[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Minutes for 11 August 2011 TC Meeting
Time: 13:00 EDT Tel: 513-241-0892 Access Code: 65998 Minutes for 11 August 2011 TC Meeting: I Roll Call VOTING: Erik Rissanen Axiomatics Group Member Paul Tyson Bell Helicopter Textron Inc. Group Member Remon Sinnema EMC Group Member Bill Parducci* Individual Group Member Anthony Nadalin Microsoft Group Member Rich Levinson Oracle Group Member Hal Lockhart Oracle Group Member John Tolbert The Boeing Company* Group Member NON VOTING Crystal Hayes The Boeing Company* Group Member Richard Hill The Boeing Company* Group Member Abbie Barbir Bank of America Group Member Stefan Bohm iC Consult GmbH Group Member bill: we have quorum Approve Minutes: hal: agenda ok? ok. 28 July 2011 TC Meeting http://lists.oasis-open.org/archives/xacml/201107/msg00035.html hal: any additions, corrections, objections to unan consent: none heard approved. II Administrivia Reminder: we are back on 2 week meeting schedule: next mtg 8/25. Reminder: also at the 8/25 meeting: Andrea Westerinen of CA Technologies will be giving a presentation at this meeting on an overview of the structure and semantics of the XACML Policy Language compared with several other policy languages. The slides are ref'd in this email from John Tolbert: http://lists.oasis-open.org/archives/xacml/201107/msg00009.html hal: talk will take full mtg Oasis announcement: Registration Opens for Int’l Cloud Symposium http://lists.oasis-open.org/archives/xacml/201108/msg00003.html Oasis announcement: IdTrust elections (vote by 5PM EDT: 8/23): http://lists.oasis-open.org/archives/xacml/201108/msg00004.html http://lists.oasis-open.org/archives/xacml/201108/msg00005.html V3 Status: SAML, RBAC and Core specs submitted to TC-Admin as Committee Specs for Public Review. There has been some discussion on list, but 2 of the 3 specs appear ready to start. Need status update: http://lists.oasis-open.org/archives/xacml/201108/msg00002.html requests submitted and ack'd by TC-Admin: XACML 3.0 Core: http://lists.oasis-open.org/archives/xacml/201107/msg00041.html RBAC profile: http://lists.oasis-open.org/archives/xacml/201107/msg00040.html SAML/XACML Profile: http://lists.oasis-open.org/archives/xacml/201107/msg00039.html hal: last call we approved the above docs for public review, needed to do one more ballot, which was done and approved bill: chet is taking next steps to advance the process, however, 15-day pub rev has not yet started - in hands of tc-admin IPC WD-03 DOC uploaded for consideration to elevate to CD then CS http://lists.oasis-open.org/archives/xacml/201108/msg00006.html hal: john? john: based on internal research added a few attributes, exp date, use restrictions, clarifications to things that came up before, erik posted to list, looking for additional input. hal: posted 2 days ago, everyone should look at it: john: non-normative guidance: if patent, include patent#, etc. paul: would like to see more examples: patents, copyrights, trademarks; notifications vs access ctl; what is purpose of profile - would an obligation suffice? john: on subject of patent, and obl could handle it; but we do have patent license agreement, and if exchg xacml policies it would pertain to whatever was involved hal: parallel to trade secrets; even if not access ctl, it is still reasonable; paul: need examples to demo purpose of profile; w/o input on actual usage, no one really knows what's needed or not hal: this is basically a set of symbols that you can use or not use, but not in any particular way rich: are chgs visible in word? john: no, it's a clean copy hal: maybe a diff could be provided if not too difficult or if too extensive. paul: patent, trademark, copyright pretty clearly defined legally. trade secret is not so clear and varies w time; hal: calling it a trade secret is vital, however, specific implications are subject to legal interpretation which is beyond this scope paul: will post a description of what issue is. paul: one more thing; instead of license, maybe something more general that covers all these things in common: ex. 2 or more parties, and there are things that are applicable that could be listed. hal: any other comments? none heard next topic hal: open issues, people not here today. hal: reminder: next call 8/25 is presentation hal: mtg adjourned 1:29 PM EDT. ******************************************************** items below not discussed: Proposed list of XACML 2.0 -> 3.0 differences: actions from last mtg minutes: http://lists.oasis-open.org/archives/xacml/201107/msg00035.html -> david: will be editor: work will be on wiki -> hal: will post prev presentations -> rich: wanted to be able to add page(s) to wiki hal: if anyone wants to contribute, go ahead; Conformance requirements: details of oasis rules posted in last mtg minutes: http://lists.oasis-open.org/archives/xacml/201107/msg00035.html while it appears there is adequate text to meet oasis reqts, there may be questions as to the open-endedness of the statements, being too broad to be practical to verify. Bug in conformance test?: (should be covered by above discussion) http://lists.oasis-open.org/archives/xacml/201107/msg00002.html hal: still need to get 3.0 tests to point where people can determine if they are compatible. III Issues: Issue status: Proposed list of XACML 2.0 -> 3.0 differences: Doron proposed: http://lists.oasis-open.org/archives/xacml/201107/msg00015.html comments from Abbie, David B.: http://lists.oasis-open.org/archives/xacml/201107/msg00016.html http://lists.oasis-open.org/archives/xacml/201107/msg00017.html Attribute predicate Greg Neven indicated that he will try to have an update by the next TC meeting. Items below have had no status change since last mtg: Examples of XACML implementations Ray proposal (pls clarify if context is 2.0/3.0/both?): http://lists.oasis-open.org/archives/xacml/201107/msg00014.html David B. volunteers support: http://lists.oasis-open.org/archives/xacml/201107/msg00018.html xacml-dev: Target Matching question (root PDP Policy issue): http://lists.oasis-open.org/archives/xacml-dev/201107/msg00000.html several follow-up comments from TC and others: http://lists.oasis-open.org/archives/xacml-dev/201107/maillist.html xacml-users: SAML/XACML usage questions (several msgs in this link): http://lists.oasis-open.org/archives/xacml-users/201107/msg00006.html related question on saml/xacml schema usage: http://lists.oasis-open.org/archives/xacml-users/201107/msg00007.html Terminology issue: Need "entity" notion in spec and/or support doc: rich has action (last wk's minutes): http://lists.oasis-open.org/archives/xacml/201107/msg00008.html Old Issues: (Review status for chgs after F2F): F2F - Review minutes for action items, decisions of significance Obligations/Advice combining http://lists.oasis-open.org/archives/xacml/201106/msg00007.html WD-20 Questions/Issues http://lists.oasis-open.org/archives/xacml/201106/msg00011.html XACML PEP (nee PDP REST Interface) http://lists.oasis-open.org/archives/xacml/201106/msg00009.html Indeterminate Policy Target http://lists.oasis-open.org/archives/xacml/201105/msg00114.html XACML Implementers Guide http://lists.oasis-open.org/archives/xacml/201105/msg00113.html Attribute predicate profile for SAML and XACML - ray comment http://lists.oasis-open.org/archives/xacml/201105/msg00088.html XACML Metadata http://lists.oasis-open.org/archives/xacml/201105/msg00004.html Attribute predicate Profile for SAML and XACML http://lists.oasis-open.org/archives/xacml/201104/msg00080.html Break The Glass Profile http://lists.oasis-open.org/archives/xacml/201104/msg00082.html Profile Examples (Hierarchy) http://lists.oasis-open.org/archives/xacml/200910/msg00024.html PIP directive (additional information directives) http://lists.oasis-open.org/archives/xacml/201010/msg00005.html Usage of status:missing-attribute in case of an AttributeSelector http://lists.oasis-open.org/archives/xacml/201104/msg00003.html "Web Friendly" Policy Ids http://lists.oasis-open.org/archives/xacml/201103/msg00046.html Specifying a specific associated Resource in a Policy (Sticky Policies) http://lists.oasis-open.org/archives/xacml/201103/msg00012.html
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]