...
Federation participants should publish Contacts in Metadata for security incident response. For example:
Code Block | ||||
---|---|---|---|---|
| ||||
<md:ContactPerson contactType="other"
xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:ext="urn:mace:incommon:contactType"
ext:extendedType="urn:mace:incommon:contactType:security">
<md:EmailAddress>mailto:security@example.edu</md:EmailAddress>
<md:TelephoneNumber>999-999-9999</md:TelephoneNumber>
</md:ContactPerson>
|
The above example represents a tentative proposal that will be further developed for standardization.
Acknowledgements
This material was originally developed by the CIC Identity Management Taskforce (see: CIC Federated Security Incident Response Policy).