15 Mar
2011
15 Mar
'11
10:59 a.m.
You are right, I mixed subject and provider certificates. What I actually meant is:
* Whereas the Higher Education sector favors brokered trust for IdP and RPs, e-Government and Industry prefer the PKI approach. But it is not a question of one way or the other.
When there's an actual profile of how SAML trust management and PKI work together, then I will accept that it's an on-par solution. Until then, one of these approaches is well-defined and interoperable and the other isn't. -- Scott