The Security Assertion Markup Language (SAML) standard defines a framework for exchanging security information between online business partners. It was developed by SSTC of OASIS. SAML defines an XML based framework for exchanging security information between different systems or business partners. SAML is a frequently used term in SOA adopted systems and has several advantages some of which are highlighted below:

Single Sing-on: Gone are the days where systems relies on browser cookies to maintain the user authentication state information. However, cookies can not be used in multi-domain Single Sign-on(MDSSO) scenarios. SAML solves the MDSSO problem by providing a standard vendor-independent grammar and protocol for transferring information about a user from one server to antoher independent of the server DNS domain.

Federated identity: The user is said to have a federated identity when partners have established such an agreement on how to refer to the user. This mean the user have a shared name across the organizational boundaries.

Web Services: SAML allows for its security assertion format to be used outside of a native SAML based protocol context. The advantages offered by the use of SAML assertions is that it provides a standards based approach to the exchange of information, including attributes, that are not easily conveyed using other WS-Security token formats.


Enter your email address:

Delivered by FeedBurner



Sandeep Joshi
Mathematics, Technology and Programming are my passion. I am a part of Java Ecosystem and through this blog, I contribute to it. I am here to blog about my interests, views and experiences.
I am on Google+ and Facebook.
I feel proud to be listed as a "National Memory Record Holder" in the Limca Book of Records, 2009 and have attempted for an International Memory record in the Guiness Book of Records. I can remember the value of PI upto 10,000 digits after the decimal (3.1415.....). You can contact me on javagenious.com(At)gmal.com ; I would like to hear from you :)