|
A businessService, 230
acceptance, 262
access, end-user
direct vs. indirect, 46–47
example (Add/Subtract using ASP.NET), 44–48
access control. See also SOAP (Simple Object Access Protocol); XACML (eXtensible Access Control Markup Language)
LDAP, 30
in SAML, 112–113
add_publisherAssertions, 235
AddReference, 80
<Advice>, 107
AES (Advanced Encryption Standard), 25, 91
ASN.1 (Abstract Syntax Notation 1), and PKCS#7, 53, 68–69
ASP.NET
end-user access using (example), 44–48
assertions, 106–107
<Assertion>, 107
Assertion Type, elements of, 107–108
AssertionConsumerServiceUrl, 207
AssertionID, 107
<AssertionIDReference>, 107
AssertionProvider, creating, 114–115
attribute assertion, 109
authentication assertion, 108
authorization decision assertion, 109
common elements of, 107
SAML support of, 54, 102
<AttributeStatement>, 107
<Audience>, 107
<AudienceRestrictionCondition>, 107
authentication and authorization, 32. See also assertions; Liberty Alliance Project; SAML (Security Assertion Markup Language); trust
authentication assertion, 108
authentication issues, basic interdomain, 102–104
authentication issues, centralized interdomain, 103–104
authentication query, creating (using Kerberos), 115
authentication scenario, typical code for, 111–112
authentication vs. authorization, 38
<AuthenticationStatement>, 107
authorization decision assertion, 109
authorization decision request, using SAML (sample code), 132–133
<AuthorizationDecisionStatement>, 107
authorizedName, 229
and KeyInfo element of XML Signature, 76
in Liberty Alliance Project, 54–55
local government service portal, authentication in, 286–287
merchant bank foreign exchange, authentication in, 288–289
and Passport technology, 54
and public key infrastructure, 32–33
Publisher authentication/authorization (in UDDI), 235–240
role-based security in, 54
and single sign-on, 54–55, 209–210
Subscriber authentication/authorization (in UDDI), 242–243
use of SSL in, 38
in XACML, 54
X-KRSS, authenticating public keys with, 153–154
authentication vs. authorization, 38
AuthenticationQuery, 245
AuthenticationStatement, 245
AuthnContext, 211
AuthnRequestsSigned, 207
<AuthorityBinding>, 108
authorization. See authentication and authorization
|