[OGSA-AUTHZ] Fwd: SAML V2.0 Attribute Extensions
David Chadwick
d.w.chadwick at kent.ac.uk
Thu Nov 6 07:29:14 CST 2008
Hi Scott
is your OriginalIssuer the same concept as what I and others know as the
AuthoritativeSource? ie. this is the authority that assigns an attribute
to an entity and has the right to remove it as well e.g. the university
that gave you your degree is the authoritative source for your degree,
and it can revoke your degree at anytime if it was subsequently proved
that you plagiarised in your thesis. The authoritative source for your
driving license attribute is the driving license agency in your country.
etc.
OriginalIssuer does not quite have the same feel as authoritative source
regards
David
Tom Scavo wrote:
> All,
>
> Scott Cantor has submitted a document entitled "SAML V2.0 Attribute
> Extensions" to the SSTC:
>
> http://wiki.oasis-open.org/security/SAML2AttributeExt
>
> Such extensions may be very useful in conjunction with the SAML 2.0
> profile of XACML v2.0. If you have suggestions along these lines, you
> may submit them directly to OASIS:
>
> http://www.oasis-open.org/committees/comments/index.php?wg_abbrev=security
>
> The document is meant to be a living document (similar to the SAML
> V2.0 errata document) that will accumulate all such attribute
> extensions under a single namespace.
>
> Regards,
>
> Tom Scavo
> NCSA
> --
> ogsa-authz-wg mailing list
> ogsa-authz-wg at ogf.org
> http://www.ogf.org/mailman/listinfo/ogsa-authz-wg
>
--
*****************************************************************
David W. Chadwick, BSc PhD
Professor of Information Systems Security
The Computing Laboratory, University of Kent, Canterbury, CT2 7NF
Skype Name: davidwchadwick
Tel: +44 1227 82 3221
Fax +44 1227 762 811
Mobile: +44 77 96 44 7184
Email: D.W.Chadwick at kent.ac.uk
Home Page: http://www.cs.kent.ac.uk/people/staff/dwc8/index.html
Research Web site: http://www.cs.kent.ac.uk/research/groups/iss/index.html
Entrust key validation string: MLJ9-DU5T-HV8J
PGP Key ID is 0xBC238DE5
*****************************************************************
More information about the ogsa-authz-wg
mailing list