Week 2 Module 2

Question 1

______ is an XML based standard for exchanging authentication and authorization data between security domains.

Answer 1

SAML

Question 2

What are the 3 parts of SAML 2.0?

Answer 2

Assertions
Protocols
Bindings

Question 3

In SAML 2.0 a(n) _____ carries the statement about a principal that the IdP claims to be true.

Answer 3

Assertion

Question 4

What are the types of Assertion statements?

A. Identity Statement
B. Authentication statement
C. Rights Statement
D. Authorization Decision Statement
E. Attribute Statement

Answer 4

B. Authentication statement
D. Authorization Decision Statement
E. Attribute Statement

Question 5

A SAM _______ is how an assertion is packaged within request and response elements.

Answer 5

Protocol

Question 6

The SAML _______ maps SAML protocol messages onto standard message formats/communication protocols.

Answer 6

Binding

Question 7

A ______ does not alter the underlying ______, but specifies which areas are used.

Answer 7

profile, standard

Question 8

A profile that is used universally for communities that have a federation and offer web applications is called what?

A. Federation Single Sign On
B. Web Browser Single Sign On
C. Identity Single Sign On
D. Internet Single Sign On

Answer 8

B. Web Browser Single Sign On

Question 9

Place the first 3 steps in order for a Web Browser SSO.

A. The SP redirects the user agent to the IdP with an authentication request through a SAML request message.

B. A user, using a user agent requests a resources protected by a SAML SP.

C. If the user is not authenticated alraedy, the user agent and IdP communicate to authenticate the user.

Answer 9

B.
A.
C.

Question 10

What are two Bindings used in SAML 2.0?

Answer 10

HTTP POST
HTTP Redirect (GET)