Business Cases

["Mike Poulin" <mpoulin@usa.com>]

Hi All,

 I am sorry I was not able to participate in the last meeting this Monday and I've not seen any Minutes for it.

So, I have sketched 14 Business Cases and place them into the attached file together with some comments on the problem of indirect authorization in service-oriented ecosystem. For the last 2 days I was at the Cloud Expo Europe 2013 and found that relatively  common opinion about Cloud authentication and authorization may be shorten as this: our experience and solutions developed for those two areas for intra-corporate use are, more likely than not, do not work in Clouds, especially regarding sending IDs and access rights between participating business entities. There are no problems with SAML or XACML; it is about a commersial distrust and extremely high risk of error or violation in those areas.

I am looking for your feedback or questions about both - concerns and business cases. Please, consider that in a service-oriented ecosystem trust exists only between the service/provider and its immediate consumers/clients/users.

Regards,
- Michael Poulin

 

----- Original Message -----

From: Anil Saldhana

Sent: 01/24/13 04:33 PM

To: cloudauthz@lists.oasis-open.org

Subject: [cloudauthz] XACML V3.0 approved as an OASIS Standard

I hope you have all seen this.

-------- Original Message --------

Subject:	[members] eXtensible Access Control Markup Language (XACML) V3.0 approved as an OASIS Standard
Date:	Wed, 23 Jan 2013 09:23:35 -0500
From:	Chet Ensign <chet.ensign@oasis-open.org>
To:	tc-announce@lists.oasis-open.org, members@lists.oasis-open.org, xacml@lists.oasis-open.org

 
OASIS members: 

We are pleased to announce that eXtensible Access Control Markup Language (XACML) V3.0 has been approved by the membership as an OASIS Standard [1]. 

The call to vote was announced on 08 January 2013 [2] and closed 22 January 2013. A minimum of 48 affirmative votes were needed in order to win approval. The finally vote tally was 72 affirmative votes and no negative votes. 

TC Administration will now prepare and publish the final OASIS Standard and notify members when it is available. 

Our congratulations to the members of the TC and to the community of implementers, developers and users who have brought the work successfully to this milestone 

=== Additional information 

[1] OS Ballot: https://www.oasis-open.org/committees/ballot.php?id=2339 

[2] Call to vote: https://www.oasis-open.org/news/announcements/call-to-vote-ballot-for-oasis-standard-xacml-v3-0 

[3] The Candidate OASIS Standard can be found at: 
http://docs.oasis-open.org/xacml/3.0/xacml-3.0-core-spec-cos01-en.html 


/chet 
---------------- 
Chet Ensign 
Director of Standards Development and TC Administration 
OASIS: Advancing open standards for the information society 
http://www.oasis-open.org 

Primary: +1 973-996-2298 
Mobile: +1 201-341-1393 


--------------------------------------------------------------------- 
This email list is used solely by OASIS for official consortium communications. 
Opt-out requests may be sent to member-services@oasis-open.org, however, all members are strongly encouraged to maintain a subscription to this list. 

 

 

Attachment: Business Cases for CloudAuthZ.docx
Description: Attachment: Business Cases for CloudAuthZ.docx