Sarasota Java Users Group: Security Assertion Markup Language (SAML)

Event Details

Sarasota Java Users Group: Security Assertion Markup Language (SAML)

Time: February 24, 2010 from 6pm to 8:30pm
Location: Community Foundation of Sarasota
Street: 2635 Fruitville Rd
City/Town: Sarasota
Website or Map: http://www.cfsarasota.org
Event Type: meeting
Organized By: David Moskowitz
Latest Activity: Feb 23, 2010

Export to Outlook or iCal (.ics)

Event Description

The Sunjug kicks off 2010 on Febraury 24th, with a presentation by Steve Goldsmith on Security Assertion Markup Language(SAML).

SAML is an XML-based standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions). SAML is a product of the OASIS Security Services Technical Committee.

Since there are many facets to SAML Steve will give a brief overview of SAML and then jump right into a real world scenario using a service provider. The service provider will accept an encrypted and signed assertion from an external entity which will be decrypted and have its attributes revealed. This can be used to integrate an external entities' SSO system into legacy web applications without the need to implement expensive and complex federated security solutions like SIteMinder, etc.

Steve has built the code using OpenSAML for encryption and signing assertions as well to allow end to end testing using Apache Http Client. He will cover topics all the way down to creating RSA key pairs in a Java key store using keytool, so in essence this is a complete solution. The talk will not be covering SSO solutions like JOSSO as this is perhaps better covered at a later date.

About the presenter:
Steve Goldsmith is Sr. Software Architect at WAZAGUA in Bradenton Fl and is a frequent presenter at the Sunjug.

The event will be hosted by Community Foundation of Sarasota, located at 2635 Fruitville Rd, Sarasota, FL 34237, which is west of exit 210 off I75.

Meeting Schedule:
6-6:30 PM: Networking
6:30 - 8:00 PM: Presentation

Please RSVP to CodeTown if you plan on attending.
All are welcome.

Comment Wall

Comment

RSVP for Sarasota Java Users Group: Security Assertion Markup Language (SAML) to add comments!

Join Codetown

Comment by David Moskowitz on February 23, 2010 at 7:14pm
There will be food at 6. Come early and hungry

Attending (3)

Might attend (3)

Happy 10th year, JCertif!

Notes

Welcome to Codetown!

Codetown is a social network. It's got blogs, forums, groups, personal pages and more! You might think of Codetown as a funky camper van with lots of compartments for your stuff and a great multimedia system, too! Best of all, Codetown has room for all of your friends.

When you create a profile for yourself you get a personal page automatically. That's where you can be creative and do your own thing. People who want to get to know you will click on your name or picture and…
Continue

Created by Michael Levin Dec 18, 2008 at 6:56pm. Last updated by Michael Levin May 4, 2018.

Looking for Jobs or Staff?

Check out the Codetown Jobs group.

 

Enjoy the site? Support Codetown with your donation.



InfoQ Reading List

Vercel Introduces Eve, an Open-Source Framework for Building AI Agents

Vercel has released Eve, an open-source framework for building, deploying, and operating AI agents in production. The framework uses a filesystem-based project structure to organize agent instructions, tools, skills, subagents, communication channels, and scheduled tasks, enabling developers to define agent behavior while reducing the amount of supporting infrastructure they need to implement.

By Daniel Dominguez

Presentation: AI Works, Pull Requests Don’t: How AI Is Breaking the SDLC and What To Do About It

Michael Webster discusses the rise of headless AI agents and their impact on software delivery pipelines. He shares how massive, AI-generated pull requests create a severe bottleneck for human reviewers and introduce persistent technical debt. Learn how engineering leaders can leverage test impact analysis and automated validation pipelines to verify agentic output without sacrificing stability.

By Michael Webster

Argo CD 3.5 Tightens Supply Chain Security with Internal mTLS and Source Integrity

The Argo CD project released a v3.5 release candidate in June 2026. This version adds mutual TLS enforcement for internal components. It also includes Git commit signature verification for supply chain security and native ApplicationSet management in the UI. The release also graduates two significant features: impersonation and Source Hydrator, from alpha to beta.

By Claudio Masolo

Dapr 1.18 Introduces Verifiable Execution, Bringing Cryptographic Trust to AI Agents and Workflows

Diagrid has announced the release of Dapr 1.18, introducing what it calls Verifiable Execution, a new set of capabilities designed to bring cryptographic trust, provenance, and tamper-evident execution records to distributed applications and AI agents.

By Craig Risi

How Cloudflare Solved a Congestion Bug in quiche

Cloudflare has recently shared how they uncovered an issue in their Rust implementation of CUBIC, a congestion controller algorithm, which prevented it from recovering from a scenario of heavy packet loss at the start of a connection.

By Gianmarco Nalin

© 2026   Created by Michael Levin.   Powered by

Badges  |  Report an Issue  |  Terms of Service