In SAML, signing or encrypting the assertions seems to be essential, but I'm not finding much information describing any benefits or drawbacks of signing the authentication request in real world "practical" scenarios.
Security and Privacy Considerations forthe OASIS Security Assertion MarkupLanguage (SAML) section 5.2.1.2 talks about that it can prevent DOS attacks.
but are there any other attacks that signed requests would prevent?
Are there any other benefits or drawbacks of using signed authentication requests from the SP?