1 <?xml version="1.0" encoding="UTF-8"?>
\r
3 <xs:schema targetNamespace="urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorUnregistered"
\r
4 xmlns:xs="http://www.w3.org/2001/XMLSchema"
\r
5 xmlns="urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorUnregistered"
\r
6 finalDefault="extension"
\r
7 blockDefault="substitution"
\r
10 <xs:redefine schemaLocation="saml-schema-authn-context-types-2.0.xsd">
\r
14 Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorUnregistered
\r
15 Document identifier: saml-schema-authn-context-mobileonefactor-unreg-2.0
\r
16 Location: http://docs.oasis-open.org/security/saml/v2.0/
\r
19 New authentication context class schema for SAML V2.0.
\r
23 <xs:complexType name="AuthnContextDeclarationBaseType">
\r
25 <xs:restriction base="AuthnContextDeclarationBaseType">
\r
27 <xs:element ref="Identification" minOccurs="0"/>
\r
28 <xs:element ref="TechnicalProtection" minOccurs="0"/>
\r
29 <xs:element ref="OperationalProtection" minOccurs="0"/>
\r
30 <xs:element ref="AuthnMethod"/>
\r
31 <xs:element ref="GoverningAgreements" minOccurs="0"/>
\r
32 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
34 <xs:attribute name="ID" type="xs:ID" use="optional"/>
\r
36 </xs:complexContent>
\r
39 <xs:complexType name="AuthnMethodBaseType">
\r
41 <xs:restriction base="AuthnMethodBaseType">
\r
43 <xs:element ref="PrincipalAuthenticationMechanism" minOccurs="0"/>
\r
44 <xs:element ref="Authenticator"/>
\r
45 <xs:element ref="AuthenticatorTransportProtocol" minOccurs="0"/>
\r
46 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
49 </xs:complexContent>
\r
52 <xs:complexType name="AuthenticatorBaseType">
\r
54 <xs:restriction base="AuthenticatorBaseType">
\r
57 <xs:element ref="DigSig"/>
\r
58 <xs:element ref="ZeroKnowledge"/>
\r
59 <xs:element ref="SharedSecretChallengeResponse"/>
\r
60 <xs:element ref="SharedSecretDynamicPlaintext"/>
\r
61 <xs:element ref="AsymmetricDecryption"/>
\r
62 <xs:element ref="AsymmetricKeyAgreement"/>
\r
64 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
67 </xs:complexContent>
\r
70 <xs:complexType name="AuthenticatorTransportProtocolType">
\r
72 <xs:restriction base="AuthenticatorTransportProtocolType">
\r
75 <xs:element ref="SSL"/>
\r
76 <xs:element ref="MobileNetworkNoEncryption"/>
\r
77 <xs:element ref="MobileNetworkRadioEncryption"/>
\r
78 <xs:element ref="MobileNetworkEndToEndEncryption"/>
\r
79 <xs:element ref="WTLS"/>
\r
81 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
84 </xs:complexContent>
\r
87 <xs:complexType name="OperationalProtectionType">
\r
89 <xs:restriction base="OperationalProtectionType">
\r
91 <xs:element ref="SecurityAudit"/>
\r
92 <xs:element ref="DeactivationCallCenter"/>
\r
93 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
96 </xs:complexContent>
\r
99 <xs:complexType name="TechnicalProtectionBaseType">
\r
100 <xs:complexContent>
\r
101 <xs:restriction base="TechnicalProtectionBaseType">
\r
104 <xs:element ref="PrivateKeyProtection"/>
\r
105 <xs:element ref="SecretKeyProtection"/>
\r
107 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
110 </xs:complexContent>
\r
113 <xs:complexType name="PrivateKeyProtectionType">
\r
114 <xs:complexContent>
\r
115 <xs:restriction base="PrivateKeyProtectionType">
\r
117 <xs:element ref="KeyStorage"/>
\r
118 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
121 </xs:complexContent>
\r
124 <xs:complexType name="SecretKeyProtectionType">
\r
125 <xs:complexContent>
\r
126 <xs:restriction base="SecretKeyProtectionType">
\r
128 <xs:element ref="KeyStorage"/>
\r
129 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
132 </xs:complexContent>
\r
135 <xs:complexType name="KeyStorageType">
\r
136 <xs:complexContent>
\r
137 <xs:restriction base="KeyStorageType">
\r
138 <xs:attribute name="medium" use="required">
\r
140 <xs:restriction base="mediumType">
\r
141 <xs:enumeration value="MobileDevice"/>
\r
142 <xs:enumeration value="MobileAuthCard"/>
\r
143 <xs:enumeration value="smartcard"/>
\r
148 </xs:complexContent>
\r
151 <xs:complexType name="SecurityAuditType">
\r
152 <xs:complexContent>
\r
153 <xs:restriction base="SecurityAuditType">
\r
155 <xs:element ref="SwitchAudit"/>
\r
156 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
159 </xs:complexContent>
\r
162 <xs:complexType name="IdentificationType">
\r
163 <xs:complexContent>
\r
164 <xs:restriction base="IdentificationType">
\r
166 <xs:element ref="GoverningAgreements"/>
\r
167 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
169 <xs:attribute name="nym">
\r
171 <xs:restriction base="nymType">
\r
172 <xs:enumeration value="anonymity"/>
\r
173 <xs:enumeration value="pseudonymity"/>
\r
178 </xs:complexContent>
\r