The Kantara interop profile now mandates the signing of SAML Response messages while making the signing of Assertions optional. This is the opposite of what the eGov 2.0 (and CATS 2.0) profiles required.
Is there any compelling reason why we should we move CATS in the same direction? Perhaps just for identity authentication?
The Kantara interop profile now mandates the signing of SAML Response messages while making the signing of Assertions optional. This is the opposite of what the eGov 2.0 (and CATS 2.0) profiles required.
Is there any compelling reason why we should we move CATS in the same direction? Perhaps just for identity authentication?