[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Updated Minutes for 8 April 2010 TC Meeting
Time: 13:00 EDT Tel: 513-241-0892 Access Code: 65998 Minutes for 8 April 2010 TC Meeting: 10:00 - 10:05 Roll Call & Approve Minutes: VOTING Erik Rissanen Paul Tyson Gareth Richards Sridhar Muppidi Bill Parducci Anthony Nadalin Duane DeCouteau David Staggs Naomaru Itoi Rich Levinson Hal Lockhart Dilli Arumugam John Tolbert NON-VOTING Roy D'Souza Gerry Gebel GUEST Steve Hanna Juniper Networks Guest Mike Davis Veterans Administration Approve Minutes: 25 March 2010 TC Meeting http://lists.oasis-open.org/archives/xacml/201003/msg00017.html approved the minutes, no objection Adminsitrivia OASIS Announcement: Privacy Management Ref Model Webinar: http://lists.oasis-open.org/archives/xacml/201003/msg00028.html mentioned Guest presentation by Steve Hanna on IF-Map and XACML: http://lists.oasis-open.org/archives/xacml/201003/msg00011.html V3 Status: Hal: designated cross-refs: need to comply w oasis process if doc having version numbers are subject to change. Can do that by taking docs back to wd, w/o pub rev, take all votes again. Instead can designate at beginning that certain refs are "designated cross-refs" - can't go to its voted state until refs reach final state. Mary said need to have expected approval date. If cross referenced documents have not reached the expected stage of approval by that date TC admin will go ahead and publish them as is, that is without updating the references. email from Erik has all des x-ref info; for John's only ref is to core of 3.0. http://lists.oasis-open.org/archives/xacml/201001/msg00039.html Rich: suggests that the cross-refs should be self-identified, by the URIs. Hal: the URIs would be ok, but the official title, date may not be accurate. Erik: how does "doing later" work it out, because then docs are back to wdxx. Hal: there is exception for "schemas". The name (and namespace) of a schema are frozen at the cd stage so programs can continue to use the same identifier. Erik: proposes that we do the designated x-refs General discussion: pick expected approval date for the 6 specs John Tolbert moved that the TC request a committee specification ballot for XACML 3.0 Export Compliance-US (EC-US) Profile Version 1.0 Committee Draft 03. The document contains a designated cross-reference as defined in TC Process section 2.19. It is understood that this may delay the date the spec reaches approved status. The designated cross-reference is: eXtensible Access Control Markup Language (XACML) Version 3.0 Committee Draft 03 http://www.oasis-open.org/committees/download.php/37088/xacml-3.0-core-spec-cd-03-en.zip It is expected to become an OASIS Standard by December 31, 2010. The motion was approved unanimously. John Tolbert moved that the TC request a second public review of 15 days for XACML Intellectual Property Control (IPC) profile Version 1.0 Committee draft 2 The document contains a designated cross-reference as defined in TC Process section 2.19. It is understood that this may delay the date the spec reaches approved status. The designated cross-reference is: eXtensible Access Control Markup Language (XACML) Version 3.0 Committee Draft 03 http://www.oasis-open.org/committees/download.php/37088/xacml-3.0-core-spec-cd-03-en.zip It is expected to become an OASIS Standard by December 31, 2010. The motion was approved unanimously. Erik Rissanen moved that the TC request a second public review of 30 days for eXtensible Access Control Markup Language (XACML) Version 3.0 Committee Draft 03 The document contains three designated cross-references as defined in TC Process section 2.19. It is understood that this may delay the date the spec reaches approved status. The designated cross-references are: XACML v3.0 Hierarchical Resource Profile Version 1.0 http://docs.oasis-open.org/xacml/3.0/xacml-3.0-hierarchical-v1-spec-cd-03-en.doc It is expected to become an OASIS Standard by December 31, 2010. OASIS Committee Draft 03, XACML v3.0 Multiple Decision Profile Version 1.0 http://docs.oasis-open.org/xacml/3.0/xacml-3.0-multiple-v1-spec-cd-03-en.doc It is expected to become an OASIS Standard by December 31, 2010. XACML v3.0 Administration and Delegation Profile Version 1.0 Committee Draft 03 http://docs.oasis-open.org/xacml/3.0/xacml-3.0-administration-v1-spec-cd-03-en.doc It is expected to become an OASIS Standard by December 31, 2010. The motion was approved unanimously. Erik Rissanen moved that the TC request a second public review of 30 days for XACML v3.0 Hierarchical Resource Profile Version 1.0 Committee Draft 03. The document contains two designated cross-references as defined in TC Process section 2.19. It is understood that this may delay the date the spec reaches approved status. The designated cross-references are: eXtensible Access Control Markup Language (XACML) Version 3.0 Committee Draft 03 http://www.oasis-open.org/committees/download.php/37088/xacml-3.0-core-spec-cd-03-en.zip It is expected to become an OASIS Standard by December 31, 2010. OASIS Committee Draft 03, XACML v3.0 Multiple Decision Profile Version 1.0 http://docs.oasis-open.org/xacml/3.0/xacml-3.0-multiple-v1-spec-cd-03-en.doc It is expected to become an OASIS Standard by December 31, 2010. The motion was approved unanimously. Erik Rissanen moved that the TC request a second public review of 30 days for XACML v3.0 Multiple Decision Profile Version 1.0 Committee Draft 03. The document contains two designated cross-references as defined in TC Process section 2.19. It is understood that this may delay the date the spec reaches approved status. The designated cross-references are: eXtensible Access Control Markup Language (XACML) Version 3.0 Committee Draft 03 http://www.oasis-open.org/committees/download.php/37088/xacml-3.0-core-spec-cd-03-en.zip It is expected to become an OASIS Standard by December 31, 2010. XACML v3.0 Hierarchical Resource Profile Version 1.0 http://docs.oasis-open.org/xacml/3.0/xacml-3.0-hierarchical-v1-spec-cd-03-en.doc It is expected to become an OASIS Standard by December 31, 2010. The motion was approved unanimously. Erik Rissanen moved that the TC request a second public review of 30 days for SAML 2.0 Profile of XACML, Version 2.0 Committee Draft 03. The document contains two designated cross-references as defined in TC Process section 2.19. It is understood that this may delay the date the spec reaches approved status. The designated cross-references are: eXtensible Access Control Markup Language (XACML) Version 3.0 Committee Draft 03 http://www.oasis-open.org/committees/download.php/37088/xacml-3.0-core-spec-cd-03-en.zip It is expected to become an OASIS Standard by December 31, 2010. XACML v3.0 Administration and Delegation Profile Version 1.0 Committee Draft 03 http://docs.oasis-open.org/xacml/3.0/xacml-3.0-administration-v1-spec-cd-03-en.doc It is expected to become an OASIS Standard by December 31, 2010. The motion was approved unanimously. Not for pub rev (don't need to do anything now, just have to certify they haven't changed since last pub rev. Admn no subst chgs DSig no subst chgs Priv no subst chgs Rbac no subst chgs IPC Profile uploaded (questions on baseline and format): http://lists.oasis-open.org/archives/xacml/201003/msg00014.html ODF Profile uploaded: http://www.oasis-open.org/committees/document.php?document_id=36728&wg_abbrev=office Proposed ontologies discussion item from Dave Staggs: Discuss what work we can do on using ontologies for XACML-based authorization decisions. This may be considered to continue the ongoing discussion with most recent segment at end of Mar 11 mtg minutes: http://lists.oasis-open.org/archives/xacml/201003/msg00009.html Dave: from emails, there are lots of good ideas, suggests we have a work item that focuses on a specific example profile, and look at profile for use by a certain ontology-specific area like health-care. Also interested is Jericho. Mike Davis: primary rep for VA, co-chair for security in HL7 which is a health care SDO. This discussion at xacml is also in discussion in HL7; have work items there to create ontologies, including one for security; was follow-up to work done in XSPA, which is XACML-related OASIS TC. Would be worth examining convergence of xacml and hl7 work. Hal: to clarify: is proposal to do a specific profile for health care which would also become a how-to in other domains. Mike: would expect xacml to do its own general model and that the healthcare would be instance of impl that could be demo'd, but in particular, not dependent on specific hl7 ontology, as that is also in the embryonic stage. Paul: ref'd wiki page on xacml that describes current state of xacml tc work on it; question: does what is there represent what Mike and Dave are looking to do? Mike: hl7 is a ref model, believe they would take info model and create conceptual relations between attributes, currently related in hierarchical fashion, includes notion of hierarchical roles. A role can allow orders to be made, and also to make specific orders like prescriptions. Patients can also prescribe restrictions against these hierarchical privileges that are granted. Envision at runtime, particular permission in hier structure, table could be looked up in sensible order so that permits and denies can be efficiently oriented. Paul: there was proposal in users list in Jan; Paul proposed a soln; nothing prevents how req ctx gets built. Hal: hour is just about up. Suggests a subgroup of interested parties; please use mail list; if need separate call, let's look at it starting next month; 1. create what it means to define ontology 2. define what it means for xacml to support an ontology - hand off to ctx hndlr, handoff to supplementary engine, etc. Paul: need principles how to approach: xacml is pretty flexible and would want to capitalize as far as possible. Hal: any objections to pursuing this work item? no objections. Dave: will try to have pres by mtg after next. Hal: any late arrivals? none.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]