Wednesday, November 29, 2006

AQE - SAML/OpenID Convergence Opportunity #1

David announces the OpenID Authentication Quality Extension (AQE) proposal that he, Avery Glasser, and I drafted.

The Security Assertion Markup Language (SAML) Authentication Context ([SAMLAC] (Kemp, J., “SAML 2.0 Authentication Context,” 2005.) defines mechanisms by which SAML Service Providers and OpenID Providers can discuss the context of an authentication assertion.

The authors acknowledge the similar motivation between SAML's Authentication Context and this extension. Where possible, we have attempted to stay aligned with the SAML Authentication Context model. Indeed, we see this topic as a likely area of convergence between OpenID and SAML. More work is needed here.

No comments: