IdP startup issues

Cantor, Scott cantor.2 at
Thu Apr 3 13:23:08 EDT 2014

On 4/3/14, 12:37 PM, "Joel Goguen" <joel.goguen at> wrote:

>So, I obviously horrifically misunderstand the processes around metadata.
>Is and its
>children enough to start reading to fix my understandings or are there
>other resources I should be reading as well?

I don't claim to have written a complete treatise on metadata and trust,
but that plus the TrustManagement topic are probably a decent start.

The basic answer is that we built Shibboleth to rely on third party trust.
When you avoid that model, you take on the responsibilities that those
third parties have for verification and key vetting, basically.

-- Scott

More information about the users mailing list