WAS v8.5 > Secure applications > Secure web services > Secure web services > Web Services Security conceptsSecurity Assertion Markup Language (SAML)
SAML is an XML-based standard for exchanging user identity and security attributes (tokens). In a typical usage scenario, a user requests access to secure web services by authenticating to a security domain and requesting that an identity provider (IdP) issue SAML assertions to the provider of the services based on information in IdP's user registry. An example of an IdP is IBM Security Verify Access.
- SAML token
- SAML assertions
- SAML default policy sets and bindings
- SAML APIs
- SAML usage scenarios
- SAML limitations