SAML 2.0

SAML version 2.0 was approved as an OASIS Standard in March 2005. The complete SAML 2.0 OASIS Standard set (PDF format) and schema files are available in this zip file.

The approved specification set consists of:

• Assertions and Protocols
• Bindings
• Profiles
• Metadata
• Authentication Context
• Conformance Requirements
• Security and Privacy Considerations
• Glossary

SAML 1.1

SAML version 1.1was approved as an OASIS Standard in August 2003. The complete SAML 1.1 OASIS Standard set (PDF format) and schema files are available in this zip file.

The approved specification set consists of:

• Assertions and Protocol (oasis-sstc-saml-core-1.1)
• Bindings and Profiles (oasis-sstc-saml-bindings-1.1)
• Conformance Program Specification (oasis-sstc-saml-conform-1.1)
• Glossary (oasis-sstc-saml-glossary-1.1)

The XML schema files for SAML 1.1 are:

• Assertion Schema (oasis-sstc-saml-schema-assertion-1.1.xsd)
• Protocol Schema (oasis-sstc-saml-schema-protocol-1.1.xsd)

Additional documents related to the version 1.1 specifications are:

• Errata (sstc-saml-errata-11-draft-16)
• Security and Privacy Considerations (oasis-sstc-saml-sec-consider-1.1)
• Version 1.1 Issues (sstc-saml-issues-1.1-draft-01)
  • Differences from v1.0 (sstc-saml-diff-1.1-draft-01)

SAML 1.0

SAML 1.0 was approved as an OASIS Standard in November 2002. The SAML 1.0 OASIS Standard is available as zip file and as the following separate files:

• Use Cases and Requirements (draft-saml-reqs-01.pdf)
• Domain Model (draft-sstc-use-domain-05.pdf)

IRTF AAA Architecture group RFCs:

• RFC 2903: Generic AAA Architecture
• RFC 2904: AAA Authorization Framework
• RFC 2905: AAA Authorization Application Examples
• RFC 2906: AAA Authorization Requirements