Standards

TLS Authorizations

RedPhone Security has proposed a way to send Federated Identify assertions via SSL/TLS. The Transport Layer Security (TLS) Authorization Extensions Protocol can exchange Authorizations in any format, including X509 Attribute Certificates and Security Assertion Markup Language (SAML) assertions.

Latest Internet Draft text:
[TXT] TLS Authorizations

Beyond Secure

Formally verified / Contractually guaranteed

Beyond Encryption

Strong cryptography / Exfiltration controls

Beyond Assertions

Federated Identity / Solving the problem of trust