metadata-support - Re: [Metadata-Support] significant slowdown in XML Signature validation
Subject: InCommon metadata support
List archive
- From: Nick Roy <>
- To: "" <>
- Subject: Re: [Metadata-Support] significant slowdown in XML Signature validation
- Date: Wed, 24 Feb 2016 19:32:23 +0000
- Accept-language: en-US
- Authentication-results: incommon.org; dkim=none (message not signed) header.d=none;incommon.org; dmarc=none action=none header.from=internet2.edu;
- Spamdiagnosticmetadata: NSPM
- Spamdiagnosticoutput: 1:23
HEAnet, Ireland's NREN, has developed a very nice metadata management system,
called Jagger: http://jagger.heanet.ie/
You may be interested in looking at this for local metadata management needs.
Nick
On 2/23/16, 9:05 AM,
"
on behalf of Tom Scavo"
<
on behalf of
>
wrote:
>On Tue, Feb 23, 2016 at 10:42 AM, Jeffrey Eaton
><>
> wrote:
>> On Feb 23, 2016, at 10:18 AM, Tom Scavo
>> <>
>> wrote:
>>>
>>> For the CMU SPs that interoperate with the CMU IdP only, would a
>>> single entity descriptor help? As an example, consider this metadata
>>> served from mdq-beta:
>>>
>>> http://mdq-beta.incommon.org/global/entities/https%3A%2F%2Flogin.cmu.edu%2Fidp%2Fshibboleth
>>>
>>> If we provided a production version of the above metadata, would you
>>> find that useful?
>>
>> That certainly would be preferable to consuming the full metadata file for
>> those SPs which only need one single IDP. I may still end up going down
>> the
>> path of having my own IDP metadata files signed and served locally, so that
>> I can have various combinations of files (ones with our test IDP, ones with
>> login.cmu.edu and identity.andrew.cmu.edu which serves as our social
>> gateway, ones with our CS department's IDP which is not in InCommon, etc),
>> and then let the SP choose which they want to consume.
>
>Right, I get that, and btw, there has been discussion along these
>lines on the shib users mailing list recently:
>
>http://marc.info/?t=145527812600001&r=1&w=2
>http://marc.info/?t=145461695700015&r=1&w=2&n=8
>http://marc.info/?t=145263559200002&r=1&w=2&n=18
>
>I predict that soon many campuses (and others) will be running their
>own metadata aggregation services.
>
>Hope this helps,
>
>Tom
- Re: [Metadata-Support] significant slowdown in XML Signature validation, (continued)
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Tom Scavo, 02/19/2016
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Jeffrey Eaton, 02/19/2016
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Tom Scavo, 02/19/2016
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Jeffrey Eaton, 02/22/2016
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Tom Scavo, 02/22/2016
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Jeffrey Eaton, 02/23/2016
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Tom Scavo, 02/23/2016
- RE: [Metadata-Support] significant slowdown in XML Signature validation, Cantor, Scott, 02/23/2016
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Jeffrey Eaton, 02/23/2016
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Tom Scavo, 02/23/2016
- Re: [Metadata-Support] significant slowdown in XML Signature validation, Nick Roy, 02/24/2016
Archive powered by MHonArc 2.6.16.