Sarasota Java Users Group: Security Assertion Markup Language (SAML)

Event Details

Sarasota Java Users Group: Security Assertion Markup Language (SAML)

Time: February 24, 2010 from 6pm to 8:30pm
Location: Community Foundation of Sarasota
Street: 2635 Fruitville Rd
City/Town: Sarasota
Website or Map: http://www.cfsarasota.org
Event Type: meeting
Organized By: David Moskowitz
Latest Activity: Feb 23, 2010

Export to Outlook or iCal (.ics)

Event Description

The Sunjug kicks off 2010 on Febraury 24th, with a presentation by Steve Goldsmith on Security Assertion Markup Language(SAML).

SAML is an XML-based standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions). SAML is a product of the OASIS Security Services Technical Committee.

Since there are many facets to SAML Steve will give a brief overview of SAML and then jump right into a real world scenario using a service provider. The service provider will accept an encrypted and signed assertion from an external entity which will be decrypted and have its attributes revealed. This can be used to integrate an external entities' SSO system into legacy web applications without the need to implement expensive and complex federated security solutions like SIteMinder, etc.

Steve has built the code using OpenSAML for encryption and signing assertions as well to allow end to end testing using Apache Http Client. He will cover topics all the way down to creating RSA key pairs in a Java key store using keytool, so in essence this is a complete solution. The talk will not be covering SSO solutions like JOSSO as this is perhaps better covered at a later date.

About the presenter:
Steve Goldsmith is Sr. Software Architect at WAZAGUA in Bradenton Fl and is a frequent presenter at the Sunjug.

The event will be hosted by Community Foundation of Sarasota, located at 2635 Fruitville Rd, Sarasota, FL 34237, which is west of exit 210 off I75.

Meeting Schedule:
6-6:30 PM: Networking
6:30 - 8:00 PM: Presentation

Please RSVP to CodeTown if you plan on attending.
All are welcome.

Comment Wall

Comment

RSVP for Sarasota Java Users Group: Security Assertion Markup Language (SAML) to add comments!

Join Codetown

Comment by David Moskowitz on February 23, 2010 at 7:14pm
There will be food at 6. Come early and hungry

Attending (3)

Might attend (3)

Happy 10th year, JCertif!

Notes

Welcome to Codetown!

Codetown is a social network. It's got blogs, forums, groups, personal pages and more! You might think of Codetown as a funky camper van with lots of compartments for your stuff and a great multimedia system, too! Best of all, Codetown has room for all of your friends.

When you create a profile for yourself you get a personal page automatically. That's where you can be creative and do your own thing. People who want to get to know you will click on your name or picture and…
Continue

Created by Michael Levin Dec 18, 2008 at 6:56pm. Last updated by Michael Levin May 4, 2018.

Looking for Jobs or Staff?

Check out the Codetown Jobs group.

 

Enjoy the site? Support Codetown with your donation.



InfoQ Reading List

Cloudflare Introduces Automated Scoring for Shadow AI Risk Assessment

During AI Week 2025, Cloudflare announced Application Confidence Scores, an automated assessment system that is designed to help organizations evaluate the safety and security of third-party AI applications at scale.

By Renato Losio

Vercel Introduces AI Gateway for Multi-Model Integration

Vercel has rolled out the AI Gateway for production workloads. The service provides a single API endpoint for accessing a wide range of large language and generative models, aiming to simplify integration and management for developers.

By Daniel Dominguez

Presentation: Secure by Design: Building Security into Engineering Workflows and Teams

Stefania Chaplin explains how to integrate security into engineering workflows and teams using a "Secure by Design" approach. Drawing on her extensive experience, she shares practical strategies for a security-first culture by focusing on people, processes, and technology, including the use of security champions and automation to improve resilience and reduce costs.

By Stefania Chaplin

Podcast: Why Software Development Sucks And 7 Mental Models To Help Fix It

Shane Hastie, Lead Editor for Culture & Methods, spoke to Thanos Diacakis about how teams often struggle with software delivery. He proposes a shift in mental models and a four-step framework to systematically improve software development by focusing on bottlenecks, balancing different types of work beyond just feature delivery, and investing 20-30% of effort in improving how the team works.

By Thanos Diacakis

Next.js 15.5 Ships - Turbopack Production Builds, Node.js Middleware, and Tighter Typescript DX

Next.js 15.5 has landed, delivering faster builds and powerful server-side middleware. Key highlights include the Turbopack bundler, which boosts compilation speed by 2x to 5x, and Node.js middleware enhancements. TypeScript improvements enhance developer experience with stable typed routes and early error detection.

By Daniel Curtis

© 2025   Created by Michael Levin.   Powered by

Badges  |  Report an Issue  |  Terms of Service