OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

xacml message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Minutes of 27 May 2004 XACML TC Meeting

XACML TC General Body Meeting Minutes
27 May 2004; Time: 10:00 AM EDT

Attendees:
Michiharu Kudo
Anne Anderson
Hal Lockhart
Bill Parducci
Seth Proctor
Ron Jacobson
Daniel Engovatov
Frank Siebenlist
Michael McIntosh
Polar Humenn

Quorum reached.

Agenda:

Minutes from 27 April meeting voted upon:
    Corrections: as noted in agenda
    Move to accept: Anne
    Second: Polar
    Approved unanimously.

1. SAML/XACML Attribute harmony update
    Anne: a profile is ready to be progressed through the SSTC group -
    SAML users that want to generate attributes for consumption by XACML
    will have a readily available reference.

    Michael: this should be handled solely within the XACML TC

    SSTC meets F2F in a couple of weeks where this issue is likely to be
    resolved.

    Motion: submit to SSTC
    Move: Anne
    Second: Daniel
    Objection: Michael
    Approved by majority.

  2. Hierarchical Resources

    Daniel: concerned that a baseline mapping scheme is impractical for
    legacy systems and that transportability is not dependent upon a
    externally defined resource naming scheme.

    Anne: these issues are addressed by the proposal, the current spec
    provides similar limitations for interoperability and this must be
    addressed by the context handler anyway. Secure polices demand a
    single way to define a resource to avoid misinterpretation at run
    time.

    Polar: does this change the behavior of the PDP?

    Anne: this introduces a new function: URImatch (submitted by Tim)

    Motion [Initial]: Extend the XACML specification to contain a
    separate, single, Profile for XML and non-XML resources that are
    hierarchical; this specifically does not address multiple concurrent
    requests (request scoping).
    Move: Anne
    Second: Polar

    Discussion on the motion did not lead to a vote as the definition of
    the motion required further refinement. The group decided to further
    address this issue on the list starting from the position that a
    Profile for hierarchical resources is desirable.

meeting adjourned.

b

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]