The SAML XML.org web site is not longer accepting new posts. Information on this page is preserved for legacy purposes only. For current information on SAML, please see the OASIS Security Services Technical Committee Wiki.

Welcome to SAML XML.org.

This is the official community gathering place and information resource for the SAML OASIS Standard. SAML provides an XML-based framework for creating and exchanging security information between online partners. This is a community-driven site, and the public is encouraged to contribute content.

PortWise 4.8 delivers PortForwarding, Digital Signatures, Extended Cloud Security

PortWise announced a new version of its Identity and Access Management product suite. The new release is focused on extending application support, enabling digital signatures and extending cloud security options. Highlights of the new version include:

Extended Cloud Access and SSO – End users need not be concerned from where applications and services are deployed. PortWise Cloud Access and SSO enable organizations to integrate cloud computing into their enterprise network.

Read more

Triple-strength protection for Google Apps accounts

TriCipher announced that it has integrated the VeriSign Identity Protection Service to offer secure single sign-on and strong authentication for Google Apps with mobile one-time-password credentials from VeriSign. To promote this capability, TriCipher and VeriSign are offering free strong authentication using VIP mobile OTP credentials to businesses using Google Apps Premier Edition. TriCipher's myOneLogin Secure Single Sign-On service helps protect businesses using Google Apps from the risks of phishing and stolen passwords.

Read more

Session Timeout

I have a situation where the user logs into the IdP and then uses SSO to get to the SP.  After a period of time, the user returns to the IdP, but the IdP session has timed out due to inactivity and so the user has to log back into the IdP.  Basically, I looking for a SAML way to maintain the session on the IdP as long as there is activity on the SP.  Is there a SAML way to do this?  If not, is there anything planned in future versions of SAML for this? 

Ping Identity Unveils PingFederate Express

Ping Identity® today announced PingFederate Express™, an Internet Single Sign-On (SSO) “endpoint” solution for Service Providers who need to quickly and cost-effectively establish a SAML connection with a PingFederate Identity Provider. PingFederate Express delivers enterprise-class performance, reliability and security, with no additional hardware, federated identity expertise or ongoing maintenance required.

Read more

Wave Releases Beta Version of id.wave.com

Wave Systems announced the launch of id.wave.com, a new identity service that enables strong authentication and single sign-on to Web services and applications in the cloud. The service is available in beta form and will be demonstrated to prospective partners and industry insiders at this week's Digital ID World Conference in Las Vegas, Sept. 15-16. As Web-based applications and services increase in both number and importance, knowing who is on the other end of the cloud in a secure and private way is increasingly vital.

Read more

XML.org Focus Areas: BPEL | DITA | ebXML | IDtrust | OpenDocument | SAML | UBL | UDDI
OASIS sites: OASIS | Cover Pages | XML.org | AMQP | CGM Open | eGov | Emergency | IDtrust | LegalXML | Open CSA | OSLC | WS-I