technical-discuss - Re: [InC-Technical] Fwd: who needs support for ECP?
Subject: InCommon Technical Discussions
List archive
- From: Nick Roy <>
- To: Scott Koranda <>, "Farmer, Jacob" <>
- Cc: "" <>
- Subject: Re: [InC-Technical] Fwd: who needs support for ECP?
- Date: Thu, 7 Sep 2017 15:48:47 -0600
- Authentication-results: spf=none (sender IP is ) ;
- Ironport-phdr: 9a23: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
- Spamdiagnosticmetadata: NSPM
- Spamdiagnosticoutput: 1:99
That is a very good point Scott, and I +1 it.
Thanks,
Nick
On 9/7/17 3:43 PM, Scott Koranda wrote:
> Hi,
>
> I would argue that everybody that thinks they want to input into the
> FIM4R discussion of ECP should join the FIM4R email list and directly
> contribute.
>
> See
>
> https://fim4r.org/
>
> and click 'Contact'.
>
> Thanks,
>
> Scott K
>
>> Nick,
>>
>> Could you create something like a Google form for people to report their
>> usage?
>> That might facilitate a large volume of responses.
>>
>> Jacob
>>
>> On Sep 7, 2017, at 5:33 PM, Nick Roy
>> <>
>> wrote:
>>
>>
>> FYI - it would be good to understand the use of ECP in InCommon. How
>> many
>> of you use/need ECP? It is included as a MUST for IdPs in the Kantara
>> SAMLv2.0 Implementation Profile for Federation Interoperability:
>> https://
>> kantarainitiative.github.io/SAMLprofiles/fedinterop.html It is
>> possible
>> that could change if few real use cases exist.
>>
>> Best,
>>
>> Nick
>>
>>
>> -------- Forwarded Message --------
>> Subject: who needs support for ECP?
>> Resent-From:
>>
>> Date: Thu, 7 Sep 2017 20:43:53 +0200
>> From: Peter
>> <>
>> To:
>>
>> CC:
>>
>>
>>
>>
>> Dear FIM4R people,
>>
>> within AARC2 a very lively and sophisticated discussion has taken place
>> about the question whether SAML ECP should be mandatory or not in a
>> SAML
>> idP software
>> conformance document.
>>
>> Although the main use case of ECP (non-web SSO) can be handled by other
>> technologies such as OAuth2/OIDC, a number of SAML based deployments
>> need ECP. The question is, how high this number is, and the idea came
>> up
>> to ask this list, which I am doing herewith:
>>
>> Who of you think that a proper SAML IdP-Implementation should support
>> ECP and who uses it within their research infrastructure.
>>
>> To start answering the question:
>>
>> In DARIAH we have specified and implemented a Storage API that uses ECP
>> for authentication. A second version of this API also supports OAuth2,
>> thus although we would not need ECP support any more I still think that
>> a SAML document should mandate ECP so that named use cases could be
>> implemented within one technology stack such as SAML. There might be
>> security considerations though that speak against ECP.
>>
>> So now its your turn to answer the question ;-)
>>
>> Cheers
>>
>> Peter
>>
>>
>> --
>> _______________________________________________________________________
>>
>> Peter Gietz (CEO)
>> DAASI International GmbH phone: +49 7071 407109-0
>> Europaplatz 3 Fax: +49 7071 407109-9
>> D-72072 Tübingen mail:
>>
>> Germany Web: www.daasi.de
>>
>> DAASI International GmbH, Tübingen
>> Geschäftsführer Peter Gietz, Amtsgericht Stuttgart HRB 382175
>>
>> Directory Applications for Advanced Security and Information Management
>> _______________________________________________________________________
>>
>>
>>
>> To unsubscribe from this list, send email to
>>
>> with the
>> subject: unsubscribe technical-discuss
>>
>> To unsubscribe from this list, send email to
>>
>> with the subject: unsubscribe technical-discuss
- [InC-Technical] Fwd: who needs support for ECP?, Nick Roy, 09/07/2017
- Re: [InC-Technical] Fwd: who needs support for ECP?, Farmer, Jacob, 09/07/2017
- Re: [InC-Technical] Fwd: who needs support for ECP?, Scott Koranda, 09/07/2017
- Re: [InC-Technical] Fwd: who needs support for ECP?, Nick Roy, 09/07/2017
- Re: [InC-Technical] Fwd: who needs support for ECP?, Scott Koranda, 09/07/2017
- Re: [InC-Technical] Fwd: who needs support for ECP?, Farmer, Jacob, 09/07/2017
Archive powered by MHonArc 2.6.19.