Cantor, Scott cantor.2 at osu.edu
Fri Sep 5 14:11:03 EDT 2014

On 9/4/14, 10:45 AM, "Tom Scavo" <trscavo at gmail.com> wrote:

>On Thu, Sep 4, 2014 at 10:26 AM, Lohr, Donald <lohrda at jmu.edu> wrote:
>> Does my IdP have a "full endpoint-to-endpoint XML (assertion)
>> encryption" relationship with the InCommon SP's that we currently use,
>> without me doing much of anything on my end?
>Scott quickly answered yes, so he may know something I don't, but the
>only person that can answer the above question is you. Just because an
>SP publishes its metadata in InCommon doesn't mean it meets the
>requirements I listed earlier. Not at all.

No, but the question I answered was not "does the SP fully support SAML
and all of the later work that Shibboleth builds on?", it was "are we
doing encryption end to end?".

The answer to the first question is simple because if the software isn't
Shibboleth, the answer to the first one is no.

-- Scott

More information about the users mailing list