[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [cloudauthz] Meeting Minutes from March 4, 2013 + IMI Source Material
The example about an age claim involved a minor who is served a drink by using a forged driving license. The relying party in this case is the bartender and the establishment and the issue is whether they can demonstrate that they were adequately diligent as a defense against having served a minor. Another example would be attestations that an on-line identification claimed to be that of an adult (even if created by a parent) leading to the minor being exposed to prohibited material, contact with a malicious adult or advertisements that are prohibited from targeting children. I did take a look at the IMI TC. There has been no TC activity on their mailing list since December, 2010. The last use of the public comments list was June 2010. The latest committee drafts are from September 2010 (on IMI-SAML profiles). The Identity 1.0 Specification (July 2009) is not listed on the TC page (which does not list any completed work). This and the Errata are all available here: <http://docs.oasis-open.org/imi/identity/v1.0/os/>. There are Committee Specifications (August 2010) on IMI-SAML Profiles at < http://docs.oasis-open.org/imi/identity/cs/>. -----Original Message----- From: cloudauthz@lists.oasis-open.org [mailto:cloudauthz@lists.oasis-open.org] On Behalf Of Anil Saldhana Sent: Monday, March 04, 2013 11:49 To: cloudauthz@lists.oasis-open.org Subject: Re: [cloudauthz] Meeting Minutes from March 4, 2013 Chat Transcript (also has attendance) ================== abbie barbir: Agenda abbie barbir: 1. Roll Call, Agenda Review and Minute Taker Nomination. 2. Approval of minutes - 2 Feb 2013 https://lists.oasis-open.org/archives/cloudauthz/201302/msg00013.html 3. Use Case Submissions Discussions - Mike Poulin (https://www.oasis-open.org/committees/document.php?document_id=48320&wg_abbrev=cloudauthz) - Anil Saldhana (https://lists.oasis-open.org/archives/cloudauthz/201303/msg00000.html) - Radu Marian (https://lists.oasis-open.org/archives/cloudauthz/201303/msg00003/CloudAuthZ.BAC.UseCases.doc) - Darran Rolls (https://lists.oasis-open.org/archives/cloudauthz/201303/msg00001.html) 4. CloudAuthZ Face To Face (3-4 April 2013 in Santa Clara) 5. Other Discussions 6. Adjourn abbie barbir: CONFERENCE CODE: 6703828003 US/Canada : 800-451-8679 anonymous morphed into Darran Rolls, SailPoint anonymous morphed into Mohammad anonymous morphed into Chris Kappler, PwC anonymous1 morphed into Dale Moberg AnilSaldhana(RedHat): can you please change your name to include company? AnilSaldhana(RedHat): who is orcmid? orcmid: orcmid = Dennis Hamilton anonymous morphed into Gines Dolera (NEC) Dale Moberg morphed into Dale Moberg, Axway Danny Thorpe (Dell): the cloudauthz singalong... Darran Rolls, SailPoint: please, no orcmid: @abbie, are you not on the call? abbie barbir: calling orcmid: Darran, are you dialed in? Darran Rolls, SailPoint: My line dropped Darran Rolls, SailPoint: Dialing back in anonymous morphed into Radu Marian (Bank of America) Darran Rolls, SailPoint: Correct link for my UC posting is https://lists.oasis-open.org/archives/cloudauthz/201303/msg00005.html AnilSaldhana(RedHat): https://wiki.oasis-open.org/id-cloud/UseCaseTemplate AnilSaldhana(RedHat): Discussion about Business Use Case Template from Mike Poulin AnilSaldhana(RedHat): Anil: https://lists.oasis-open.org/archives/cloudauthz/201303/msg00000.html AnilSaldhana(RedHat): https://lists.oasis-open.org/archives/cloudauthz/201303/msg00007.html Radu's Submission AnilSaldhana(RedHat): Updated Radu's link: https://lists.oasis-open.org/archives/cloudauthz/201303/msg00011.html AnilSaldhana(RedHat): https://lists.oasis-open.org/archives/cloudauthz/201303/msg00001.html AnilSaldhana(RedHat): Link to Darran Rolls submissions: https://lists.oasis-open.org/archives/cloudauthz/201303/msg00001.html) AnilSaldhana(RedHat): https://lists.oasis-open.org/archives/cloudauthz/201303/msg00001.html AnilSaldhana(RedHat): ================= AnilSaldhana(RedHat): Company Name ascending Role JPMorgan Chase Bank, N.A. Shaheen Abdul Jabbar Secretary Bank of America Abbie Barbir Secretary Novell Lloyd Burch Member NEC Corporation Gines Dolera Tormo Member Individual Dennis Hamilton Member Veterans Health Administration Mohammad Jafari Member PricewaterhouseCoopers LLP: Chris Kappler Member Axway Software Dale Moberg Member SailPoint Technologies Darran Rolls Member Red Hat Anil Saldhana Chair Quest Software Danny Thorpe Member ===================== On 03/04/2013 01:00 PM, Abdul Jabbar, Shaheen N wrote: 1. Roll Call by Anil Quorum Achieved. (3 out of 4 voting members - 75%) 2. Approval of Minutes a. Lloyd made the motion; Mohammed approved 3. CloudAuthZ F2F at Santa Clara a. On April 3rd and 4th. b. Anil thinks it’s good to have F2F early in the process. OASIS has a room reserved room for us. Radu has expressed his desire to be there. Anil will be there. 4. Use Case Submissions Discussions a. Mike Poulin i. Link provided in the chat room contains a template capture Use Cases. ii. It is more business driven. iii. TC has no issues in using IF-ELSE conditions b. Anil Saldhana i. Anil went through the use case ii. Entitlements can be considered permissions c. Radu Marian i. Radu went through two use cases he submitted ii. Use Case A – Entitlements Catalog 1. The catalog would have relationships, roles, enabling the services to be implemented. If there is no entitlement with a relationship, it would be hard to build a catalogue. The catalog should be enormously rich with symantec data. iii. Use case B – Separation of Duties. 1. The one submitted is a simple use case. If we need a complex one, we can create a new one. 2. XACML may be too low level as an entitlement model. 3. The use case does not contain story [Shaheen]. Radu will have the contents for the story soon. d. Darran Rolls i. Is Age an attribute for the policy? Is it created manually in the policy? [Radu] It could happen both ways. [Darran] ii. Radu is not clear of the scope. iii. Driving with a forged driver’s license by a minor is a good example for the age use case. [Denis] iv. Additional attributes to claims. Radu will investigate on IMI resource – ACTION ITEM 5. Documentation of Use Case a. Who is going to convert use cases into Wiki? [Darran] It will be done on OASIS Wiki later during the process. [Anil] Shaheen This communication is for informational purposes only. It is not intended as an offer or solicitation for the purchase or sale of any financial instrument or as an official confirmation of any transaction. All market prices, data and other information are not warranted as to completeness or accuracy and are subject to change without notice. Any comments or statements made herein do not necessarily reflect those of JPMorgan Chase & Co., its subsidiaries and affiliates. This transmission may contain information that is privileged, confidential, legally privileged, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. Although this transmission and any attachments are believed to be free of any virus or other defect that might affect any computer system into which it is received and opened, it is the responsibility of the recipient to ensure that it is virus free and no responsibility is accepted by JPMorgan Chase & Co., its subsidiaries and affiliates, as applicable, for any loss or damage arising in any way from its use. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you. Please refer to http://www.jpmorgan.com/pages/disclosures for disclosures relating to European legal entities.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]