Hi Scott is your OriginalIssuer the same concept as what I and others know as the AuthoritativeSource? ie. this is the authority that assigns an attribute to an entity and has the right to remove it as well e.g. the university that gave you your degree is the authoritative source for your degree, and it can revoke your degree at anytime if it was subsequently proved that you plagiarised in your thesis. The authoritative source for your driving license attribute is the driving license agency in your country. etc. OriginalIssuer does not quite have the same feel as authoritative source regards David Tom Scavo wrote:
All,
Scott Cantor has submitted a document entitled "SAML V2.0 Attribute Extensions" to the SSTC:
http://wiki.oasis-open.org/security/SAML2AttributeExt
Such extensions may be very useful in conjunction with the SAML 2.0 profile of XACML v2.0. If you have suggestions along these lines, you may submit them directly to OASIS:
http://www.oasis-open.org/committees/comments/index.php?wg_abbrev=security
The document is meant to be a living document (similar to the SAML V2.0 errata document) that will accumulate all such attribute extensions under a single namespace.
Regards,
Tom Scavo NCSA -- ogsa-authz-wg mailing list ogsa-authz-wg@ogf.org http://www.ogf.org/mailman/listinfo/ogsa-authz-wg
-- ***************************************************************** David W. Chadwick, BSc PhD Professor of Information Systems Security The Computing Laboratory, University of Kent, Canterbury, CT2 7NF Skype Name: davidwchadwick Tel: +44 1227 82 3221 Fax +44 1227 762 811 Mobile: +44 77 96 44 7184 Email: D.W.Chadwick@kent.ac.uk Home Page: http://www.cs.kent.ac.uk/people/staff/dwc8/index.html Research Web site: http://www.cs.kent.ac.uk/research/groups/iss/index.html Entrust key validation string: MLJ9-DU5T-HV8J PGP Key ID is 0xBC238DE5 *****************************************************************