[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] OASIS SSTC conf call minutes, 15 Aug 2006
Hi Bob, Thanks for forwarding the minutes. Just a small correction in the shared credential related section. I Ashish Patel seconded Paul Madsen's proposal of moving shared credential related documents to CD status NOT Ashish Shah. Looks like a case of identity mismatch and thanks in advance for reflecting the correct last name :) Best, Ashish Patel R&D Division, San Francisco Senior Software Architect tél: 650-875-1510 fax: 650-875-1505 ashish.patel@orange-ft.com Please note my new email id ___________________________________________ Confidential Document - If you receive this mail in error, please discard and destroy immediately. Thanks. > -----Original Message----- > From: RL 'Bob' Morgan [mailto:rlmorgan@washington.edu] > Sent: Thursday, August 17, 2006 3:42 PM > To: OASIS Security Services TC > Subject: [security-services] OASIS SSTC conf call minutes, 15 Aug 2006 > > > OASIS SSTC conference call minutes, 2006-08-15 > scribe: RL "Bob" Morgan > > Summary: > > * vote to conduct IPR Transition Approval Ballot with IPR mode of > RF on Limited Terms > > * PEs 52, 55, 58, and 59 accepted and closed > > * all are asked to review new Technical Overview doc > > * Shared Credential doc voted to CD status > > * enthusiasm sought for working on GUIDE SSO scenarios as TC work > > > Detailed Minutes > > 1. Roll Call & Agenda Review, Appoint Secretary > > 2. Approve minutes from July 18 con-call > > Note: there was no meeting August 1 due to OASIS mail server problems. > > http://www.oasis- > open.org/apps/org/workgroup/security/email/archives/200 > 607/msg00048.html > > with one further correction: > > http://www.oasis- > open.org/apps/org/workgroup/security/email/archives/200 > 607/msg00050.html > > Approved with no further comments. > > 3. IPR Transition > > The chairs recommend that the TC request the TC Admin conduct a > Transition Approval Ballot with an IPR Mode of RF on Limited Terms. > > Hal: First step was last year everyone agreed to abide by policy when > signing up for OASIS membership, that's done. > > Frederick moves as above, Eve seconds. > > Hal: Vote is done by org reps, one vote per org, only those orgs which > have members participating in this TC. Vote must be unanimous to pass, at > least 50% must participate. > > Abbie: would like to see vote using RF on RAND terms, propose to amend > motion thusly. > No one seconds, amendment fails. > > Heather: can multiple ballots be taken? > Hal: yes > > Steve: do companies with current IPR declarations have to do something? > Hal: no > Scott: not retroactive, is it? ie SAML 2.0 isn't covered, it's already > done > Hal: that's right, only applies to new work > > Hal: any objections? > Abbie: yes > roll call done: 15 yes, 3 abstain, 1 no, motion carries > > 4. Errata > > Eve: her approach is to take any closed errata changes and incorporate > them into her redline version > > Hal: OASIS is about to publish errata process that is quite similar to > what SSTC has been doing already > > a. sstc-saml-errata-2.0-draft-33.pdf > > http://www.oasis- > open.org/apps/org/workgroup/security/download.php/19460 > /sstc-saml-errata-2.0-draft-33.pdf > > review open errata items > > PE52: > Scott: point is that meaning of validity window of assertion-as-a-whole > remains undefined, point of adding subject-confirmation validity window is > to add something clear in the context of the SSO profile > Rob: OK, but "delivery" is confusing, since it's a processing constraint > on the RP, not on the deliverer > Scott: concern about too many words being more confusing > Hal: maybe say it concisely, then a note explaining further > Greg: more about "acceptance" than "delivery", right? > Scott: propose this change: > > "... a NotOnOrAfter attribute that limits the window during which the > assertion can be confirmed by the relying party" > > no objections, PE52 closed > > PE55: > Scott: waiting for confirmation from implementors that proposed changes > were consistent with previous decisions on behavior, but no comments > main change is making clear that nameidmgt just applies to identifiers, > not to "principal" in the abstract as thing with many ids > Hal: accept as proposed? no objections > PE55 accepted, closed > > PE58: > accepted, closed > > PE59: > accepted, closed > > b. Errata diffs > > http://www.oasis- > open.org/apps/org/workgroup/security/download.php/19708 > /sstc-saml-profiles-errata-2.0-wd-02-diff.pdf > > http://www.oasis- > open.org/apps/org/workgroup/security/download.php/19697 > /sstc-saml-metadata-errata-2.0-wd-01-diff.pdf > > http://www.oasis- > open.org/apps/org/workgroup/security/download.php/19640 > /sstc-saml-conformance-errata-2.0-wd-01-diff.pdf > > http://www.oasis- > open.org/apps/org/workgroup/security/download.php/19630 > /sstc-saml-bindings-errata-2.0-wd-01-diff.pdf > > http://www.oasis- > open.org/apps/org/workgroup/security/download.php/19628 > /sstc-saml-core-errata-2.0-wd-01-diff.pdf > > Eve: Kept text same except for errata and page footers and such. Propose > "errata contributor list" to acknowledge new people. > Hal: why not just add to regular contrib list > Eve: rather keep orig doc clean > Rob: agree > Eve: with affiliations as asserted by contributors > Hal: in new formal errata process the normative doc would be like current > errata doc, not the redline version > Eve: please give context in errata > > Discussion > > http://www.oasis- > open.org/apps/org/workgroup/security/email/archives/200 > 608/msg00043.html > > > > 5. Documents Published > > a. Update to Technical Overview published > > http://www.oasis- > open.org/apps/org/workgroup/security/email/archives/200 > 607/msg00058.html > > Eve: pared down to profiles/bindings actually in use, new figures, etc > please review, everyone > > Rob: didn't touch "attribute-based federation" section since finds it > confusing, could use some help > Scott/Prateek: will do > also gap in nameid-management protocol coverage, problem? > Eve: would like to see wiki-style presentation of material > Hal: but still need to email the doc > Scott: could make overview doc small if supplemented by online wiki eg > Rob: so more nameidmgt material? > Scott: not with sequence diagram > Hal: schedule discussion of open items ("yellow text") for next conf call > > > b. New Input: SAML Text Challenge Response Token Authentication Context > Class > > http://www.oasis- > open.org/apps/org/workgroup/security/download.php/19455 > /draft-saml-text-based-challenge-response-authn-context-class-01.pdf > > Tom W: defines text-based C/R, not covered by current stuff > > c. SAML Web page update > > > 6. New Profile drafts (post public review) > > a. Metadata > > SAML 1.x metadata profile > SAML metadata ext for query req > SAML protocol ext for third-party req > > http://www.oasis- > open.org/apps/org/workgroup/security/email/archives/200 > 607/msg00073.html > > b. Shared Credentials > > http://www.oasis- > open.org/apps/org/workgroup/security/email/archives/200 > 608/msg00013.html > > Vote for CD status. > > Paul Madsen moves for CD status. Ashish Shah seconds. No objections, > passed. > > Prateek: what's status of X.509 attribute profile? > > 7. Active Threads > > a. Potential errata in SSO Profile > > http://www.oasis- > open.org/apps/org/workgroup/security/email/archives/200 > 608/msg00018.html > > b. Additional SSO Scenarios from GUIDE project > > http://www.oasis- > open.org/apps/org/workgroup/security/email/archives/200 > 608/msg00050.html > > Hal: seems like potentially useful TC work, seeking others > > 8. Open AIs > > #0261: Chairs to contact GUIDE for follow-up > Owner: > Status: Open > Assigned: 2006-07-18 > Due: --- > > #0262: Creation of the "new" LDAP/X.500 profile > Owner: Scott Cantor > Status: Open > Assigned: 2006-07-18 > Due: --- > > remains open > > #0263: NameID and the use of SPProvidedID > Owner: Jahan Moreh > Status: Open > Assigned: 2006-07-18 > Due: --- > > Scott will check with Jahan > > #0238: Plan for red-line versions of SAML 2.0 > Owner: Eve Maler > Status: Open > Assigned: 2005-11-08 > Due: --- > > closed > > #0240: Status of SAML 2.0 submission to ITU T > Owner: Abbie Barbir > Status: Open > Assigned: 2005-11-08 > Due: --- > > 9. Other business > > Scott: concern about long public review time > Hal: only first review is long, others can be 15 days > > 10. Adjourn > > > --- > > > Attendance of Voting Members > > Steve Anderson BMC Software > Abbie Barbir Nortel > Bhavna Bhatnagar Sun Microsystems > Brian Campbell Ping Identity > Scott Cantor Internet2 > Heather Hinton IBM > Frederick Hirsch Nokia > John Hughes PA Consulting > Hal Lockhart BEA Systems, Inc > Paul Madsen NTT Corporation > Eve Maler Sun Microsystems > Prateek Mishra Oracle > Bob Morgan Internet2 > Ashish Patel France Telecom > Rob Philpott RSA Security > David Staggs Veteran's Health Admin > Eric Tiffany IEEE Industry Standards > Greg Whitehead Hewlett-Packard Company > Thomas Wisniewski Entrust > Emily Xu Sun Microsystems > > > Attendance of Non-Voting Members > > Ari Kermaier Oracle > Tom Scavo National Center for Supercomputing Applications > > > Membership Status Changes > > Darren Platt Ping Identity - Withdrew from TC 7/21/2006 > Andrew Sliwkowski RSA Security - Granted membership 7/21/2006 > John Harby Individual - Granted membership 7/21/2006 > Prasanta Behera Individual - Requested Observer status 8/8/2006 > Ari Kermaier Oracle - Granted voting status after 8/15//2006 call > Tom Scavo National Center for Supercomputing Applications - Granted > voting status after 8/15//2006 call > Sharon Boeyen Entrust - Lost voting status after 8/15/2006 call > Carolina Canales-Valenzuela Ericsson - Lost voting status after > 8/15/2006 call > Guy Denton IBM - Lost voting status after 8/15/2006 call
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]