200426 XML Consortium WG
XML Signature XML Encryption XKMS2.0 X-KRSS:Register X-KISS:Locate X-KISS:Validate WS-Security XACML WG 2004/02/06 1
XML WG 2004/02/06 2
2001 2002 2003 XKMS XML SAML SSO SAML XML XML Signature XML Encryption SAML WG 2004/02/06 3
XKMS 2.0 W3C:WD 2003-04-18 A XPath Filter 2.0 W3C: 2002-11-08 C WS-Security OASIS:CD 2004-01-19 XML Signature W3C: 2002-02-12 Exclusive XML C14n W3C: 2002-07-18 SAML 1.1 OASIS: 2003-09-02 SOAP XML Encryption W3C: 2002-12-10 D XACML OASIS: 2003-02-06 XACML 1.1 OASIS:CD 2003-08-07 Decryption Transform W3C: 2002-12-10 XML 2004/02/06 B Canonical XML W3C: 2001-05-15 WG 4
XML Signature XML Signature http://www.w3.org/signature/ PKI XML Signature XML WG 2004/02/06 5
2004/02/06 WG 6
Enveloping Enveloped Detached <ds:signature> <ds:object> <myap:order/> </ds:object> </ds:signature > <myap:order> <ds:signature> </ds:signature > </myap:order> <myap:order> </myap:order> <ds:signature> </ds:signature > <Signature> WG 2004/02/06 7
XML Encryption XML Encryption http://www.w3.org/encryption/2001/ XML Encryption XML WG 2004/02/06 8
2004/02/06 WG 9
XKMS 2.0 XML Key Management Specification 2.0 http://www.w3.org/2001/xkms/ XKMS PKI PKI 3 K-KRSS Registry X-KISS LocateValidate Web XML Signature <ds:keyinfo> WG 2004/02/06 10
X-KRSS:Register <Register> <Prototype> </Prototype> <AuthInfo> </AuthInfo> </Register> XKMS <RegisterResult> <KeyBinding> </KeyBinding> </RegisterResult> WG 2004/02/06 11
X-KISS:Locate XKMS <Locate> <KeyName>user@beginner.com</KeyName> </Locate> X509 <LocateResult> <ds:keyvalue>rsa Key Value</ds:KeyValue> </LocateResult> X509 WG 2004/02/06 12
X-KISS:Validate XKMS <Validate> <ds:keyvalue>rsa Key Value</ds:KeyValue> </Validate> <ValidateResult> <Status>Valid</Status> <Interval> </Interval> </ValidateResult> WG 2004/02/06 13
WS-Security Security Web Service Security http://www.oasis-open.org/committees/wss/ Web Web SOAP XML Signature XML Encryption WG 2004/02/06 14
SSL SSL:Point to Point HTTPS JFB HTTPS Card WS-Security:End to End WS-Security Security JFB Card WG 2004/02/06 15
Signature Encryption WS-Security: Card Signature/Encryption: Card WG 2004/02/06 16
XACML extensible Access Control Markup Language http://www.oasis-open.org/committees/xacml/ XACML Specifications OASIS Standard [18 Feb. 2003] Specification Document Policy Schema Context Schema WG 2004/02/06 17
200426 XML Consortium WG
SAMLXML SAML SAML WG 2004/02/06 19
SAMLXML SAML SAML WG 2004/02/06 20
SAML Security Assertion Markup Language XML by Authentication Assertion by Attribute Assertion by Authorization Decision Assertion WWW SSO Cookie OASIS V1.1 OASIS Standard WG 2004/02/06 21
SAML Profile Authority Response Binding Assertion Requestor Request User SAML Assertion SAML Protocol SAML Binding SAML Profile WG 2004/02/06 22
SAML Protocol SAML Assertion Request/Response Authority SAML Protocol Request Assertion Query Response Assertion Assertion Requestor WG 2004/02/06 23
SAML Profile Web 2 Profile Web Browser SSO Profiles of SAML Browser/Artifact Profile of SAML Browser/POST Profile of SAML Profile SOAP Profile of SAML Cookie SAML Web WG 2004/02/06 24
SSO Pull Model Pull Model 1 0 3 2 5 6 4 Pull 1 WG 2004/02/06 25
SSO Push Model Push Model 1 0 5 4 2 6 3 Push 1 WG 2004/02/06 26
SSO 3rd Party Security Model 3rd Party Security Model 4 0 2 5 6 8 1 7 3 11 10 9 1 WG 2004/02/06 27 12
B2C SAML < > < > WG 2004/02/06 28
B2E K SAML > < ID=shimoda DB WG 2004/02/06 29
ASP ASP Content Store < > A ID+ ASP:Application Service Provider WG 2004/02/06 30
SAML 1000 WG 2004/02/06 31
SAMLXML SAML SAML WG 2004/02/06 32
20055 2006 World Cup Germany 1. XML Signature 2. XML Encryption 3. SAML WG 2004/02/06 33
BEGINNER PIZZA +Card No. +Card No. PIZZA WG 2004/02/06 34
BEGINNER PIZZA WG 2004/02/06 35
2003 2004 7 8 9 10 11 12 1 2 3 4 5 6 AP WG 2004/02/06 36
C#, Java opensaml, TSIK, Apache XML Security OS:Windows2000, WindowsXP, Linux PC, PDA, XML Signature, XML Encryption SAML XML XML Week WG 2004/02/06 37
OASISSAML WWW http://www.oasis-open.org/committees/security/ SAML1.1 http://www.oasis-open.org/specs/index.php#samlv1.1 SAML SAML SAML XML http://www.xmlconsortium.org/websv/kaisetsu/c10/content.html Liberty Alliance http://www.projectliberty.org/ OpenSAML http://www.opensaml.org/ TSIK(Trust Service Integration Kit) http://www.xmltrustcenter.org/developer/verisign/tsik/index.htm WG 2004/02/06 39