[Security] client-to-client security :: Summary and todo's - SAML added

Johansson Olle E oej at edvina.net
Sat Aug 23 11:12:49 CDT 2008


23 aug 2008 kl. 17.23 skrev Hannes Tschofenig:

> SAML and OpenID are two different solutions for the roughly the same  
> problem.
> SAML does not depend on OpenID nor does OpenID depend on SAML.
>
> Pavel Simerda wrote:
>> On Sat, 23 Aug 2008 16:26:42 +0200
>> Johansson Olle E <oej at edvina.net> wrote:
>>
>>
>>> Thanks for all the feedback on the summary. Keep discussing and  
>>> I'll  try to update the summary tomorrow and see how that goes.
>>>
>>> One thing I want to add myself is SAML/Shibboleth. SAML 2 is an   
>>> authentication system that is the basis for many authentication
>>> systems, especially OpenID
>>>
>>
>> I haven't found a word about SAML in
>>
>> http://openid.net/specs/openid-authentication-2_0.html
>>
>>
My mistake. They're similar, but not the same.

There's one application that bridges them, simpleSAMLphp, that is both  
SAML/Shibboleth and now is adding OpenID support.

Maybe there was someting strong in the mushrooms? ;-)

Thanks for the correction, Pavel and Hannes!

/O


More information about the Security mailing list