On 11/11/2013 08:21 AM, David Chadwick wrote: > Here is the rationale for my answer > > 1. the user types in the name of the remote realm to the RP > 2. the RP trusts the trust router to set up the DH keys with some > remote entity that purports to answer for this realm We are not talking about trust router on this mailinglist at this time.
We're talking about using SAML metadata for abfab. Do you have comments about name-to-key binding in that context? _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
