Over the last decade the Security Assertion Markup Language (SAML) framework evolved to a versatile standard for exchanging security statements about subjects. Most notably, SAML facilitates the authentication of users, and is thus deployed in both Webservice (SOAP, WS-Security) and REST-based (SAML SSO webbrowser profile, SAML Bearer token in OAuth) services. This paper recommends an extension to the SAML framework which provides an easy way to transport cryptographic key material bound to assertions issued by particular subjects. The proposal fits into existing solutions and is fully compliant with the Security Assertion Markup Language, XML Digital Signature and XML Encryption standards. © 2013 Springer-Verlag.
CITATION STYLE
Meyer, C., Feldmann, F., & Schwenk, J. (2013). Sometimes it’s better to be STUCK! SAML transportation unit for cryptographic keys. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7839 LNCS, pp. 110–125). https://doi.org/10.1007/978-3-642-37682-5_9
Mendeley helps you to discover research relevant for your work.