Menu

#11 Security

open
nobody
None
5
2011-10-26
2011-10-26
Paul Lesov
No

Have a question. We are thinking of using this technology. We are a large security centric organization. How does JOSSO manages all the keys that are part of standard SAML hub and spoke implementation? All the SAML Assertions need to be signed when SAML POST binding is used. Is the single key used to sign all these assertions by the identity provider? Where is it stored?

Thanks

Discussion

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.