...
The IdP uses a scope to qualify certain user attributes. Scoped attributes are globally unique provided the scope is carefully chosen. By convention, the scope is the primary DNS domain of the IdP.
User Interface Elements
https://spaces.at.internet2.edu/display/InCCollaborate/UIInfoUser Interface Elements
Requested Attributes
https://spaces.at.internet2.edu/display/InCCollaborate/RequestedAttributesRequested Attributes
X.509 Certificates
A SAML entity uses public key cryptography to secure the data transmitted to trusted partners. Public keys are published in the form of X.509 Certificates in Metadata whereas the corresponding private keys are held securely by the SAML entity. These keys are used for message-level signing and encryption, and to create secure channels for transporting SAML messages.
...