SAMLv2.0 HTTP POST "SimpleSign" Binding
Editors: Jeff Hodges & Scott Cantor
Summary: This specification defines a SAML HTTP protocol binding, specifically using the HTTP POST method, and not using XML Digital Signature for SAML message data origination authentication. Rather, a “sign the BLOB” technique is employed wherein a conveyed SAML message is treated as a simple octet string if it is signed. Conveyed SAML assertions may be individually signed using XMLdsig. Security is optional in this binding. This specification is an addition to the bindings described in the SAML V2.0 Bindings specification.
Committee Draft 04
CD-04 was uploaded by J. Hodges on 1 Dec 2008:
CD-04 was voted to Committee Draft status on (when?).
This Committee Draft underwent Public Review from 23 Dec 2008 through 9 Jan 2009.
Committee Specification 01
CS-01 was voted to Committee Specification status on 27 March 2008:
Committee Draft 03
CD-03 was uploaded by S. Cantor on 13 Mar 2008:
CD-03 was voted to Committee Draft status on 11 Mar 2008.
CD-02 underwent 60-day Public Review. The Public Review period began on 11 December 2007 and ended on 9 February 2008.
The following comments were received during the Public Review:
Committee Draft 02
CD-02 was uploaded by S. Cantor on 9 Oct 2007:
CD-02 was voted to Committee Draft status on 28 Aug 2007.
CD-02 was voted to 60-day Public Review on 9 Oct 2007.
Committee Draft 01
CD-01 was uploaded by S. Cantor on 5 May 2007: