Chaos and Order

Chaos and Order https://www.youngju.dev/blog 천천히 올바르게. AI Researcher & DevOps Engineer Youngju's tech blog. GPU/CUDA, LLM, MLOps, Kubernetes AI workloads, distributed training, and data engineering. ko fjvbn2003@gmail.com (Youngju Kim) fjvbn2003@gmail.com (Youngju Kim) Fri, 12 Jun 2026 00:00:00 GMT https://www.youngju.dev/blog/devops/2026-06-12-saml2-deep-dive-assertions-bindings-metadata.en SAML 2.0 Deep Dive — Mastering Assertions, Bindings, and Metadata https://www.youngju.dev/blog/devops/2026-06-12-saml2-deep-dive-assertions-bindings-metadata.en A dissection of SAML 2.0 with real XML examples: the structure of the Assertion at its heart, the AuthnRequest/Response flow, SP-initiated vs IdP-initiated SSO, HTTP-Redirect/POST/Artifact bindings, metadata exchange, and XML Signature and encryption. Covers the XML Signature Wrapping attack and its defenses, RelayState, operational issues such as clock skew, and why SAML is still alive in enterprise B2B in 2026. Fri, 12 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) samlssoxmlsecurityiamenterprisedevops https://www.youngju.dev/blog/devops/2026-06-12-saml2-deep-dive-assertions-bindings-metadata.ja SAML 2.0 ディープダイブ — Assertion・Binding・Metadata 完全攻略 https://www.youngju.dev/blog/devops/2026-06-12-saml2-deep-dive-assertions-bindings-metadata.ja SAML 2.0 の心臓部である Assertion の XML 構造から、AuthnRequest/Response のフロー、SP-initiated vs IdP-initiated、HTTP-Redirect/POST/Artifact バインディング、メタデータ交換、XML Signature と暗号化までを、実際の XML 例とともに解剖します。XML Signature Wrapping 攻撃と防御、RelayState、クロックスキューといった運用課題、そして SAML が 2026 年もエンタープライズ B2B で生き続けている理由を解説します。 Fri, 12 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) samlssoxmlsecurityiamenterprisedevops https://www.youngju.dev/blog/devops/2026-06-12-saml2-deep-dive-assertions-bindings-metadata SAML 2.0 딥다이브 — Assertion, Binding, Metadata 완전 정복 https://www.youngju.dev/blog/devops/2026-06-12-saml2-deep-dive-assertions-bindings-metadata SAML 2.0의 심장인 Assertion의 XML 구조부터 AuthnRequest/Response 흐름, SP-initiated vs IdP-initiated, HTTP-Redirect/POST/Artifact 바인딩, 메타데이터 교환, XML Signature와 암호화까지 실제 XML 예제와 함께 해부합니다. XML Signature Wrapping 공격과 방어, RelayState, 클럭 스큐 같은 운영 이슈, 그리고 SAML이 2026년에도 엔터프라이즈 B2B에서 살아있는 이유를 다룹니다. Fri, 12 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) samlssoxmlsecurityiamenterprisedevops