On 4-Jun-06, at 8:43 PM, Jeff Hodges wrote:
The reasons these points matter are at least..
* established SAML semantics largely aren't employed - thus all the
added-value security knowledge-base that they represent is not
leveraged
For example?
* crafting implementations facilitating convenient re-configuration to
"turn security on" isn't facilitated (i.e. security mechs other
than those sxip-derived ones that are in the spec)
I think that it is, just isn't documented. If it were documented
better you'd be happy?
* ditto for facilitating "turning on identity federation"
I'm not sure what that means.
John
_______________________________________________
dix mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dix
