Hi Josh,

sorry for the long delay.

>> Are there some other resources with source code or is there a wiki
>> somewhere with more informations? Or did no one even tried to implement
>> parts of the proposals to check if it really works?
> 
> There is already running code that implements the core specifications; we're actually a few weeks ahead of schedule. 

That sonds good.

> Unfortunately, the contracts process isn't moving at the same pace. When the contracts are done, the code will move into the repository. I don't want to promise any timescales at the moment, but it should be happening quite soon.

That does not sound so good. ;-)

>> I would like to make improvements to the draft and the code if possible
>> and doing so by hacking some code is much more fun than without any
>> code. ;-)
> 
> Excellent :-) Which areas are you interested in?

My plan is to to make it possible to authenticate a person against a
IMAP server with his German identity card (neuer Personlausweis). I have
access to an closed source Identity Provider supporting the identity
card and the process is more or less working in an web based scenario.
It uses a Java Applet to talk to the identity card. The Identity
provider uses OpenSAML to mange the SAML protocol and is written in
Java. Now my plan is to add support for the non web based SAML protocol
into the ipd and write a stupid IMAP client (just a prove of concept)
based on the Java mail client to autenticate with the identity card.

My hope is that I do not have to implement the hole stuff needed in
OpenSAML and cyrus-sasl and can focos on the idp and the mail client.

Hauke