The SAML web site is not longer accepting new posts. Information on this page is preserved for legacy purposes only. For current information on SAML, please see the OASIS Security Services Technical Committee Wiki.

Welcome to SAML

This is the official community gathering place and information resource for the SAML OASIS Standard. SAML provides an XML-based framework for creating and exchanging security information between online partners. This is a community-driven site, and the public is encouraged to contribute content.

GCN: SAML: The master key?

Imagine a day when instead of setting up an account with each organization you do business with, you set up a single account, which all the parties can consult. Such a setup could be useful for federal agencies for a number of reasons. For one, federal employees often need to access systems and data held by agencies other than their own. For another, e-government initiatives involve people who often hold no government-recognized credentials. How does the government authenticate their identities?

Read more

Internet2: Shibboleth

A flexible and comprehensive open source, cross-domain, attribute-based web single-sign on system based on SAML 1.x and 2.0. Built on the OpenSAML libraries, a Java-based identity provider and native (C++) service provider are provided. The identity provider supports pluggability of both authentication and attribute sources and supports most of the core SAML SSO profiles and bindings. The service provider supports most popular web servers and enables seamless and loosely coupled integration of authentication and attribute data with applications without programming to product-specific APIs.

Read more

Internet2: OpenSAML

Open source libraries in Java and C++ providing core message, binding, and profile classes for implementing applications based on SAML 1.0, 1.1, and 2.0. Extensive design integration with the native Java and C++ programming models is provided. OpenSAML is a low-level toolkit that does not by itself implement full SAML profiles such as single sign-on, but can be used to simplify the implementation of such profiles. Provided under the standard Apache 2.0 license for use in any commercial or non-commercial code.

Read more


Symlabs offers consulting services for Identity Management projects and technologies such as LDAP and Virtual  Directory. Symlabs consultants can assist at any phase of a project, from initial definition through post-implementation fine tuning, to help organizations successfully achieve their objectives. They bring global experience as system designers,  implementers, plus participants in OASIS and Liberty Alliance, and a client list that includes such industry leaders as Vodafone, Intel, and France Telecom.

Read more

Symlabs: Symlabs Federated Identity Suite

Symlabs Federated Identity Suite delivers the flexibility to create an identity management solution with Single Sign-On and Single Log-Out for nearly any environment. It is fully compliant with SAML (1.0, 1.1, & 2.0 including GSA profile) plus open Liberty Alliance standards (ID-WSF 2.0 & ID-FF 1.2), and also provides support for WS-Federation 1.0.

Read more Focus Areas: BPEL | DITA | ebXML | IDtrust | OpenDocument | SAML | UBL | UDDI
OASIS sites: OASIS | Cover Pages | | AMQP | CGM Open | eGov | Emergency | IDtrust | LegalXML | Open CSA | OSLC | WS-I