Security Assertion Markup Language

SAML is an XML language for expressing security statements. It is commonly used for identity federation solutions, although it can be used for building a variety of security messages.

When used for federated single sign-on, SAML is used to enable the identity provider to inform the service provider of the user's identity and session information on-the-fly. When a user from the identity provider arrives at the service provider's web site, the user will have a ticket known as a "SAML artifact" which is a reference to his identity and session back at their identity provider. The service provider can then ask the identity provider for this information via web service, which the identity provider will reply with in the form of a SAML message. Similarly, SAML is also used for "attribute-based authorization", in which user authorization data (such as the user's role) is exchanged between parties in addition to, or in lieu of, the user's identity data.

SAML is a key component in technologies for securing web services, such as the Liberty Alliance Identity Web Service Framework (ID-WSF).

You can read more about SAML on the OASIS Security Services Technical Committee website.

Contact Skyworth TTG for Security Assertion Markup Language.