The SAML XML.org web site is not longer accepting new posts. Information on this page is preserved for legacy purposes only. For current information on SAML, please see the OASIS Security Services Technical Committee Wiki.

Diff for SAML Specifications

Mon, 2008-08-18 21:13 by bcampbellSun, 2008-11-09 15:06 by trscavo

I don't think marked up documents should be the first links a user sees on this page.
< previous diffnext diff >
Changes to Body
Line 1Line 1
 
<h2><a name="samlv20" title="samlv20"></a>SAML V2.0</h2>
 
<h2><a name="samlv20" title="samlv20"></a>SAML V2.0</h2>
 
<p>
 
<p>
-
<a href="http://docs.oasis-open.org/security/saml/v2.0/sstc-saml-approved-errata-2.0.pdf">Approved Errata for SAML V2.0</a> was produced by the SSTC on 14 Aug 2007. In addition to the normative errata document, the following non-normative &quot;errata composite&quot; documents have been provided that combine the prescribed corrections with the original specification text, illustrating the changes with margin change bars, struck-through original text, and highlighted new text.
+
SAML version 2.0 was approved as an OASIS Standard in March 2005. The complete SAML 2.0 OASIS Standard set (PDF format) and schema files are available in this <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-2.0-os.zip">zip file</a>.
-
</p>
+
-
<ul>
+
-
<li><a href="http://www.oasis-open.org/committees/download.php/22385/sstc-saml-core-errata-2.0-wd-04-diff.pdf">Core</a></li>
+
-
<li><a href="http://www.oasis-open.org/committees/download.php/22381/sstc-saml-bindings-errata-2.0-wd-04-diff.pdf">Bindings</a></li>
+
-
<li><a href="http://www.oasis-open.org/committees/download.php/22389/sstc-saml-profiles-errata-2.0-wd-05-diff.pdf">Profiles</a></li>
+
-
<li><a href="http://www.oasis-open.org/committees/download.php/22387/sstc-saml-metadata-errata-2.0-wd-03-diff.pdf">Metadata</a></li>
+
-
<li><a href="http://www.oasis-open.org/committees/download.php/22383/sstc-saml-conformance-errata-2.0-wd-03-diff.pdf">Conformance</a></li>
+
-
</ul>
+
-
<p>
+
-
SAML version 2.0 was approved as an OASIS Standard in March 2005. The complete SAML 2.0 OASIS Standard set (PDF format) and schema files are available in this <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-2.0-os.zip">zip file</a>.
+
 
</p>
 
</p>
 
<p>
 
<p>
-
The approved specification set consists of:
+
The approved specification set consists of:
 
</p>
 
</p>
 
<ul>
 
<ul>
-
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf">Assertions and Protocols</a> (also known as &quot;Core&quot;)
+
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf">Assertions and Protocols</a> (also known as &quot;Core&quot;)
 
<ul>
 
<ul>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-assertion-2.0.xsd">Assertion schema</a></li>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-assertion-2.0.xsd">Assertion schema</a></li>
Line 24Line 14
 
</li>
 
</li>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-bindings-2.0-os.pdf">Bindings</a></li>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-bindings-2.0-os.pdf">Bindings</a></li>
-
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-profiles-2.0-os.pdf">Profiles</a>
+
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-profiles-2.0-os.pdf">Profiles</a>
 
<ul>
 
<ul>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-dce-2.0.xsd">DCE attribute profile schema</a></li>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-dce-2.0.xsd">DCE attribute profile schema</a></li>
Line 32Line 22
 
</ul>
 
</ul>
 
</li>
 
</li>
-
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-metadata-2.0-os.pdf">Metadata</a>
+
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-metadata-2.0-os.pdf">Metadata</a>
 
<ul>
 
<ul>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-metadata-2.0.xsd">Metadata schema</a></li>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-metadata-2.0.xsd">Metadata schema</a></li>
 
</ul>
 
</ul>
 
</li>
 
</li>
-
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-authn-context-2.0-os.pdf">Authentication Context</a>
+
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-authn-context-2.0-os.pdf">Authentication Context</a>
 
<ul>
 
<ul>
 
<li>Schemas: <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-2.0.xsd">main schema</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-types-2.0.xsd">common schema types</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-ip-2.0.xsd">IP</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-ippword-2.0.xsd">IP password</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-kerberos-2.0.xsd">Kerberos</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-mobileonefactor-reg-2.0.xsd">mobile one-factor contract</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-mobileonefactor-unreg-2.0.xsd">mobile one-factor unregistered</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-mobiletwofactor-reg-2.0.xsd">mobile two-factor contract</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-mobiletwofactor-unreg-2.0.xsd">mobile two-factor unregistered</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-nomad-telephony-2.0.xsd">nomadic telephony</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-personal-telephony-2.0.xsd">personal telephony</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-pgp-2.0.xsd">PGP</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-ppt-2.0.xsd">password-protected transport</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-pword-2.0.xsd">password</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-session-2.0.xsd">previous session</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-smartcard-2.0.xsd">smartcard</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-smartcardpki-2.0.xsd">smartcard PKI</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-softwarepki-2.0.xsd">software PKI</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-spki-2.0.xsd">SPKI</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-srp-2.0.xsd">secure remote password</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-sslcert-2.0.xsd">SSL certificate</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-telephony-2.0.xsd">telephony</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-auth-telephony-2.0.xsd">authenticated telephony</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-timesync-2.0.xsd">time sync token</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-x509-2.0.xsd">X.509</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-xmldsig-2.0.xsd">XML Signature</a></li>
 
<li>Schemas: <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-2.0.xsd">main schema</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-types-2.0.xsd">common schema types</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-ip-2.0.xsd">IP</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-ippword-2.0.xsd">IP password</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-kerberos-2.0.xsd">Kerberos</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-mobileonefactor-reg-2.0.xsd">mobile one-factor contract</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-mobileonefactor-unreg-2.0.xsd">mobile one-factor unregistered</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-mobiletwofactor-reg-2.0.xsd">mobile two-factor contract</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-mobiletwofactor-unreg-2.0.xsd">mobile two-factor unregistered</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-nomad-telephony-2.0.xsd">nomadic telephony</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-personal-telephony-2.0.xsd">personal telephony</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-pgp-2.0.xsd">PGP</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-ppt-2.0.xsd">password-protected transport</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-pword-2.0.xsd">password</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-session-2.0.xsd">previous session</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-smartcard-2.0.xsd">smartcard</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-smartcardpki-2.0.xsd">smartcard PKI</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-softwarepki-2.0.xsd">software PKI</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-spki-2.0.xsd">SPKI</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-srp-2.0.xsd">secure remote password</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-sslcert-2.0.xsd">SSL certificate</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-telephony-2.0.xsd">telephony</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-auth-telephony-2.0.xsd">authenticated telephony</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-timesync-2.0.xsd">time sync token</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-x509-2.0.xsd">X.509</a>, <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-schema-authn-context-xmldsig-2.0.xsd">XML Signature</a></li>
Line 44Line 34
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-conformance-2.0-os.pdf">Conformance Requirements</a></li>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-conformance-2.0-os.pdf">Conformance Requirements</a></li>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-sec-consider-2.0-os.pdf">Security and Privacy Considerations</a></li>
 
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-sec-consider-2.0-os.pdf">Security and Privacy Considerations</a></li>
-
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-glossary-2.0-os.pdf">Glossary</a>
+
<li><a href="http://docs.oasis-open.org/security/saml/v2.0/saml-glossary-2.0-os.pdf">Glossary</a> (also available in <a href="http://www.oasis-open.org/committees/download.php/21111/saml-glossary-2.0-os.html">HTML</a>) </li>
-
(also available in <a href="http://www.oasis-open.org/committees/download.php/21111/saml-glossary-2.0-os.html">HTML</a>)
+
</ul>
-
</li>
+
<p>
  +
<a href="http://docs.oasis-open.org/security/saml/v2.0/sstc-saml-approved-errata-2.0.pdf">Approved Errata for SAML V2.0</a> was produced by the SSTC on 14 Aug 2007. In addition to the normative errata document, the following non-normative &quot;errata composite&quot; documents have been provided that combine the prescribed corrections with the original specification text, illustrating the changes with margin change bars, struck-through original text, and highlighted new text.
  +
</p>
  +
<ul>
  +
<li><a href="http://www.oasis-open.org/committees/download.php/22385/sstc-saml-core-errata-2.0-wd-04-diff.pdf">Core</a></li>
  +
<li><a href="http://www.oasis-open.org/committees/download.php/22381/sstc-saml-bindings-errata-2.0-wd-04-diff.pdf">Bindings</a></li>
  +
<li><a href="http://www.oasis-open.org/committees/download.php/22389/sstc-saml-profiles-errata-2.0-wd-05-diff.pdf">Profiles</a></li>
  +
<li><a href="http://www.oasis-open.org/committees/download.php/22387/sstc-saml-metadata-errata-2.0-wd-03-diff.pdf">Metadata</a></li>
  +
<li><a href="http://www.oasis-open.org/committees/download.php/22383/sstc-saml-conformance-errata-2.0-wd-03-diff.pdf">Conformance</a></li>
 
</ul>
 
</ul>
 
<h2><a name="samlv11" title="samlv11"></a>SAML V1.1</h2>
 
<h2><a name="samlv11" title="samlv11"></a>SAML V1.1</h2>
 
<p>
 
<p>
-
<a href="http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security#samlv11">SAML V1.1</a> was approved as an OASIS Standard in August 2003. The complete SAML V1.1 OASIS Standard set (PDF format) and schema files are available in a <a href="http://www.oasis-open.org/committees/download.php/3400/oasis-sstc-saml-1.1-pdf-xsd.zip">ZIP file</a>.
+
<a href="http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security#samlv11">SAML V1.1</a> was approved as an OASIS Standard in August 2003. The complete SAML V1.1 OASIS Standard set (PDF format) and schema files are available in a <a href="http://www.oasis-open.org/committees/download.php/3400/oasis-sstc-saml-1.1-pdf-xsd.zip">ZIP file</a>.
 
</p>
 
</p>
 
<p>
 
<p>
-
The approved specification set consists of:
+
The approved specification set consists of:
 
</p>
 
</p>
 
<ul>
 
<ul>
Line 62Line 60
 
</ul>
 
</ul>
 
<p>
 
<p>
-
The XML schema files for SAML 1.1 are:
+
The XML schema files for SAML 1.1 are:
 
</p>
 
</p>
 
<ul>
 
<ul>
Line 69Line 67
 
</ul>
 
</ul>
 
<p>
 
<p>
-
Additional documents related to the version 1.1 specifications are:
+
Additional documents related to the version 1.1 specifications are:
 
</p>
 
</p>
 
<ul>
 
<ul>
-
<li>Errata (<a href="http://www.oasis-open.org/committees/download.php/3325/sstc-saml-errata-1.1-draft-16.pdf">sstc-saml-errata-11-draft-16</a>)
+
<li>Errata (<a href="http://www.oasis-open.org/committees/download.php/3325/sstc-saml-errata-1.1-draft-16.pdf">sstc-saml-errata-11-draft-16</a>) </li>
-
</li>
+
<li>Security and Privacy Considerations (<a href="http://www.oasis-open.org/committees/download.php/3404/oasis-sstc-saml-sec-consider-1.1.pdf">oasis-sstc-saml-sec-consider-1.1</a>) </li>
-
<li>Security and Privacy Considerations (<a href="http://www.oasis-open.org/committees/download.php/3404/oasis-sstc-saml-sec-consider-1.1.pdf">oasis-sstc-saml-sec-consider-1.1</a>)
+
-
</li>
+
 
<li>Version 1.1 Issues (<a href="http://www.oasis-open.org/committees/download.php/2665/sstc-saml-1.1-issues-draft-01.pdf">sstc-saml-issues-1.1-draft-01</a>)</li>
 
<li>Version 1.1 Issues (<a href="http://www.oasis-open.org/committees/download.php/2665/sstc-saml-1.1-issues-draft-01.pdf">sstc-saml-issues-1.1-draft-01</a>)</li>
 
<li>Differences from v1.0 (<a href="http://www.oasis-open.org/committees/download.php/3412/sstc-saml-diff-1.1-draft-01.pdf">sstc-saml-diff-1.1-draft-01</a>)</li>
 
<li>Differences from v1.0 (<a href="http://www.oasis-open.org/committees/download.php/3412/sstc-saml-diff-1.1-draft-01.pdf">sstc-saml-diff-1.1-draft-01</a>)</li>
Line 81Line 77
 
<h2><a name="samlv10" title="samlv10"></a>SAML V1.0</h2>
 
<h2><a name="samlv10" title="samlv10"></a>SAML V1.0</h2>
 
<p>
 
<p>
-
<a href="http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security#samlv10">SAML V1.0</a> was approved as an OASIS Standard in November 2002. The SAML V1.0 OASIS Standard is available as <a href="http://www.oasis-open.org/committees/download.php/2290/oasis-sstc-saml-1.0.zip">ZIP file</a> and as the following separate files:
+
<a href="http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security#samlv10">SAML V1.0</a> was approved as an OASIS Standard in November 2002. The SAML V1.0 OASIS Standard is available as <a href="http://www.oasis-open.org/committees/download.php/2290/oasis-sstc-saml-1.0.zip">ZIP file</a> and as the following separate files:
 
</p>
 
</p>
 
<ul>
 
<ul>
Line 88Line 84
 
</ul>
 
</ul>
 
<p>
 
<p>
-
IRTF AAA Architecture group RFCs:
+
IRTF AAA Architecture group RFCs:
 
</p>
 
</p>
 
<ul>
 
<ul>
Line 97Line 93
 
</ul>
 
</ul>
 
<p>
 
<p>
-
&nbsp;
+
&#160;
 
</p>
 
</p>
-
<br />
  
 
 
Revision of Sun, 2008-11-09 15:06:

SAML Specifications

SAML V2.0

SAML version 2.0 was approved as an OASIS Standard in March 2005. The complete SAML 2.0 OASIS Standard set (PDF format) and schema files are available in this zip file.

The approved specification set consists of:

Approved Errata for SAML V2.0 was produced by the SSTC on 14 Aug 2007. In addition to the normative errata document, the following non-normative "errata composite" documents have been provided that combine the prescribed corrections with the original specification text, illustrating the changes with margin change bars, struck-through original text, and highlighted new text.

SAML V1.1

SAML V1.1 was approved as an OASIS Standard in August 2003. The complete SAML V1.1 OASIS Standard set (PDF format) and schema files are available in a ZIP file.

The approved specification set consists of:

The XML schema files for SAML 1.1 are:

Additional documents related to the version 1.1 specifications are:

SAML V1.0

SAML V1.0 was approved as an OASIS Standard in November 2002. The SAML V1.0 OASIS Standard is available as ZIP file and as the following separate files:

IRTF AAA Architecture group RFCs:

 

XML.org Focus Areas: BPEL | DITA | ebXML | IDtrust | OpenDocument | SAML | UBL | UDDI
OASIS sites: OASIS | Cover Pages | XML.org | AMQP | CGM Open | eGov | Emergency | IDtrust | LegalXML | Open CSA | OSLC | WS-I

Hosted by:

OASIS