35
<Assertion
xmlns="urn:oasis:names:tc:SAML:2.0:assertion"
Version="2.0"
IssueInstant="2005-01-31T12:00:00Z"
ID="abe567de6">
<Issuer>
http://www.AirlineInc.com
</Issuer>
<Subject>
<NameID
Format="urn:oasis:names:tc:1.1:nameid-format:emailAddress">
j.doe@acompany.com
</NameID>
</Subject>
<Conditions
NotBefore="2005-01-31T12:00:00Z"
NotOnOrAfter="2005-01-31T13:00:00Z">
</Conditions>
<AuthnStatement
AuthnInstant="2005-01-29T09:32:00Z">
<AuthnContext>
<AuthnContextClassRef>
urn:oasis:names:tc:SAML2.0:ac:classes:PasswordProtectedTransport
</AuthnContextClassRef>
</AuthnContext>
</AuthnStatement>
</Assertion>
Recap: "I (http:/www.AirlineInc.com) authenticated the
subject (whose email address is jdoe@acompany.com)
by means of the subject presenting a password over a protected session. This
authentication is valid from noon on Jan. 31, 2005 until 1pm on Jan. 31, 2005."