https://wiki.idesg.org/index.php?action=history&feed=atom&title=ICAM_SAML_2.0_WB_SSO_Profile_1.0.2ICAM SAML 2.0 WB SSO Profile 1.0.2 - Revision history2026-05-11T10:31:08ZRevision history for this page on the wikiMediaWiki 1.38.4https://wiki.idesg.org/index.php?title=ICAM_SAML_2.0_WB_SSO_Profile_1.0.2&diff=2548&oldid=prevOmaerz: 3 revisions imported: Initial Upload of old pages from IDESG Wiki2018-06-28T04:00:20Z<p>3 revisions imported: Initial Upload of old pages from IDESG Wiki</p>
<p><b>New page</b></p><div>'''Title''': Security Assertion Markup Language (SAML) 2.0 Web Browser Single Sign-on (SSO) Profile<br />
<br />
<br/><br />
'''Category''': Authentication Protocol Interoperability Profile<br />
<br />
<br/><br />
'''Date''': 12/16/2011<br />
<br />
<br/><br />
'''Creator''': ICAM<br />
<br />
<br/><br />
'''URL''': http://www.idmanagement.gov/documents/SAML20_Web_SSO_Profile.pdf<br />
<br />
<br/> <br />
'''Description''': A SAML 2.0 deployment profile designed to meet Federal government requirements and minimize<br />
government risk, promote a consistent user experience and maximize interoperability. It includes three<br />
SAML features: single signon, session reset and attribute exchange. It does not require the use of any<br />
specific attributes in the authentication exchange, provide a discovery mechanism for attributes, nor discuss<br />
the impact of Backend<br />
<br />
<br /><br />
'''Privacy''': Implementers are referred to FICAM TFPAP Section 3.3 and advised that many of those privacy principles<br />
can be achieved outside the scope of SAML.<br />
<br />
<br /><br />
'''Security''': The document is an information security profile. It requires IdPs and RPs to use "approved cryptographic<br />
modules per [FIPS140]" but does not clearly specify whether FIPS 140-2 certification is required, nor what<br />
security level.<br />
<br />
<br /><br />
'''Interoperability''': The document promotes interoperability by providing a common SAML 2.0 profile.<br />
<br />
<br /><br />
'''Terms''': [[Account]], [[Approved]], [[Assert]], [[Authentication Session]], [[Binding]], [[Consolidated Metadata]], [[Digital Encryption]], [[Digital Signature]], [[Discovery]], [[Extensible Markup Language]], [[Holder-of-key Assertion]], [[Identity Provider]], [[Metadata]], [[Persistent]], [[Protected Session]], [[Pseudonymous Identifier]], [[Security Assertion Markup Language]], [[Security Token Service]], [[Signature Verification]]<br />
<br />
[[Category:Standards]]<br />
[[Category:Authentication Protocol Interoperability Profile]]</div>Omaerz