[Concordia] Notes from 1 Apr 2008 Concordia call
Scott Cantor
cantor.2 at osu.edu
Tue Apr 1 14:23:50 EDT 2008
> An authentication context is a "session" related information as
compared
> to an attribute that is an "identity" related information. Of course, one
> could tie these two together, but fundamentally the same "identity" can be
> authenticated at different "authentication contexts".
Attributes in SAML are not limited to identity data. They can be
per-session. There's no assumption about that.
> My question - How is this distinction being implemented today?
We don't assume attributes are static.
-- Scott
More information about the Community
mailing list