Thankyou everyone for your comments. Two comments have arisen which need a little discussion. Is this a profile over AS4 or a general ebMS3 profile? (comment from Sander) Should we include the token acquisition step (WS-Trust) in the profile? (SAML TC chair recommended yes)