[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Minutes for 23 June 2016 TC Meeting
Time: 4:30 PM EDT (-0400 GMT)
Tel: 1-712-775-7031
Access Code: 620-103-760
Minutes for 23 June 2016 TC Meeting
I. Roll Call & Minutes
Roll Call
Voting Members
Veterans Health Admin Mohammad Jafari
ViewDS Identity Solns Steven Legg
Oracle Rich Levinson
Oracle Hal Lockhart
Individual Martin Smith
Members
The Boeing Company Richard Hill
EMC Remon Sinnema
Quorum rule: 51% of voting members
Achieved quorum: yes
Approve Minutes 9 Jun 2016
https://lists.oasis-open.org/archives/xacml/201606/msg00007.html
hal: objections to unan consent? none heard
minutes approved
II. Administrivia
Recap of Document Status
https://lists.oasis-open.org/archives/xacml/201605/msg00020.html
no changes: some still need statements of use
Errata editor
https://lists.oasis-open.org/archives/xacml/201606/msg00001.html
status update:
Errata Starter docs
https://lists.oasis-open.org/archives/xacml/201606/msg00003.html
richard: looking at issues on wiki, etc. so each can be tracked leading
up to submission.
hal: there are xacml-users items
input on IDESG nomination:
request to review doc submit form (attached to email) from martin:
https://lists.oasis-open.org/archives/xacml/201606/msg00008.html
hal: put complete list in email; maybe core + others
hl7 didn't exactly endorse xacml but said it was a way to enforce
some law enforcement appl in Conn. but not a broadbased federation
martin: outgrowth of global justice activity;
form says: "trust frameworks adopted" exact defn is not included
in order for std to be approved it has to pass thru process but
doesn't say anybody "has to use it".
hal: mohammad can offline discuss w martin as to level of support that
health industry has given to xacml stds.
xspa is example; maybe others
mohammad: access version 2 is on committee web site which has more specifics
martin: -2 is current, -3 is in draft github: google 800-63-3;
take comments
idesg looks like not going to adopt -2 because privacy group has issue
w lack of pseudonymity in interaction w federal web sites.
-3 may support pseudonymity
hal: xacml has tools that support multi-factor, etc. policy can evaluate
different types of authn events, and ability to report on denials w
reasons why.
martin: has privacy capabilities, as opposed to features.
hal: only privacy "feature" is ability to capture a "privacy" attribute.
martin: once I give info to soc sec admin etc. how to prevent use of info
by others.
mohammad: not usual to have fine grain rules for health records; have blanket
rules, plus obligations to redact other aspects of the records.
hal: probably have all input we are getting on these docs; martin can proceed
to put together proposed submission
Early bird for Borderless Cyber Europe ends next week
https://lists.oasis-open.org/archives/xacml/201606/msg00006.html
borderless cyber europe
III. Issues
No new issues posted.
next call: july 7
mtg adjourned 5:00 pm
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]