shibboleth-dev - RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO"
Subject: Shibboleth Developers
List archive
- From: "Scott Cantor" <>
- To: <>
- Subject: RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO"
- Date: Wed, 12 Sep 2007 17:19:52 -0400
- Organization: The Ohio State University
> I am probably going out on a limb here, but it strikes me as analagous
> to the way that we don't care about authentication of TLS connection
> peers in the front-channel bindings; these aren't part of the trust
> fabric that matters.
Off topic, but...
Cardspace apparently relies on blind, unauthenticated use of the RP's SSL
certificate to obtain the encryption key to use.
That was an idea I expected to be presented here in response to our proposal
that encryption support require using metadata-distributed keys. I don't
like it much, but I'm not surprised they're doing it.
-- Scott
- wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Jeff Hodges, 09/11/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Tom Scavo, 09/19/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Scott Cantor, 09/19/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Tom Scavo, 09/19/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Scott Cantor, 09/19/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Tom Scavo, 09/19/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Scott Cantor, 09/19/2007
- <Possible follow-up(s)>
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Josh Howlett, 09/12/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Jeff Hodges, 09/12/2007
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Josh Howlett, 09/12/2007
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Josh Howlett, 09/12/2007
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Scott Cantor, 09/12/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Leif Johansson, 09/27/2007
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Josh Howlett, 09/19/2007
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Josh Howlett, 09/20/2007
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Scott Cantor, 09/20/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Spencer W. Thomas, 09/27/2007
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Josh Howlett, 09/20/2007
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Josh Howlett, 09/27/2007
- RE: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Josh Howlett, 09/28/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Spencer W. Thomas, 09/28/2007
- Re: wrt user entry of a pointer to their IDP ..or.. "invisible SSO", Tom Scavo, 09/19/2007
Archive powered by MHonArc 2.6.16.