Archive for the ‘SAML’ Category

Newer Entries »

Tuesday, June 13th, 2006

From various discussions held with various folks, e.g. on the IDWorkshop mailing list (aka “Identity Gang“), it has become apparent that the major sticking point w.r.t. SAMLv2 adoption in some quarters, e.g. in the “scripting” world (e.g. PHP/Perl/Python/Ruby), is the present SAMLv2 bindings‘ mandated reliance on XML Digital Signature (aka “XMLdsig”, http://www.w3.org/TR/xmldsig-core/). Interoperable XMLdsig libraries are hard to come by, perhaps due to the XMLdsig spec’s complexity and reliance on “XML canonicalization” (aka “c14n”, http://www.w3.org/TR/xml-c14n) which is inherently complex on it’s own.

So Scott Cantor and I have hacked up this draft alternative SAMLv2 HTTP POST “NoXMLdsig” binding..

SAMLv2 HTTP POST “NoXMLdsig” binding

Now the next step will be to craft a SAMLv2 Profile that takes advantage of it.

Average Rating: 4.7 out of 5 based on 202 user reviews.

[ | | | from fda approved pharmacy | ]

Posted in Draft Specs, Identity, SAML, Security | 1 Comment »

Friday, May 12th, 2006

It turns out the Google has implemented SAML-based single sign-on in their Google Search Appliance gizmo.

Average Rating: 4.7 out of 5 based on 287 user reviews.

[ | | | from fda approved pharmacy | ]

Posted in Adoption, SAML | No Comments »

Friday, May 12th, 2006

So, unfortunately for a while now, a few companies have asserted that they hold IP (Intellectual Property, typically in the form of issued patents) that applies to various aspects of SAML. RSA Security is one of these companies, and it even went so far as to “require” those implementing SAML to fill-out a license application form and submit it to them. Thankfully, RSA has now decided to abandon this practice and adopt a “defensive suspension” IP posture with respect to SAML. Hopefully, other companies whose SAML patent statements are not (yet) explicitly of the “defensive suspension” form will also adopt this posture. Such asserted patent statements have been a sticking point with various slices of the open source community, and hopefully this revision will help aid SAML adoption in such communities.

Average Rating: 4.7 out of 5 based on 213 user reviews.

[ | | | from fda approved pharmacy | ]

Posted in Intellectual Property, Licensing, Patents, SAML | 1 Comment »

Saturday, March 11th, 2006

I recently co-authored a major rewrite of the so-called “SIP SAML” I-D, crafting it into an actual SAMLv2 profile and binding, now (rather plainly) entitled “SIP SAML Profile and Binding”. Here’s the publication announcement: I-D ACTION:draft-tschofenig-sip-saml-05.txt.

Here is the abstract:

This document specifies a Session Initiation Protocol (SIP) profile of Security Assertion Markup Language (SAML) as well as a SAML SIP binding. The defined SIP SAML Profile composes with the mechanisms defined in the SIP Identity specification and satisfy requirements presented in “Trait-based Authorization Requirements for the Session Initiation Protocol (SIP)”.

Average Rating: 4.4 out of 5 based on 232 user reviews.

[ | | | from fda approved pharmacy | ]

Posted in Identity, SAML, Security, SIP | No Comments »

Newer Entries »