?id=493
Enjoy,
-- Ian
- authentication strength, Tom Scavo, 02/15/2006
- RE: authentication strength, Ramanathan, Subbu, 02/15/2006
- Re: authentication strength, Walter Hoehn, 02/15/2006
- Re: authentication strength, Tom Scavo, 02/15/2006
- RE: authentication strength, Scott Cantor, 02/15/2006
- Re: authentication strength, Ian Young, 02/16/2006
- Re: authentication strength, Tom Scavo, 02/16/2006
- Re: authentication strength, Tom Scavo, 02/16/2006
- Re: authentication strength, Von Welch, 02/16/2006
- Re: authentication strength, Keith Hazelton, 02/16/2006
- Re: authentication strength, Tom Scavo, 02/19/2006
- Re: authentication strength, Keith Hazelton, 02/19/2006
- Re: authentication strength, Tom Scavo, 02/19/2006
- Re: authentication strength, Keith Hazelton, 02/16/2006
- Re: authentication strength, Ian Young, 02/16/2006
- RE: authentication strength, Scott Cantor, 02/15/2006
- Re: authentication strength, Tom Scavo, 02/15/2006
Archive powered by MHonArc 2.6.16.