Two new OASIS Standards published: #SAML V2.0 Metadata Interoperability Profile V1.0 and SAML V2.0 Metadata Extensions for Login and Discovery User Interface V1.0

OASIS is pleased to announce the publication of its newest OASIS Standards, approved by the members on 24 October 2019:

SAML V2.0 Metadata Interoperability Profile Version 1.0
OASIS Standard
24 October 2019

and

SAML V2.0 Metadata Extensions for Login and Discovery User Interface Version 1.0
OASIS Standard
24 October 2019

The Security Assertion Markup Language (SAML), developed by the Security Services Technical Committee of OASIS, is an XML-based framework for communicating user authentication, entitlement, and attribute information. As its name suggests, SAML allows business entities to make assertions regarding the identity, attributes, and entitlements of a subject (an entity that is often a human user) to other entities, such as a partner company or another enterprise application

The Metadata Interoperability Profile v1.0 describes a set of rules for SAML metadata producers and consumers to follow such that federated relationships can be interoperably provisioned, and controlled at runtime in a secure, understandable, and self-contained fashion.

The Metadata Extensions for Login and Discovery User Interface v1.0 define a set of extensions to SAML metadata that provide information necessary for user agents to present effective user interfaces and, in the case of identity provider discovery, recommend appropriate choices to the user.

To learn more about these standards and the work of the SAML TC, see the TC's home page at https://www.oasis-open.org/committees/security/.

The prose specifications and related files are available here:

- SAML V2.0 Metadata Interoperability Profile Version 1.0

https://docs.oasis-open.org/security/saml/Post2.0/sstc-metadata-iop-os.odt
https://docs.oasis-open.org/security/saml/Post2.0/sstc-metadata-iop-os.html
https://docs.oasis-open.org/security/saml/Post2.0/sstc-metadata-iop-os.pdf

- SAML V2.0 Metadata Extensions for Login and Discovery User Interface Version 1.0

https://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-metadata-ui/...
https://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-metadata-ui/...
https://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-metadata-ui/...
XML schema: https://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-metadata-ui/...

Distribution ZIP files

For your convenience, OASIS provides a complete package of the prose specification and related files in a ZIP distribution file. You can download the ZIP file here:

https://docs.oasis-open.org/security/saml/Post2.0/sstc-metadata-iop-os.zip
https://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-metadata-ui/...

Our congratulations to the members of the SAML TC on achieving this milestone.

Associated TC: 
Security Services (SAML)
Associated MS: 
IDtrust