[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: OASIS Cloud Authorization TC Meeting Minutes - Feb 03, 2014
================= AnilSaldhana_RedHat: Agenda 1. Roll Call, Agenda Review and Minute Taker Nomination. 2. Approval of Meeting Minutes9 Dec 2013: https://lists.oasis-open.org/archives/cloudauthz/201312/msg00001.html
3. Use Case Document Discussion 4. Context Driven Entitlements (CDE) v1.0a discussion https://www.oasis-open.org/committees/document.php?document_id=52098&wg_abbrev=cloudauthz 5. UMA Authorization Concepts PDF Discussion (http://kantarainitiative.org/confluence/download/attachments/17760302/Authz%20concepts.pdf?api=v2) 6. Other Business 7. Adjourn AnilSaldhana_RedHat: ====================== anonymous morphed into Shaheen anonymous morphed into Andrew Innes AnilSaldhana_RedHat: SCIM: http://www.simplecloud.info/ AnilSaldhana_RedHat: Roll Call AnilSaldhana_RedHat: Company Name ascending Role JPMorgan Chase Bank, N.A. Shaheen Abdul Jabbar Secretary NEC Corporation Felix Gomez Marmol Member Citrix Systems Andrew Innes Member Bank of America Radu Marian Chair Red Hat Anil Saldhana ChairAnilSaldhana_RedHat: Quorum: Voting Members: 3 of 5 (60%) (used for quorum calculation) Achieved
AnilSaldhana_RedHat: 2. Approval of meeting minutes. Move: Shaheen Second: Anil
AnilSaldhana_RedHat: 9 Dec 2013 meeting minutes are approved. AnilSaldhana_RedHat: 3. Use Case Document DiscussionAnilSaldhana_RedHat: last draft: https://www.oasis-open.org/committees/document.php?document_id=51551&wg_abbrev=cloudauthz
AnilSaldhana_RedHat: was made by Chris Kaeppler AnilSaldhana_RedHat: need to review the changes madeAnilSaldhana_RedHat: the next step would be to send it to public review once the document is cleaned and ready
AnilSaldhana_RedHat: 4. Context Driven Entitlements (CDE) v1.0a discussionAnilSaldhana_RedHat: https://www.oasis-open.org/committees/document.php?document_id=52098&wg_abbrev=cloudauthz
AnilSaldhana_RedHat: section 1 is introduction. Trying to maintain tradition of earlier specifications such as XACML and SAML in terms of spec structure, language etc.
AnilSaldhana_RedHat: section 2 is glossary (non-normative).AnilSaldhana_RedHat: Radu: I do suggest looking at definitions from Gartner.
AnilSaldhana_RedHat: Anil: that is a good suggestion, we need authoritative documents to pick definitions.
AnilSaldhana_RedHat: Anil: we can always split the glossary into normative and non-normative
AnilSaldhana_RedHat: Anil: section 3 is backgroundAnilSaldhana_RedHat: Anil: entitlement model suited to cloud env where resource constraints exists. Env such as mobile devices - it is not good to make 100 authorization checks but 1 entitlement collection call to save bandwidth and resources. Same for cloud env
AnilSaldhana_RedHat: Anil: the diagram should change Family to Context. AnilSaldhana_RedHat: Radu: context or something more specific.Shaheen: Anil: diagram is an example of a file resource with entitlement at directory level or file level
Shaheen: Andrew: not sure of the context; needs to be more specificShaheen: Anil: in this example context is a combination of user, role, and group
Shaheen: Andrew: is the context predefined? Shaheen: Anil: noShaheen: Shaheen: in Trust-El TC, context is more of where the user is coming, what device is being used, how the user is approaching
Shaheen: Radu: session context Shaheen: Shaheen: probable we need to clearly define context Shaheen: Anil: here it more of the context of the user Shaheen: Radu: business context? Shaheen: Anil: lets avoid the use of the word "business" Shaheen: Anil: the idea is to make one single call to make the decision Shaheen: Radu: how about task based or permission based?Shaheen: Anil: existing example cover both, however it may not specific.. right now it is open ended
Shaheen: Felix: may be Task with sub task: Read|not on a date| no export Shaheen: UMA Authorization Concepts PDF Discussion Shaheen: we will postpone the discussion in next meeting Radu: Maybe invite Eve Maler to give a presentation? Anil: Very good idea ========================================================
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]