OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-use message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Subject: Re: Issue Group 5 BALLOT

My ballot on this is attached. 

I have my positions on Group1 and Group3 figured out, but am out of time to
write them up today, and so will be doing that tomorrow. I hope this is ok. 

I have comments on the Group5 ballot itself that I'll write up tomorrow also. 

thanks,

JeffH

ISSUE:[UC-5-03:AuthCThrough]

(a) Resolution: Yes/No

No.

rationale: It seems to me that SAML is effectively a meta-authentication protocol. As such, it should make use of (i.e. leverage) the plethoria of extant authn mechanisms, and it shouldn't attempt to expressly be one itself (for some definition of "being one"). 


(b) Resolution: Yes/No

Yes. But the rationale should be clearly explained. 


(c) Resolutiom: Yes/No

No.

rationale: the suggested phrasing of the [NO-AuthC] "non-goal" in the group5-ballot itself needs reworking. It is vague as presently stated.

-------------------------------------------------------------------
ISSUE:[UC-5-02:SASL]

Resolution: Yes/No

[SASL] RFC 2222:

Yes.

rationale: it may or may not be appropriate to mention SASL in the use case & reqs phase (and document(s)), but I do feel it will definitely be appropriate to consider it in the context of the -protocol and/or -bindings facets of SAML; hence we shouldn't specifically exclude it, and thus the wording of this issue [UC-5-02:SASL] in the group5-ballot is appropriate in terms of a general resolution of intent, but whether and how we put it in any -use work products is yet another question, imho.

---------------------------------------------------------------------

[ISSUE:[UC-5-01:AuthCProtocol] 

(a) Resolution: Yes/No

Yes.

rationale: I support the removal of that particularly worded statement because I feel it is vague, and in consideration of my responses to [UC-5-03:AuthCThrough] and [UC-5-02:SASL] above.

(b) Resolution: Yes/No

Yes.

rationale: "yes" is the short answer. the longer answer includes some refinement of the wording of both [R-StandardCreds] and [R-ExtensibleCreds] that I'll suggest in comments upon the Group5.txt write-up itself.

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Powered by eList eXpress LLC