300-810 · Question #124
Which SAML component defines the content of data transferred from an IdP to a service provider?
The correct answer is B. assertion. In SAML (Security Assertion Markup Language), the core components are: Assertions, Protocols, Bindings, and Profiles. An Assertion is the XML-based data package that an Identity Provider (IdP) sends to a Service Provider (SP) - it contains statements about the subject, such as au
Question
Which SAML component defines the content of data transferred from an IdP to a service provider?
Options
- Aprotocol
- Bassertion
- Cbinding
- Dprofiles
How the community answered
(34 responses)- A6% (2)
- B91% (31)
- C3% (1)
Explanation
In SAML (Security Assertion Markup Language), the core components are: Assertions, Protocols, Bindings, and Profiles. An Assertion is the XML-based data package that an Identity Provider (IdP) sends to a Service Provider (SP) - it contains statements about the subject, such as authentication statements, attribute statements, and authorization decision statements. This is the 'what' of the data exchanged. Protocols define the request/response message formats. Bindings define the transport mechanism (e.g., HTTP POST, HTTP Redirect). Profiles define how assertions, protocols, and bindings are combined for specific use cases like Web Browser SSO.
Topics
Community Discussion
No community discussion yet for this question.