Pat Patterson blogs on the the Project Concordia workshop held at RSA 2008 that shows SAML 2.0/WS-Federation single sign-on from a service provider to an identity provider. The identity provider authenticates the user via a managed information card and sends claims from the card to the service provider as SAML 2.0 attributes. Note that not every combination of SAML 2.0/WS-Federation SP, IdP and Information Card STS completely works, but enough that the approach was proven.

Ping Identity announced the acquisition of Sxip Access, a pioneering product for on-demand identity management. The deal enables Ping to accelerate its SaaS program and obtain proven technology for extending its flagship PingFederate product with the complementary Sxip Access feature set and deployment options. Ping Federate provides rapidly deployable software for secure Internet single sign-on (SSO). The Ping and Sxip technologies combine identity and access management solutions for software-as-a-service and federated identity. 

Open source identity community, OpenLiberty.org, announced the release of open source code to help Java developers build privacy and security features into their Web 2.0, component-based and mobile applications. OpenLiberty-J is based on Java 2 Platform, Standard Edition (J2SE), and open source XML, SAML, and Web services libraries from the Apache Software Foundation and Internet2, including the Shibboleth Project's OpenSAML.

Read the complete article in Network World.

Developers have announced the release of GridShib SAML Tools Version 0.3.0. GridShib is an NSF-funded project to integrate the Globus Toolkit and Shibboleth. With both GridShib for Globus Toolkit and GridShib for Shibboleth installed, Globus Toolkit may securely request attributes from the Attribute Authority component of a Shibboleth Identity Provider. GridShib distributes four software components: GridShib for Globus Toolkit, GridShib for Shibboleth, GridShib Certificate Authority, and GridShib SAML Tools.