SAML defines the syntax and processing semantics of assertions made about a subject by a system entity. SAML assertions and protocol messages are encoded in XML and use XML namespaces (XMLNS), typically embedded in other structures for transport, such as HTTP POST requests or XML-encoded SOAP messages.

SAML addresses primarily single-sign-on functionality in Web-based application interfaces.