!!! Overview
* An [issuing authority|Identity Provider (IDP)] asserts that subject "S" was authenticated by means "M" at time "T"
* Targeted towards [SSO] uses
* Checking or revoking of credentials is not in scope for SAML!
* It merely lets you link back to acts of authentication that took place previously

!!Eaxmple

{{{
<saml:Assertion ...>  
	<saml:AuthenticationStatement    
		AuthenticationMethod="password"
		AuthenticationInstant="2009-12-03T10:02:00Z">
		<saml:Subject>
			<saml:NameIdentifier
				SecurityDomain=cisus.com"
				Name="jimuser" />
			<saml:ConfirmationMethod>
				http://...core-25/sender-vouches
			</saml:ConfirmationMethod>
		</saml:Subject>
	</saml:AuthenticationStatement>
</saml:Assertion>
}}}

!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]