security-use message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Subject: Voting Results - Groups 2, 3, 4, 10, 12, and 13

The ballot comments and voting results are attached.  Please review the
voting results doc to make sure I captured your votes appropriately.  Here's
what passed:

ISSUE:[UC-2-01:AddPolicyAssertions]
   2. Maintain the non-goal, leave out the requirement.

ISSUE:[UC-3-03:Logout]
   1. Add this requirement to SAML.

ISSUE:[UC-3-05:SessionTermination]
   1. Add this requirement to SAML.

ISSUE:[UC-4-02:AttributeAuthority]
2. This issue is adequately addressed by existing use cases and doesnot
require further elaboration within SAML.

ISSUE:[UC-4-03:PrivateKeyHost]
3. This issue has been adequately addressed elsewhere; there is noneed for
any additions to the use-case document.

ISSUE:[UC-4-04:SecurityDiscover]
  2.No, this extends the scope of [OSSML] too far. AuthZ in [OSSML]should be
concerned with AuthZ attributes of a principal, not of resources.

ISSUE:[UC-10-01:Framework]
2. Leave the extensibility requirement.

ISSUE:[UC-10-06:BackwardCompatibleExtensions]
1. Add requirement [CR-10-06-BackwardCompatibleExtensions].

ISSUE:[UC-12-01:Confidentiality]
1) Add [R-Confidentiality]

ISSUE: [UC-12-03:BindingConfidentiality]
1) [R-BindingConfidentiality] Bindings SHOULD (in the RFC sense) provide a
means to protect SAML data from observation by third parties. Each protocol
binding must include a description of how applications can make use of this
protection. Examples: S/MIME for MIME, HTTP/S for HTTP.

ISSUE:[UC-12-03:EncryptionMethod]
3) Add no requirement now, but include a note that this issue must be
revisited in a future version of the SAML spec after XML Encryption is
published.

ISSUE:[UC-13-05:SecurityPolicy]
2. Leave this requirement out of use case and requirements document.



Darren Platt
Principal Technical Evangelist
Securant Technologies
345 California St., 23rd Floor
San Francisco, CA 94104
tel - (415) 263-4976
fax - (415) 764-4949
http://www.securant.com/
-----------------------------

Voting_Results_Groups_2_3_4_10_12_13.doc

Title: Company

 

2-01

2-02

2-03

2-05

2-06

2-07

2-08

3-03

3-05

3-06

3-08

3-09

4-01

4-02

4-03

4-04

Hal Lockhart

2

1

1

1

1

1

1

1

1

1

1

1

1

2

3

2

Evan Prodromou

 

2

1

2

2

2

2

2

1

1

1

1

1

2

 

3

2

Gil Pilz

2

2

2

2

2

2

2

1

1

1

1

1

1

2

2

2

Kelly Emo

 

 

 

 

 

 

 

1

1

1

1

1

 

 

 

 

Marlena Erdos

2

2

1

1

2

2

2

2

2

2

2

2

1

1

3

2

Ahmed Zahid

2

2

1

1

1

1

1

1

1

1

2

2

1

2

3

2

Prateek Mishra

2

1

1

1

2

2

1

1

1

1

1

1

2

 

2

2

Irving Reid

2

1

1

1

1

1

1

1

1

2

2

2

1

2

3

2

Bob Morgan

2

2

2

1

2

2

2

A

a

a

a

a

1

2

3

2

Jeff Hodges

2

2

2

1

2

2

2

2

2

2

2

2

2

2

3

2

David Orchard

2

2

2

2

2

2

2

1

1

1

1

1

1

2

2

2

Darren Platt

2

1

2

2

2

2

2

1

1

1

1

1

1

1

3

2

Totals

2:11

1:5

2:6

1:5

2:6

1:7

2:4

1:3

2:8

1:3

2:8

1:4

2:8

1:9

2:2

A:1

1:9

2:2

a:1

1:8

2:3

a:1

1:7

2:4

a:1

1:7

2:4

a:1

1:8

2:3

1:2

2:7

2:3

3:9

2:11

 

 

 

10-1

10-2

10-3

10-4

10-5

10-6

10-7

12-01

12-02

UC-2-03:BC

UC-12-03:EM

 

13-01

13-02

13-03

13-04

13-05

13-06

Hal Lockhart

2

1

1

2

2

1

3

1

4

1

3

1

1

1

1

2

3

Evan Prodromou

2

1

1

2

2

1

2

1

3

1

3

2

2

2

2

2

1

Gil Pilz

2

1

1

1

1

1

1

1

4

1

3

1

2

1

1

2

1

Marlena Erdos

2

2

2

2

2

1

3

2

1

1

3

A

2

1

1

2

1

Ahmed Zahid

2

1

1

2

2

1

3

1

4

1

3