82
SubjectConfirmation (cont.)
<Assertion>
      …
      <Subject>
              <NameID Format="urn:oasis:names:tc:1.1:nameid-format:emailAddress">
                  j.doe@acompany.com
              </NameID>
              <SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:holder-of-key">
                      <SubjectConfirmationData>
                              <ds:KeyInfo> … </ds:KeyInfo>
                      </SubjectConfirmationData>
              </SubjectConfirmation>
      </Subject>
      …
</Assertion>
The Method
attribute identifies
what method the
SP can use to
confirm that the
presenter is who
he says he is.