terena networking conference 2010


Introducing transparency in hub-and-spoke federation architectures using SAML2 authentication scoping elements

The SAML2 scoping element for authentication requests adds new possibilities for tuning usability and graphical interaction when using federated services. This enables hub-and-spoke federations, like the Danish, Spanish and others, to support decentral listings of IdP's, in addition to the traditional, central where-are-you-from service. The talk explains the use cases, solutions and examples of implementation ie. how transparent cross-domain attribute collection has been shown to work.



  • David Simonsen
  • Jacob-Steen Madsen
  • Jacob Christiansen
  • Mads Freek Petersen