The SAML web site is not longer accepting new posts. Information on this page is preserved for legacy purposes only. For current information on SAML, please see the OASIS Security Services Technical Committee Wiki.

10 building blocks for securing the internet

We could, today, make the internet a much safer place to compute. All the open-standard protocols required to significantly decrease malicious attackers and malware already exist. What is missing is the leadership and involvement from the politicians, organisations, and tech experts necessary to turn the vision into a reality. Several protocols already in existence could serve as a foundation for a more secure internet... They include:
  • Trusted Platform Module (TPM)
  • IP version 6 (IPv6)
  • Domain Name System Security Extensions (DNSSEC)
  • Security Assertion Markup Language (SAML)
  • OpenID
  • Open Authorisation (oAuth)
  • Multifactor authentication
  • WS-Security protocols
  • Interface for Metadata Access Points (IF-MAP)
  • Application-level security

...SAML is an XML-based protocol used to exchange security information between security domains. It is used by most of the protocols I cover below, including OpenID and oAuth, as well as multifactor authentication, all of which are becoming more common on the internet...

Read the complete article in Computerworld New Zealand. Focus Areas: BPEL | DITA | ebXML | IDtrust | OpenDocument | SAML | UBL | UDDI
OASIS sites: OASIS | Cover Pages | | AMQP | CGM Open | eGov | Emergency | IDtrust | LegalXML | Open CSA | OSLC | WS-I