Subject: Minutes with attendance for 25-Oct SSTC con-call
Minutes for 25-Oct SSTC con-call|
1. Roll call
Attendance of Voting Members:
Abbie Barbir Nortel
Sharon Boeyen Entrust
Carolina Canales‑Valenzuela Ericsson
Scott Cantor Internet2
Peter Davis NeuStar
Heather Hinton IBM
Frederick Hirsch Nokia
Jim Lien RSA Security
Hal Lockhart BEA Systems, Inc
Jahan Moreh Sigaba
Bob Morgan Internet2
Cameron Morris Novell
Vamsi Motukuru Oracle
Anthony Nadalin IBM
Ashish Patel France Telecom
Rob Philpott RSA Security
Gilbert Pilz BEA Systems, Inc.
Nick Ragouzis Enosis Group
Eric Tiffany IEEE Industry Standards
Greg Whitehead Trustgenix
Thomas Wisniewski Entrust
Emily Xu Sun Microsystems
Attendance of Non‑Voting Members
Steve Anderson BMC Software
Bhavna Bhatnagar Sun Microsystems
Guy Denton IBM
Dana Kaufman Forum Systems
Cameron Morris to take minutes
2. Approve minutes of 11 Oct con call:
a. RE: [security services] Minutes for SSTC Conference
Call, October 11
3. Errata Review (Jahan):
a. Current rev is draft 17 posted prior to 11 Oct meeting.
New version 18 posted past night, 4 items remains open
32 – Rob
36 – Conflict in schema - We discussed this last meeting.
Should we update text to match schema?
Proposed Jahan Moreh:
No schema change. On line 1359 strike 'namespace required', and remove sentence starting on line 1361 to 1363
Emily Xu 2nd
b. Status of updates from 11 Oct meeting?
AI's: 231, 236
Nothing new on these.
Clarification on Action element
Jahan to capture this as an errata item.
3. Scott: Strawman proposal on third party AuthnRequest
5. Package for upcoming CD vote:
a. Rob: Tech Overview status Still working on updates.
Not ready for review.
b. Eve: XPath CD draft?
6. Eve: FAQ update (see AI 235):
a. Could use advise on changing the SAML FAQ
a. Comment list: Public Comment
Any issues come from these comments? No
b. OASIS Press Inquiry: TC response to Gartner's March'05
An editor from Computer Weekly, a UK IT publication, is writing an
article on new approaches to network security. He asks if we can provide
an official TC response to Gartner's March report, which says "much more
must be done before SAML can be considered anything more than just
another security token format and yet another set of protocols... very
few real world production applications rely on it". He also asks if
there's any synergy between SAML and the Jericho Forum's work.
10. AI Review: See attached list
11. Other business?
#0237: Interop Test question: Metadata 2.0 EndpointType question Owner:
11 Oct: Option "A" in the list email is the preferred interpretation.
Eric to propose text
Eric was not on the call