- An issuing authority asserts that subject "S" was authenticated by means "M" at time "T"
- Targeted towards SSO uses
- Checking or revoking of credentials is not in scope for SAML!
- It merely lets you link back to acts of authentication that took place previously
There might be more information for this subject on one of the following: