SAML 2.0 and WS-Security

Forum topic: Submitted by lweir on Wed, 2008-08-13 13:32.

 I am intending to use the SAML v2 specification by OASIS to generate SAML Assertions and include the same within the SOAP Header of all messages along with a WS Digital Signature. The intention is to address the 3 of the 4 A's of security to our services landscape.

My concern is that -as for now- OSASIS WS-Security v1.1 provides a SAML Token Profile (http://www.oasis-open.org/specs/#wssprofilesv1.0) but it seems this profile is for SAML v1.1! Therefore, my solution might have a gap!

Is possible / supported to use WS-Security v1.1 along with SAML v2.0??

 Many thanks!

‹ (1) direct communication and (2) forwarding the assertion Which usecase scenario to use ›

SAML 2.0 and WS-Security

ScottCantor | Wed, 2008-08-13 20:45

You're looking at an old specification, the STP that came out with WSS 1.1 includes both token types.

XML.org Focus Areas: BPEL | DITA | ebXML | IDtrust | OpenDocument | SAML | UBL | UDDI
OASIS sites: OASIS | Cover Pages | XML.org | AMQP | CGM Open | eGov | Emergency | IDtrust | LegalXML | Open CSA | WS-I

Hosted by:

OASIS