The IT Law Wiki
Register
Advertisement

Definitions[]

Programming[]

Assertion is

[a] logical expression specifying a program state that must exist or a set of conditions that program variables must satisfy at a particular point during program execution.[1]

Security[]

An assertion is

[a] statement from a verifier to a relying party that contains Identity information about a subscriber. Assertions may also contain verified attributes. Assertions may be digitally signed objects or they may be obtained from a trusted source by a secure protocol.[2]

Overview (Security)[]

Assertions can be used to pass information about the claimant or the e-authentication process from the verifier to a relying party. Assertions contain, at a minimum, the name of the claimant, as well as identifying information that permits recovery of registration records. A relying party trusts an assertion based on the source, the time of creation, and attributes associated with the claimant.

Assertions may be stored as directory or database objects. Where assertions are digitally signed objects, their integrity may be verified.

References[]

Advertisement