[Specs-cx] SAML Artifact and sig
Nat Sakimura
n-sakimura at nri.co.jp
Wed Sep 16 15:23:10 UTC 2009
Yes. I will try to catch Scott Canter if I can today.
=nat
John Bradley wrote:
> I need to have a look at it. I don't qualify as an expert on SAML
> artifact binding.
>
> I suspect the risk is mitigated elsewhere in the flow through mutual
> TLS etc.
>
> Aren't you the Liberty/Kantara guy at DIDW with all of the SAML people?
>
> It is a good question.
>
> John B.
> On 2009-09-16, at 9:42 AM, Nat wrote:
>
>> Hi John,
>>
>> It seems you do not have signature over the artifact message through
>> browser in SAML. What was the justification for it?
>>
>> =nat at Tokyo via iPhone
>
> _______________________________________________
> Specs-cx mailing list
> Specs-cx at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-cx
More information about the Specs-cx
mailing list