P1VoidReply访问应答消息的方式必须与P1S1Transform访问请求消息相同。
P1VoidReply must access the reply message in the same way P1S1Transform accessed the request message.
攻击者不能访问一个请求中所有的包,也就不能破译发送的消息。
The attacker cannot access all the packets of a request and cannot decipher what message was sent.
XACML构建于SAML之上,提供了用于定义访问控制和授权请求及响应消息的实际语义。
XACML builds on SAML by providing the actual semantics used to define access control policy and authorization request and response messages.
应用推荐