Consensus Item Name: Interpretation of EncryptionMethod metadata

Test Event: SAML Interoperability Test Event 4Q07

Consensus Decision: Support any of the ciphers and key transports listed in section 4.2 of [SAMLConf] regardless of the metadata values from EncryptionMethod.

Background: There was confusion on understanding and using EncryptionMethod elements in the metadata. Section 4.2 of [SAMLConf] lists different block encryption ciphers and key transports which must be supported within SAML 2.0. Section 2.4.1.1 of [SAMLMeta] addresses the EncryptionMethod element which specifies the ciphers and key transports supported by the entity. There was a question on how to interpret metadata which only listed a subset of the ciphers and key transports required by SAML. For the interoperability test, it was agreed to support any of the ciphers and key transports listed in section 4.2 of [SAMLConf] regardless of the metadata values. DGI will follow up with SSTC group within OASIS for guidance and clarification on this question.