This is a static archive of the previous Open Grid Forum GridForge content management system saved from host forge.ogf.org file /sf/wiki/do/viewPage/projects.pgi-wg/wiki/ReqAA4.1 at Fri, 04 Nov 2022 17:51:42 GMT SourceForge : View Wiki Page: ReqAA4.1
Home Projects Search
User Password Logins Disabled Help

Project Home
Tracker
Documents
Tasks
Source Code
Discussions
File Releases
Wiki
Project Admin
Search Wiki Pages Project: pgi-wg     Wiki > ReqAA4.1 > View Wiki Page
wiki2328: ReqAA4.1

Req. Nb ID Description Source Areas Dependencies Status Date
AA4.1 19 For Client authorization, the packaging of security credentials MUST be designed to prevent that any software component gains undue privilege by extracting only some credentials from the package Etienne Urbah Security AA4 Agreed YES 2010-04-28

Etienne Urbah on 2010-03-17

  • Propose requirement with title  'For Client authorization, the packaging of security credentials MUST be designed to prevent that any software component gains undue privilege by extracting only some credentials from the package'

Morris, Balazs and Etienne on 2010-04-21

  • Spreadsheet ID = 19

Amsterdam meeting on 2010-04-28

  • Example: A man in the middle might extract one credential from 'the package', and this should be not allowed
  • Question:  Are such packages existing?  E.g. several SAML assertions in the SOAP Header
  • Answer:  Set of assertions delegated with signature chain together as 'one package' - the SAML assertions (even 3) are always together signed
  • Agreed YES
 

 
Hide Details
 


Versions Associations Attachments Back Links  
Version Version Comment Created By
Version 4 Etienne URBAH - 05/06/2010
Version 3 ! Amsterdam meeting on 2010-04-28 * Example: A man in the middle might extract one credential from 'the package' and this should be not allowed * Question:  Are such packages existing?  E.g. several SAML assertions in the SOAP Header * Answer:  What set of assertions have been delegated with signature chain together as 'one package' - the SAML assertions (even 3) are always together signed * Agreed YES Etienne URBAH - 05/06/2010
Version 2 Etienne URBAH - 04/28/2010
Version 1 ! Morris, Balazs and Etienne on 2010-04-21 * Spreadsheet ID = 19 Etienne URBAH - 04/21/2010


The Open Grid Forum Contact Webmaster | Report a problem | GridForge Help
This is a static archive of the previous Open Grid Forum GridForge content management system saved from host forge.ogf.org file /sf/wiki/do/viewPage/projects.pgi-wg/wiki/ReqAA4.1 at Fri, 04 Nov 2022 17:51:49 GMT