[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] Minutes (SS TC Concall, April 10, 2007)
With attendance. -- Steve Anderson BMC Software -----Original Message----- From: Greg Whitehead [mailto:greg.whitehead@hp.com] Sent: Tuesday, April 10, 2007 1:04 PM To: Hal Lockhart; security-services@lists.oasis-open.org Subject: [security-services] Minutes (SS TC Concall, April 10, 2007) [roll call] Attendance of Voting Members Steve Anderson BMC Software Abbie Barbir Nortel Conor P. Cahill Intel Brian Campbell Ping Identity Scott Cantor Internet2 Heather Hinton IBM Jeff Hodges NeuStar Hal Lockhart BEA Systems, Inc Paul Madsen NTT Corporation Prateek Mishra Oracle Bob Morgan Internet2 Anthony Nadalin IBM Ashish Patel France Telecom Rob Philpott EMC Corporation Tom Scavo National Center for Supercomputing Applications David Staggs Veteran's Health Admin Eric Tiffany IEEE Industry Standards Greg Whitehead Hewlett-Packard Company Emily Xu Sun Microsystems Membership Status Changes Michael Merrill EMC Corporation - Membership granted 2/20/2007 Andrew Nash Sonoa Systems - Membership granted 2/20/2007 Ignacio Alamillo CATCert - Membership granted 3/9/2007 John Harby Individual - Removed from TC 3/27/2007 19/25 present. Quorum. Notes below. On 4/9/07 10:24 PM, "Hal Lockhart" <hlockhar@bea.com> wrote: > Dial in info: +1 865 673 6950; > Access code: 270-9441# > > Greg Whitehead to take minutes. > > 1. Approve minutes with updated attendance > http://www.oasis-open.org/archives/security-services/200703/msg00064.htm > l > > with correction: > > http://www.oasis-open.org/archives/security-services/200704/msg00003.htm > l > > ------------------------------------------------------------------------ > --- > > Correction to Minutes of March 13th: > > ---- >> (c) Technical Overview v13 >> > http://www.oasis-open.org/archives/security-services/200702/msg00052.htm > l > >> We had planned on a CD and public review vote today. > > MOVED by Abbie, SECONDED by RLBob to move IdP Discovery doc to CD > status. APPROVED by unanimous consent. > > MOVED by JeffH, SECONDED by Abbie to move the IdP Discovery CD to > public review. APPROVED by unanimous consent. > > ---- > > It appears one of the motions should refer to the Tech Overview, not IdP > discovery. MOTION: Hal moves to approve minutes with correction. APPROVED by unanimous consent Theory proposed that Tech Overview should have been included in above votes. Unanimous consent to update minutes. > > 2. Administrative > > 2a. Nominations for Co-chair Brain Campbell nominated. No other nominations. Nominations closed. Unanimous consent to elect Brain as co-chair. > > 2b. Lighting Rounds at OASIS Symposium OASIS Symposium is next week in San Diego. Hal offers to represent SSTC. No objections. > > 2c. "Week of Security Webinars" OASIS organizing a week of webinars for security-related TCs. Live recordings in May. Hal and Eve have volunteered. Other volunteers welcome. > > 2d. Attestations Required for New Specs to go to OASIS Specification Should be "OASIS Standards" Need attestations from three organizations for each specification. See web page under "current work" for specs that have progressed to CD. Authors: Please make sure your specs are listed. AI: Paul to send out list > > 3. Vote for Committee Specification - no comments received in public > review > > http://lists.oasis-open.org/archives/members/200701/msg00006.html > > 1. Shared Credentials > 1.1 SAML 2.0 Protocol Extension for Requested Authentication Context > 1.1.1 Associated Schema > 1.2 SAML 2.0 Shared Credentials Authentication Context Extension and > Related Classes > 1.2.1 Associated Schema > 2. Text-based Challenge Response > 2.1 SAML 2.0 Text-Based Challenge/Response Token Authentication Context > Class > 2.2 Associated Schema > 3. X.500 Attribute Profile > 3.1 SAML V2.0 X.500/LDAP Attribute Profile > > The public review ended 7 March 2007. There are in fact comments on (3), so it needs to be updated and go through another public review. Documents (1) and (2) are ready for CS vote. Scott points out that there are other documents. Reviewing web site "Additional Profiles, Bindings, and Extensions Being Produced by the SSTC"... Ready for CS vote: 4. Metadata Profile for SAML V1.x 5. SAML Metadata Extension for Query Requesters 6. SAML Protocol Extension for Third-Party Requests Status unknown: 7. SAML XPath Attribute Profile 8. SAMLv2.0 HTTP POST SimpleSign Binding MOTION: Scott makes motion to start an electronic ballot to approve 1-2 and 4-6 for CS. Paul seconds. APPROVED by unanimous consent. > > 4. CD Vote > > Deployment Profile for X.509 > http://www.oasis-open.org/archives/security-services/200703/msg00052.htm > l SAML V2.0 Deployment Profiles for X.509 Subjects (Draft-02). No comments received. MOTION: Tom moves to vote to CD. Greg seconds. APPROVED by unanimous consent. MOTION: Tom moves to public review (60 day). Brian seconds. APPROVED by unanimous consent. > > 5. New Docs > > 3. X.500 Attribute Profile > 3.1 SAML V2.0 X.500/LDAP Attribute Profile > > http://www.oasis-open.org/archives/security-services/200703/msg00070.htm > l Scott addressed Mark's comments. Details in http://www.oasis-open.org/archives/security-services/200703/msg00071.htm l Please discuss on list. AI: Bob will research language tags. > > 6. Active Threads > > (a) Attribute Sharing Profile > > Agreement on text awaiting Draft 13 > > (b) WSDL for SAML 2.0 SOAP services? > http://www.oasis-open.org/archives/security-services/200704/msg00002.htm > l AI: Greg to take first cut as WSDL. Hal to have it reviewed. > > 7. AIs > > #0284: Web site update > Owner: Paul Madsen > Status: Open > Assigned: 2007-03-27 > Due: --- CLOSED Scott would like a better system. Paul pursuing xml.org page for SSTC. Hal/Scott would like a wiki for SSTC. AI: Hal to look into a wiki. Scott asks about status of simple sign document. He thinks it's ready for review. AI. Hal will check on status of simple sign. AI. Scott will get CD of idp discovery uploaded by end of week so that all docs can be sent out together. > > #0283: Change final arrows to solid in Tech Overview diagrams > throughout. > Owner: Paul Madsen > Status: Open > Assigned: 2007-03-27 > Due: --- OPEN > > #0282: AuthnContextDecl and AuthnContextDeclRef Confusion > Owner: Eric Tiffany > Status: Open > Assigned: 2007-03-27 > Due: --- OPEN > > #0281: Prepare Tech Overview for CD publication > Owner: Paul Madsen > Status: Open > Assigned: 2007-03-27 > Due: --- OPEN > > #0280: Chairs to Advance drafts to public review > Owner: > Status: Open > Assigned: 2007-03-27 > Due: --- CLOSED AI: Hal to create new more specific AIs. > > #0279: Investigate relationship between ID-WSF and SOAP SSO profile > Owner: Greg Whitehead > Status: Open > Assigned: 2007-03-12 > Due: --- On further investigation, ID-WSF SSO service is a trivial profile of SAML SOAP binding. Nothing gained by re-using it for SAML SOAP SSO profile. CLOSED Scott/Jeff volunteer to work on SAML SOAP SSO profile. > > > 8. Other business None. > > 9. Adjourn Adjourned. > > Next Meeting April 24, 2007 >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]