[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Minutes for 12 July 2012 TC Meeting
Time: 13:00 EDT (GMT-0400)
Tel: 513-241-0892
Access Code: 65998
Minutes for 12 July 2012 TC Meeting:
I Roll Call& Minutes
bill: will drive agenda today in hal's absence
Voting:
Hayes, Crystal The Boeing Company
Hill, Richard The Boeing Company
Levinson, Rich Oracle
Parducci, Bill Individual
Thorpe, Danny Quest Software
Tolbert, John The Boeing Company
Non-Voting:
Brossard, David Axiomatics
Buu-Sao, Jean-Paul Transglobal Secure Collaboration
Participation, Inc. (TSCP)
bill: we have quorum
john: add status ipc,ec
Approve Minutes:
28 June 2012 TC Meeting (updated)
https://lists.oasis-open.org/archives/xacml/201206/msg00049.html
minutes approved no objection
II. Administrivia
Status XACML IPC v1.0 Profile
The TC Admin notified the TC this as of last mtg that the submitted
documents will suffice and the CD is in the work queue for processing.
bill: will go to tc-admin and check status
public review feedback on core: (collected, init proposed resps)
erik: pls review for completeness, etc.
https://lists.oasis-open.org/archives/xacml/201207/msg00001.html
john: can we try to move this fwd at 7/12 mtg?
https://lists.oasis-open.org/archives/xacml/201207/msg00009.html
bill: erik said we should go fwd; would like erik/hal on list
before voting; suggests waiting, we only have 51%;
rich: is tscp part of 3.0 (emails below)
bill: no, we agreed that would be separate issue as will
be identified here, now:
TSCP profile issue:
Jean-Paul: feedback from tscp on core? parameterized policies?
https://lists.oasis-open.org/archives/xacml/201206/msg00039.html
erik: replies: new attr categ prob not reqd; are param policies templates?
https://lists.oasis-open.org/archives/xacml/201206/msg00040.html
Jean-Paul: policy-id AttrId?; more on templates
https://lists.oasis-open.org/archives/xacml/201206/msg00041.html
danny: templates appear to be "data + policy"; concerns mentioned
https://lists.oasis-open.org/archives/xacml/201206/msg00052.html
jean-paul: proposal for wiki page on templates
https://lists.oasis-open.org/archives/xacml/201206/msg00055.html
jean-paul: wiki page:
https://wiki.oasis-open.org/xacml/Policy%20Template%20Profile
danny: comments on wiki page
https://lists.oasis-open.org/archives/xacml/201206/msg00058.html
jean-paul: issues w danny comments:
https://lists.oasis-open.org/archives/xacml/201206/msg00059.html
danny: replies to jean-paul issues:
https://lists.oasis-open.org/archives/xacml/201206/msg00060.html
jean-paul: further discussion:
https://lists.oasis-open.org/archives/xacml/201206/msg00061.html
danny: clarifications:
https://lists.oasis-open.org/archives/xacml/201207/msg00003.html
jean-paul: we have list of concerns that hal expressed; asking group
which kind of process: represent on wiki
https://wiki.oasis-open.org/xacml/Policy%20Template%20Profile
subsequent comments on this issue should go to wiki page
danny: issues he raised on above thread have been resolved
XACML 3.0 Public review 04 - Feedback from TSCP
hal: response to initial feedback: needs clarification on feedback
https://lists.oasis-open.org/archives/xacml/201206/msg00043.html
jean-paul: refs replies to Erik above: clarifications to hal
https://lists.oasis-open.org/archives/xacml/201206/msg00045.html
ray: some issues appear to be covered by policy combining algs:
https://lists.oasis-open.org/archives/xacml/201206/msg00054.html
jean-paul: agrees comb alg on policyset: root addresses some issues:
https://lists.oasis-open.org/archives/xacml/201206/msg00056.html
patent disclosure notification:
crystal: boeing is providing notice in accordance w oasis ipr policy
https://lists.oasis-open.org/archives/xacml/201207/msg00000.html
bill: hal had disc w oasis; oasis introduce form of ip after
xacml created; oasis will investigate any impacts
Req/Rsp intf based on json/http:
david uploaded new version: 4 Jul 2012
https://lists.oasis-open.org/archives/xacml/201207/msg00002.html
danny: comments on spec:
https://lists.oasis-open.org/archives/xacml/201207/msg00006.html
david: uploaded new version: 9 Jul 2012
https://lists.oasis-open.org/archives/xacml/201207/msg00007.html
david: replies to danny's comments ref'd above:
https://lists.oasis-open.org/archives/xacml/201207/msg00008.html
danny: it was a great start, david addressed in 2nd revision;
bill: tc should give it good looking over;
XACML v3 Combining Algorithm uploaded
minutes: ACTION ITEM: Submit for Public Review (Erik)
https://lists.oasis-open.org/archives/xacml/201206/msg00049.html
bill: re-iterate need to review
XACML TC Summary Overview
minutes: TC members encouraged to refine this on list.
https://lists.oasis-open.org/archives/xacml/201206/msg00047.html
bill: our current desc on oasis limited, bill sent out some
suggestions earlier; bill will try to come up w update.
XACML Interop demo opportunities
John: this was setup to effectively recreate the demo at RSA.
interested parties should post to tc list
https://lists.oasis-open.org/archives/xacml/201206/msg00034.html
bill: they wanted resp by jun 29
john: is working back-channels w nextlabs, axiomatics
john: interop dates would be oct 2-4 in london, plus
2nd interop in phoenix in nov has a aerospace conference;
important use case for aero: outsource az to xacml pdp;
III. Issues
REST Profile API/PolicyId/General Plan
hal: reraises earlier issues as unaddressed; proposes solns:
https://lists.oasis-open.org/archives/xacml/201206/msg00044.html
danny: suggests one request per connection as implicit soln
as opposed to hal's proposed explicit soln
https://lists.oasis-open.org/archives/xacml/201206/msg00048.html
hal: agrees implicit can work:
https://lists.oasis-open.org/archives/xacml/201206/msg00050.html
danny: concurs; sounds like concrete http characteristics are
seeping into the appl layer as opposed to well-defined appl reqts
driving the reqd http config (rich)
https://lists.oasis-open.org/archives/xacml/201206/msg00051.html
bill: comments heard, will follow up next mtg
rich: added concern about mixing of http and higher layer; mentioned
that david separated it well in json profile doc
Proposed PAP Architecture
hal: several issues w proposed conceptualization: appears there
may be several loose ends
https://lists.oasis-open.org/archives/xacml/201206/msg00046.html
jean-paul: added wiki page w explicit reqts:
https://lists.oasis-open.org/archives/xacml/201206/msg00057.html
wiki page:
https://wiki.oasis-open.org/xacml/Policy%20Administration%20Point%20Architecture
bill: tc should look at above wiki page and comment
JSON Mapping
david: XACML& JSON - progress and ideas
should structures between attr and attrval remain same?, etc.
https://lists.oasis-open.org/archives/xacml/201206/msg00038.html
danny: sounds ok, but proceed w caution: examples provided
https://lists.oasis-open.org/archives/xacml/201206/msg00053.html
david: replies to danny - seem to be in synch:
https://lists.oasis-open.org/archives/xacml/201206/msg00062.html
david: few shortcuts in profile; datatypes etc. semantics should
be kept;
danny: would like to see xpath-version flattened in req/rsp;
bill: maybe erik has a comment as to why it is there
rich: possibly artifact of merging policy/req/rsp in 3.0 or
because of policy-id's because not related directly
to Attributes elements.
Also: json spec makes sense and looks good.
Metadata Profile inquiry
minutes: Remon voiced interest in picking up this work in the future.
https://lists.oasis-open.org/archives/xacml/201206/msg00011.html
no changes reported on metadata profile item as of yet
Other business:
bill: no other bus to discuss:
mtg adjourned at 1:45 pm edt,
next mtg in 2 wks as usual (july 26, 2012; 1:00 EDT)
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]