On 4-Jun-06, at 8:43 PM, Jeff Hodges wrote:
I suspect it is possible to craft a lightweight SAML web SSO profile that can support the sxip features (eg the signing approach) desired by some, and also support other, more conventional signing approaches (but not use xmldsig) -- both of which can be optional so it can be deployed in ultimate lightweight fashion if desired. This profile, designed with established SAML semantics and approaches, will then facilitate deployments' migration (perhaps even by reconfiguration) to more robust security and identity federation if desired.
I think that DIX is moving to becoming that. I've reused (based your advise, and Scott's and Bob's) as much SAML as I could whilst still maintaining the goals we've established for this work. If there's more SAML we can reuse than I'd greatly appreciate your expertise, guidance and support in making that a reality.
John _______________________________________________ dix mailing list [email protected] https://www1.ietf.org/mailman/listinfo/dix
