SAML Security
The SAML specifications recommend, and in some cases mandate, a variety of security mechanisms:
- SSL 3.0 or TLS 1.0 for transport-level security
- XML Signature and XML Encryption for message-level security
Requirements are often phrased in terms of (mutual) authentication, integrity, and confidentiality, leaving the choice of security mechanism to implementers and deployers.
Read more about this topic: Security Assertion Markup Language
Famous quotes containing the word security:
“The three great ends which a statesman ought to propose to himself in the government of a nation, are,—1. Security to possessors; 2. Facility to acquirers; and, 3. Hope to all.”
—Samuel Taylor Coleridge (1772–1834)