Death, zombies and raging protocols

By ANIL JOHN on | Permalink

Death, zombies and raging protocols

SAML 2.0, despite all claims of death and zombie-ness by many identerati, celebrated its 10th birthday recently.

  • Shibboleth Identity Provider software has been updated to v3 - Webinar here, Slides here.

  • An interesting bit is the incorporation of consent flows for attribute release and terms of use. The default flow appears to be a port of the SWITCH uApprove Consent module, which provides for release approve/deny at the attribute bundle level, but there is an enhanced mode that supports approve/deny at the individual attribute level.

It is great to see technical support for this type of granularity when it comes to attribute release consent. But with great power comes great responsibility - the challenge will be striking a balance between the data model of a person expected by the relying party, and the desire to provide release control at the individual attribute level.

Graphing identity and reputation

I’ve done a bit of work on attribute services and keep thinking that a payload based on a graph structure may be able to convey a richer set of information than a tree structure.

DHS S&T’s National Conversation on Homeland Security Technology

The Small Business Innovation Research (SBIR) program is all about Government pulling together three areas important to economic growth - basic research, small high tech firms and venture capital but with some unique and start-up friendly differences:

Continue the Conversation

 Reply via Email


Get the best cybersecurity research, resources and insights to help secure and safeguard the digital world; via 
No Spam. Unsubscribe Anytime.

© 2014-2025 Kylas Group, LLC