Security Assertion Markup Language

SecurityAssertionMarkupLanguage is designed to provide WebServicesSecurity at a fine grain level.

• note sometimes it is called "SecurityAssertionsMarkupLanguage" (used less frequently), and both forms are seen at the OasisOrganization which created the term.

At early 2005, version 2 is ratified and it provides convergence with the LibertyAlliance ID-FF (Identity Management Federated Framework), and has attended to some WebServicesInteroperabilityConcerns (privacy). See http://www.xml.com/pub/a/2005/01/12/saml2.html

V2.0 draft was made available in Aug 2004. Features (ref http://searchwebservices.techtarget.com/tip/1,289483,sid26_gci1002183,00.html) include:

• Session support, for session creation, maintenance, and teardown to maintain unique security contexts.
• Exchange of metadata about assertions and message protocols and formats to ensure better interoperability.
• Various mechanisms for collection and management of security credentials.

See also http://xml.coverpages.org/ni2004-08-19-a.html

It was said SAML v2 is important as it enabled "federation" of IdentityManagement schemes.

---

Resources

SAML 2.0 unifies support for federation at http://searchwebservices.techtarget.com/originalContent/0,289142,sid26_gci951843,00.html

ID-FF specs at http://www.projectliberty.org/resources/specifications.php

---

CategoryWebServices CategorySecurity