1 <?xml version="1.0" encoding="UTF-8"?>
\r
3 <xs:schema targetNamespace="urn:oasis:names:tc:SAML:2.0:ac:classes:SoftwarePKI"
\r
4 xmlns:xs="http://www.w3.org/2001/XMLSchema"
\r
5 xmlns="urn:oasis:names:tc:SAML:2.0:ac:classes:SoftwarePKI"
\r
6 finalDefault="extension"
\r
7 blockDefault="substitution"
\r
10 <xs:redefine schemaLocation="saml-schema-authn-context-types-2.0.xsd">
\r
14 Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:SoftwarePKI
\r
15 Document identifier: saml-schema-authn-context-softwarepki-2.0
\r
16 Location: http://docs.oasis-open.org/security/saml/v2.0/
\r
19 New authentication context class schema for SAML V2.0.
\r
23 <xs:complexType name="AuthnContextDeclarationBaseType">
\r
25 <xs:restriction base="AuthnContextDeclarationBaseType">
\r
27 <xs:element ref="Identification" minOccurs="0"/>
\r
28 <xs:element ref="TechnicalProtection"/>
\r
29 <xs:element ref="OperationalProtection" minOccurs="0"/>
\r
30 <xs:element ref="AuthnMethod"/>
\r
31 <xs:element ref="GoverningAgreements" minOccurs="0"/>
\r
32 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
34 <xs:attribute name="ID" type="xs:ID" use="optional"/>
\r
36 </xs:complexContent>
\r
39 <xs:complexType name="AuthnMethodBaseType">
\r
41 <xs:restriction base="AuthnMethodBaseType">
\r
43 <xs:element ref="PrincipalAuthenticationMechanism"/>
\r
44 <xs:element ref="Authenticator"/>
\r
45 <xs:element ref="AuthenticatorTransportProtocol" minOccurs="0"/>
\r
46 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
49 </xs:complexContent>
\r
52 <xs:complexType name="TechnicalProtectionBaseType">
\r
54 <xs:restriction base="TechnicalProtectionBaseType">
\r
57 <xs:element ref="PrivateKeyProtection"/>
\r
61 </xs:complexContent>
\r
64 <xs:complexType name="PrincipalAuthenticationMechanismType">
\r
66 <xs:restriction base="PrincipalAuthenticationMechanismType">
\r
68 <xs:element ref="ActivationPin"/>
\r
69 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
72 </xs:complexContent>
\r
75 <xs:complexType name="AuthenticatorBaseType">
\r
77 <xs:restriction base="AuthenticatorBaseType">
\r
80 <xs:element ref="DigSig"/>
\r
81 <xs:element ref="AsymmetricDecryption"/>
\r
82 <xs:element ref="AsymmetricKeyAgreement"/>
\r
84 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
87 </xs:complexContent>
\r
90 <xs:complexType name="PrivateKeyProtectionType">
\r
92 <xs:restriction base="PrivateKeyProtectionType">
\r
94 <xs:element ref="KeyActivation"/>
\r
95 <xs:element ref="KeyStorage"/>
\r
96 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
99 </xs:complexContent>
\r
102 <xs:complexType name="KeyActivationType">
\r
103 <xs:complexContent>
\r
104 <xs:restriction base="KeyActivationType">
\r
106 <xs:element ref="ActivationPin"/>
\r
107 <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
\r
110 </xs:complexContent>
\r
113 <xs:complexType name="KeyStorageType">
\r
114 <xs:complexContent>
\r
115 <xs:restriction base="KeyStorageType">
\r
116 <xs:attribute name="medium" use="required">
\r
118 <xs:restriction base="mediumType">
\r
119 <xs:enumeration value="memory"/>
\r
124 </xs:complexContent>
\r