Skip to Content.
Sympa Menu

shibboleth-dev - RE: [Shib-Dev] FW: [security-services] Public Review of SAML 2.0 Profiles

Subject: Shibboleth Developers

List archive

RE: [Shib-Dev] FW: [security-services] Public Review of SAML 2.0 Profiles


Chronological Thread 
  • From: <>
  • To: <>
  • Subject: RE: [Shib-Dev] FW: [security-services] Public Review of SAML 2.0 Profiles
  • Date: Mon, 30 Mar 2009 16:52:50 -0400
  • Accept-language: en-US
  • Acceptlanguage: en-US

That is a use case, I am very much interested in. All 3 of the "scenarios" I
mentioned
were effectively that use case, with various trust issues. Perhaps those
trust issues are
not considered relevant; regardless I'll post my comments to the SSTC list.

Thanks,
Jeff

________________________________________
From: Scott Cantor
[]
Sent: Monday, March 30, 2009 4:48 PM
To:

Subject: RE: [Shib-Dev] FW: [security-services] Public Review of SAML 2.0
Profiles

Peter Williams wrote on 2009-03-30:
> Can you specifically disclose the Shibboleth communities rationales and
> motivating use cases?

https://spaces.internet2.edu/display/ShibuPortal/Home

> Presumably, there was a review at some point, with associated disclosure,
> discussion ppts, comments, contributions, etc.

I needed a solution to an impending problem, warned a few people left in
Liberty where the work overlapped with prior art, and then I wrote it up.

I am in a unique position to do so with respect to composition with the
original standard because I know what the original standard was designed to
do once the necessary extensions and profiling were done. The delegation
work, apart from the portion already done in Liberty, is just the material I
couldn't spend time on three years ago when I was writing the original spec.

-- Scott


Archive powered by MHonArc 2.6.16.

Top of Page