OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [security-services] Draft Minutes for SSTC Call (Tue 3 April 2012)

On 04/03/2012 04:26 PM, Hal Lockhart wrote:
1. Roll Call&  Agenda Review.
Company     Name ascending     Role

Open Identity Exchange     John Bradley     Voting Member
Internet2     Scott Cantor     Secretary
Individual     David Chadwick     Member
M.I.T.     Thomas Hardjono     Chair
Nokia Corporation     Frederick Hirsch     Voting Member
Internet2     Nathan Klingenstein     Chair
Internet2     Chad La Joie     Voting Member
Oracle     Hal Lockhart     Secretary
Red Hat     Anil Saldhana     Secretary
Jericho Systems     David Staggs     Member

Quorum: Achieved 8 out of 10 voting members (80%)
Status Changes: None

2. Need a volunteer to take minutes.
3. Approval of minutes from previous meeting(s):

    - Minutes from SSTC Call on 20 March 2012:


Approved unanimously
4. AIs&  progress update on current work-items:

   (a) Current electronic ballots:

       - Approve SAML V2.0 Metadata Extensions for Login and
         Discovery User Interface Version 1.0 CSD03 as CS.


       - Approve SAML V2.0 Metadata Extensions for Registration and
         Publication Information Version 1.0 CSD02 as CS.


        Both Closing 3 April 2012

   (b) Status/notes regarding past ballots: (none)

   (c) Kerberos Web browser SSO Profile (Josh/Thomas)
       - Status: CS Published. Thank you for SSTC support.

   (d) Metadata Extensions for Registration&  Publication Info (Chad)
       - Status: CS Ballot now open (until 3 April 2012)

   (e) Metadata Extensions for Login and Discovery User Interface (MDUI)
       - Status: CS Ballot now open (until 3 April 2012)

   (f) SAML2.0 Approved Errata (Scott)
       - Status: wd56 uploaded.
       - Status: WD56 was approved for CSD and 15-day PR on Feb 21
       - Status: Currently on TC admin "Active" list (#856&  #857)
Public Review is in process, ends April 4.

   (g) SAML 2.0.1 and Security Considerations doc
       - Status: SSTC agrees to proceed on this in 2012.
       - Issues: Should metadata and trust exchange frameworks
                 be made mandatory.
       - Status: Continue discussion. Scott posted a proposal.

Scott: I expect that there will still a number of conformance classes.

We need to think about how we will handle specifying MTI crypto and algorithm agility.

Metadata is very important for algorithm agility.

Need to consider what items to make part of core.

   (h)  SSTC Webinar:
       - Proposed topic: scope of work for the 2.0.1 spec.
       - Dates?

Consensus seems to be to assume audience knows something about SAML and present information about the purposes and content of SAML 2.x in order to encourage comments and possibly participation.

Scott&  Hal agreed to develop actual Webinar materials if TC can agree of 2.x goals and contents

**ACTION - Thomas to propose to OASIS (Dee Shur) that we do a webinar around the 1st week of June on the planned work in 2.x aimed at an audience with some knowledge of SAML already.

5. Assorted mail items:
    - Proposed Enhancement for Dynamic Attribute Queries.

Proposed by David Chadwick. There was some discussion of the technical details and the history.

There was general support for David's proposal, but based on extension point rather than a new message type. There was a general feeling it should allow for the use of different query-specification methods, with perhaps only one specified by SSTC.

**ACTION - David to take action to start document cycle.

6. Other items:
    - European Identity Conference.
    - IIW in May.
David is giving a presentation at EIC.

Meeting adjourned.

7. Next SSTC Call:
    - Tue 17 April 2012.


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]