[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: WS-SX TC Minutes, Mar 15 2006
WS-SX TC Minutes, Mar 15 2006 Summary of new Action items: ACTION 2005-03-15-01 Gudge and Prateek to draft a new section "Guidance on creating New Token Assertions and Token Assertion Extensibility" for review by the TC. ACTION 2005-03-15-02 Marc to version the Interop document and to store it in an Interop scenarios document folder. ACTION 2005-03-15-03 Gudge will reply to the thread on Issue 030 before the Mar 22 meeting. 1. Call to order/roll call Present: Jong Lee, BEA Systems, Inc.* Hal Lockhart, BEA Systems, Inc.* Denis Pilipchuk, BEA Systems, Inc.* Corinna Witt, BEA Systems, Inc.* Symon Chang, Blue Titan Software* Rich Levinson, Computer Associates* Yakov Sverdlov, Computer Associates* Dana Kaufman, Forum Systems, Inc.* Toshihiro Nishimura, Fujitsu Limited* Irving Reid, Hewlett-Packard* Greg Whitehead, Hewlett-Packard* Ching-Yun (C.Y.) Chao, IBM* Henry (Hyenvui) Chung, IBM* Heather Hinton, IBM* Kelvin Lawrence, IBM* Anthony Nadalin, IBM* Mike Lyons, Layer 7 Technologies Inc.* Jan Alexander, Microsoft Corporation* Paul Cotton, Microsoft Corporation* Colleen Evans, Microsoft Corporation* Mark Fussell, Microsoft Corporation* Vijay Gajjala, Microsoft Corporation* Marc Goodner, Microsoft Corporation* Martin Gudgin, Microsoft Corporation* Chris Kaler, Microsoft Corporation* Jonathan Marsh, Microsoft Corporation* Asir Vedamuthu, Microsoft Corporation* Norman Brickman, Mitre Corporation* Jeff Hodges, Neustar, Inc.* Abbie Barbi <<wssx-roster-2006.xls>> r, Nortel Networks Limited* Lloyd Burch, Novell* Steve Carter, Novell* Ashok Malhotra, Oracle Corporation* Prateek Mishra, Oracle Corporation* Alex Hristov, Otecia Incorporated* John Hughes*, PA Consulting* Darren Platt, Ping Identity Corporation* Martijn de Boer, SAP AG* Martin Raepple, SAP AG* Werner Dittmann, Siemens AG* Tony Gullotta, SOA Software Inc.* Jiandong Guo, Sun Microsystems* Don Adams, Tibco Software Inc.* Hans Granqvist, VeriSign * 2. Reading/Approving minutes of last meeting (Mar 08) http://lists.oasis-open.org/archives/ws-sx/200603/msg00041.html Adopted unanimously. 3. F2F planning See information provided in: http://lists.oasis-open.org/archives/ws-sx/200602/msg00131.html There were no questions about the F2F arrangements. 4. Issues list http://docs.oasis-open.org/ws-sx/issues/Issues.xml a) Review of action items ai-09 - Editors to check that XPath examples in WS-SecurityPolicy are fully namespace qualified. Pending. AI-2006-02-15-04 - Prateek to propose resolution to Issue 20 before F2F Pending. AI-2006-02-15-06 - Prateek to provide additional broader scenarios for at least WS-Trust. ETA is Mar 10. Pending. New ETA is Mar 17. AI-2006-02-15-07 - TC members to come to the April F2F with data on when they would be ready to carry out SC/Trust interop. Pending. AI-2006-03-01-03 - Werner Dittman to work with Tony Nadalin to see if it would be useful to include Tony's UML diagram to clarify Issue 28. Pending. AI-2005-03-08-01 - Prateek Mishra to respond to Jan's message re Issue 10. DONE. See: http://lists.oasis-open.org/archives/ws-sx/200603/msg00044.html http://lists.oasis-open.org/archives/ws-sx/200603/msg00050.html AI-2005-03-08-02 - Mike to provide better description(s) and a complete proposal(s) for issue 016 and issue 017 by the F2F meeting. Pending. AI-2005-03-08-03 - Werner and Gudge to work on a new proposal for Issue 27. DONE. See: http://lists.oasis-open.org/archives/ws-sx/200603/msg00057.html AI-2005-03-08-04 - Hal to provided a proposal for Issue 32 before Mar 15 meeting. DONE. See: http://lists.oasis-open.org/archives/ws-sx/200603/msg00049.html AI-2005-03-08-05 - Frederick to provide alternative proposal for Issue 36 for the Mar 15 meeting. Pending. AI-2005-03-08-06 - Jan Alexander to supply clarifying text for Issue 038 before the Mar 22 meeting. Pending. AI-2005-03-08-07 - Gudge will provide text to clarify the usage of "dialect" for Issue 40 for the Mar 15 meeting. DONE. See: http://lists.oasis-open.org/archives/ws-sx/200603/msg00047.html b) Issues in Review status None. c) New issues i045 Duplicate Id attribute values in Security Context example http://lists.oasis-open.org/archives/ws-sx/200603/msg00037.html Change status to Pending. Assigned to Editors. i046 Include BinarySecurityToken as an additional token assertion in WS-SP See thread at: http://lists.oasis-open.org/archives/ws-sx/200603/msg00055.html Change status to Closed with no changes. Prateek will open a new issue if he thinks additional material should be added to the specification. ACTION 2005-03-15-01 Gudge and Prateek to draft a new section "Guidance on creating New Token Assertions and Token Assertion Extensibility" for review by the TC. i047 Does IssuedTokenOverTransport require client-side digital signature? http://lists.oasis-open.org/archives/ws-sx/200603/msg00058.html This issue is targeted at the Interop scenarios document. Gudge suggested that this is a holder of key scenario. Prateek suggested this could be explained in the scenario text. Change status to Pending. Assigned to Marc Goodner as editor of the Interop scenarios. ACTION 2005-03-15-02 Marc to version the Interop document and to store it in an Interop scenarios document folder. i048 Binding Assertions should support Operation subjects http://lists.oasis-open.org/archives/ws-sx/200603/msg00059.html Change status to Active. Assigned to Tony G. i049 Clarify that [Algorithm Suite] applies to message level cryptography and NOT transport-level cryptography http://lists.oasis-open.org/archives/ws-sx/200603/msg00060.html Hal suggested we add text explaining the reason for this is that transport protocol (IPSEC and SSL) already have techniques for selecting the algorithm. Adopted unanimously as amended. Change status to Pending. Assigned to Editors. i050 Clarify scope of Protection assertions http://lists.oasis-open.org/archives/ws-sx/200603/msg00061.html Adopted unanimously. Change status to Pending. Assigned to Editors. d) Active issues i004 Paul Cotton Transitive closure spec dependencies Pending. Due before F2F. i008 Editors Need well formed XML examples Pending. i010 Prateek Mishra Proof of possesion for security intermediaries Jan Alexander's reply is in: http://lists.oasis-open.org/archives/ws-sx/200603/msg00016.html ACTION 2005-03-08-01 Prateek Mishra to respond to Jan's message re Issue 10: http://lists.oasis-open.org/archives/ws-sx/200603/msg00016.html Further dialogue in: http://lists.oasis-open.org/archives/ws-sx/200603/msg00044.html http://lists.oasis-open.org/archives/ws-sx/200603/msg00050.html Text proposal is adopted unanimously. Change status to Pending. Assigned to Editors. i016 Michael McIntosh sp:SignedParts mechanism ACTION 2006-03-08-02 Mike to provide better description(s) and a complete proposal(s) for issue 016 and issue 017 by the F2F meeting. Pending. i018 Michael McIntosh absolute XPath expressions ACTION 2006-03-08-02 Mike to provide better description(s) and a complete proposal(s) for issue 016 and issue 017 by the F2F meeting. Pending. i020 Describe minimum acceptable lengths for P_SHA1 inputs AI-2006-02-15-04 - Prateek to propose resolution to Issue 20 before F2F Pending. i027 Werner Dittmann When to include a token? ACTION 2006-03-08-03 Werner and Gudge to work on a new proposal for Issue 27. DONE. See: http://lists.oasis-open.org/archives/ws-sx/200603/msg00057.html Adopted unanimously. Change status to Pending. Assigned to Editors. i028 Werner Dittmann Multiple supporting tokens of the same type? AI-2006-03-01-03 - Werner Dittman to work with Tony Nadalin to see if it would be useful to include Tony's UML diagram to clarify Issue 28. Pending. i030 Need a mechanism to identify token assertions AI-2006-03-01-04 - Werner Dittman, Tony Gillotta and Gudge will prepare a proposal to add some text to describe how to extend token assertions for Issue 30. DONE. See: http://lists.oasis-open.org/archives/ws-sx/200603/msg00029.html Discussion will continue by email. ACTION 2005-03-15-03 Gudge will reply to the thread on Issue 030 before the Mar 22 meeting. i031 Clarification for UsernameToken assertion Pending on Issue 30. i032 Hal Lockhart WS-SP should permit Policy to specify the use of keys derived from passwords ACTION 2006-03-08-04 Hal to provided a proposal for Issue 32 before Mar 15 meeting. DONE. See: http://lists.oasis-open.org/archives/ws-sx/200603/msg00049.html Adopted unanimously. Change status to Pending. Assigned to Editors. i033 Prateek Mishra Identify security header components that are encrypted Pending email discussion since the Feb 22 meeting. The issue email contains a proposal that needs email discussion. i036 Frederick Hirsch Clarify term pre-authentication ACTION 2006-03-08-05 Frederick to provide alternative proposal for Issue 36 for the Mar 15 meeting. Pending. i038 Frederick Hirsch Clarify that ComputedKey optional ACTION 2006-03-08-06 Jan Alexander to supply clarifying text for Issue 038 before the Mar 22 meeting. Pending. i040 Prateek Mishra What values can be carried in a /wst:RequestSecurityToken/wst:Claims element? ACTION 2006-03-08-07 Gudge will provide text to clarify the usage of "dialect" for Issue 40 for the Mar 15 meeting. DONE. See: http://lists.oasis-open.org/archives/ws-sx/200603/msg00047.html Adopted unanimously. Change status to Pending. Assigned to Editors. i044 Tony Nadalin What is an authorization token? Pending email discussion. e) Pending Issues I021 Correct section numbers in SP http://docs.oasis-open.org/ws-sx/issues/Issues.xml#i021 Marc has provided a revised document. See: http://www.oasis-open.org/apps/org/workgroup/ws-sx/download.php/17050/ws -securitypolicy-1.2-spec-ed-01-r04.doc Change status to Review. The TC should review this by next week. 5. Other business a) Updated specification documents Chris Kaler noted that there are a lot of issues in Pending status. Gudge offered to update the SecurityPolicy specification by Mar 29 so that the TC can review the revised editor's draft before the F2F. Chris Kaler asked Gudge to check to see if Tony could update the SecureConversation/Trust documents by the same date? 6. Adjournment The meeting adjourned at about 11:00am EST. /paulc Paul Cotton, Microsoft Canada 17 Eleanor Drive, Nepean, Ontario K2E 6A3 Tel: (613) 225-5445 Fax: (425) 936-7329 mailto:Paul.Cotton@microsoft.com
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]