Hi, all,
Colin kindly pointed us a few weeks back to Kantara's "process" for handling errata to Kantara-approved works as well as a wiki page to post the errata we had for the implementation profile. As a refresher:
In the SAML 2.0 implementation profile, IIP-ALG06 states:
The following DigestMethod algorithms SHOULD be supported for both of the above key transport algorithms for backward compatibility.
*
http://www.w3.org/2000/09/xmldsig#sha1
This requirement should be corrected to read:
The following DigestMethod algorithms MUST be supported for both of the above key transport algorithms for backward compatibility.
*
http://www.w3.org/2000/09/xmldsig#sha1
I was talking with Nick just now, getting ready to post this as errata, when he suggested that we might want to rethink this. It's not likely that many are using the implementation profile, and this is definitely a minor change. Question is this: do we go ahead and post this as errata, giving folks another layer of abstraction to keep track of in understanding the profile? Or do we make this change now and start the process to approve V2.1 of the implementation profile?
I've started the process for LC approval of the deployemtn profile and don't want to muddy the waters, but as I said, this is a very small change, and it would be cleaner to just try and get it published as an updated version of the profile now.
This is contrary to what we discussed on the call a few weeks back, but I thought I'd trow it out. What do others think?
Keith
_______________________________________________
WG-FI mailing list
WG...@kantarainitiative.org
https://kantarainitiative.org/mailman/listinfo/wg-fi