...
Our objective is to develop a scalable software or service solution that would assist federation operators in testing the security aspects of Service Providers' SAML deployments, with a specific emphasis on signature validation. This solution aims to automate and streamline testing scenarios, including the checking of signature validity, identifying vulnerabilities to signature wrapping attacks, and addressing real-life failures observed in SP deployments. The validation scenarios encompass self-testing by SPs for production readiness, onboarding testing by FedOps, periodic reviews of SPs by FedOps, and testing initiated by client institutions during compliance reviews.
...