IdP startup issues
Cantor, Scott
cantor.2 at osu.edu
Thu Apr 3 13:23:08 EDT 2014
On 4/3/14, 12:37 PM, "Joel Goguen" <joel.goguen at unb.ca> wrote:
>So, I obviously horrifically misunderstand the processes around metadata.
>Is https://wiki.shibboleth.net/confluence/display/SHIB2/Metadata and its
>children enough to start reading to fix my understandings or are there
>other resources I should be reading as well?
I don't claim to have written a complete treatise on metadata and trust,
but that plus the TrustManagement topic are probably a decent start.
The basic answer is that we built Shibboleth to rely on third party trust.
When you avoid that model, you take on the responsibilities that those
third parties have for verification and key vetting, basically.
-- Scott
More information about the users
mailing list