1. EduXS Standard
  2. SAML - Security Assertion Markup Language

SAML - Security Assertion Markup Language

**Security Assertion Markup Language** (**SAML**, pronounced *SAM-el*, [/ˈsæməl/](https://en.wikipedia.org/wiki/Help:IPA/English))[\[1\]](https://en.wikipedia.org/wiki/Security_Assertion_Markup_Language#cite_note-ISnTY-1) is an [open standard](https://en.wikipedia.org/wiki/Open_standard) for exchanging [authentication](https://en.wikipedia.org/wiki/Authentication) and [authorization](https://en.wikipedia.org/wiki/Authorization) data between parties, in particular, between an [identity provider](https://en.wikipedia.org/wiki/Identity_provider_\(SAML\)) and a [service provider](https://en.wikipedia.org/wiki/Service_provider_\(SAML\)). SAML is an [XML](https://en.wikipedia.org/wiki/XML)-based [markup language](https://en.wikipedia.org/wiki/Markup_language) for security assertions (statements that service providers use to make access-control decisions). SAML is also: - A set of XML-based protocol messages - A set of protocol message bindings - A set of profiles (utilizing all of the above) An important use case that SAML addresses is [web-browser](https://en.wikipedia.org/wiki/Web_browser) [single sign-on](https://en.wikipedia.org/wiki/Single_sign-on) (SSO). Single sign-on is relatively easy to accomplish within a [security domain](https://en.wikipedia.org/wiki/Security_domain) (using [cookies](https://en.wikipedia.org/wiki/HTTP_cookie), for example) but extending SSO across security domains is more difficult and resulted in the proliferation of non-interoperable proprietary technologies. The SAML Web Browser SSO profile was specified and standardized to promote interoperability.[\[2\]](https://en.wikipedia.org/wiki/Security_Assertion_Markup_Language#cite_note-SAMLProf20-2) In practice, SAML SSO is most commonly used for authentication into cloud-based business software.[\[3\]](https://en.wikipedia.org/wiki/Security_Assertion_Markup_Language#cite_note-3) <https://en.wikipedia.org/wiki/Security_Assertion_Markup_Language>
Related To Collaborations ZKI - workgroup Identity and Access Management AARC Workgroup Identity and Access management (Edustandaard, NL)
Status Standard Statuses available for use
Standards OpenID Connect (OIDC)
Related to Standards OpenID Connect (OIDC)
Type Standard Types Semantic - Logical data model
Related To Topics 7. User identity
URL No
Full Name No
Slug No