OASIS SAML

​SAML is the OASIS working group's network security architecture. It appears to cover authentication, authorization, and some flavor of directory service (e.g. user attribute publication). I don't know much about it yet, but i'm looking to learn more. This page is just random notes at the moment, and is not well-organized.

The reference implementation of SAML v1.1 is ​shibboleth (available ​freely in debian, naturally).

Here's a discussion from a couple years back about ​the changes in SAML 2.0. I haven't found a free SAML 2.0 implementation yet, though it's been years since the standard was released. I don't know why that is.

Among other services which allow the use of SAML, ​Google Apps allows it for authentication.

It seems similar to OpenID, but a bit more heavyweight.