[OpenID] UCI Idea: An iPhone OP (?)
David Fuelling
sappenin at gmail.com
Wed Mar 3 20:58:38 UTC 2010
That's incredible, and very cool!!
I don't know that much about SAML, but it seems like a SAML IdP can use an
individual user's key-pair to create an assertion that an RP can use to
allow a login (a "signed assertion")?
>From TFA: "Then the IdP on the mobile phone creates an SAML assertion and
signs the assertion with the private key of the mobile phone".
OpenID doesn't have the ability to sign assertions like this, does it?
On Wed, Mar 3, 2010 at 12:03 PM, Paul Madsen <paulmadsen at rogers.com> wrote:
> Hi David, NTT built something like you describe for SAML SSO -
> specifically the scenario you list below in #4
>
>
> http://www.projectliberty.org/liberty/content/download/3960/26523/file/NTT-SASSO%20liberty%20case%20study.pdf
>
> paul
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20100303/0505a43e/attachment.htm>
More information about the general
mailing list