OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

ws-sx message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: WS-SX TC Minutes, May 3rd 2006



WS-SX TC Minutes, May 3rd 2006

Our thanks to Nortel Networks for sponsoring this call.

Summary of new Action Items:
AI-2006-05-03-01 Gudge will investigate and start thread on issue 55.
AI-2006-05-03-02 Jan is working on a proposal for issue 65, ETA May
10th.
AI-2006-05-03-03 Tony will investigate and start thread on issue 67.
AI-2006-05-03-04 Tony to update pending trust issues by May 10th.
AI-2006-05-03-05 Gudge to update pending schema issues by May 10th.

1. Call to order/roll call
    
Present:
tbd

2. Reading/Approving minutes of last meeting (Apr 26th)
http://lists.oasis-open.org/archives/ws-sx/200604/msg00091.html

Adopted unanimously.

3. TC Logistics (10 minutes or less)
Chairs request that anyone who has conflicts in October for a F2F to let
them know.
Most likely date is going to be early October.
Offer from several companies to host already, including Nortel to host
on their campus in Ottawa.

Chairs request for companies to get back to them regarding interop
participation.

4. Issues list
http://docs.oasis-open.org/ws-sx/issues/Issues.xml
    
a) Review of action items
AI-2006-03-29-01 - Gudge owes Prateek a response (to message 82) for
issue 33.
Done
http://lists.oasis-open.org/archives/ws-sx/200604/msg00099.html

AI-2006-03-29-04 - Marc Goodner to update interop doc with resolution of
issue 47 as part of merged interop doc.
Done
http://lists.oasis-open.org/archives/ws-sx/200605/msg00003.html

AI-2006-04-04-03 - Tony Nadalin to identify possible issues for
SecurityPolicy based on the changes proposed for Issue 52.

In progress.

AI-2006-04-04-04 - Jan Alexander and Martin Gudgin to identify possible
issues for SecurityPolicy based on creation of the NoProofKey proposed
in the solution to Issue 56.

Conclusion is there are no issues. Trust already has a place to put the
relative piece of information and SP allows that to be specified.

Gudge will send mail explaining in more detail.

Done

AI-2006-04-04-07 - Marc Goodner with help from Prateek Mishra to create
a merged interop scenarios document.

Done
http://lists.oasis-open.org/archives/ws-sx/200605/msg00003.html

AI-2006-04-04-08 - Marc Goodner with help from Prateek Mishra to
document interop message flows based on the current version of SC/Trust.

In progress, most message flows and XML examples are present in current
draft.
http://lists.oasis-open.org/archives/ws-sx/200605/msg00003.html

AI-2006-04-04-09 - Chairs to check with absent companies on their plans
for SC/Trust interop.
Please let the chairs know if you can participate in any of the
scenarios that have been posted. You do not need to implement all
scenarios in order to participate.
Done
http://lists.oasis-open.org/archives/ws-sx/200604/msg00093.html

AI-2006-04-05-03 - Tony N and Frederick to consider adding batch
facilities to SecureConversation as per Issue 64.
For symmetry it would probably be OK, however there don't seem to be any
strong requirements for this. Suggest closing with no action.
Done.

AI-2006-04-05-04 - Chairs to do further work on a F2F meeting time and
location.
Will leave open until location picked.
Send chairs any conflicts in early October or location preferences.
http://lists.oasis-open.org/archives/ws-sx/200604/msg00092.html

AI-2006-04-12-01 - Prateek to review the text added per Issue 30 to see
if its explains sufficiently how to use the extensibility of SP to
describe token characteristics (related to Issue 31).

Estimate May 10th.

AI-2006-04-12-02 - Symon Chang to make a proposal on how to describe the
usage of the Username token re Issue 31.
Hal to follow up.
Open.

b) Issues in Review status
Applied in SP rev 06
http://www.oasis-open.org/apps/org/workgroup/ws-sx/download.php/17889/ws
-securitypolicy-1.2-spec-ed-01-r06.pdf

i016 - sp:SignedParts mechanism

i018 - absolute XPath expressions

i030 - Need a mechanism to identify token assertions

i051 - sp:RequireDerivedKeys is underspecified

i053 - Message parts to be protected using BootstrapPolicy

Unanimously accepted, status changed to closed.
    
c) New issues

  None.


d) Active issues

i004 - Transitive closure spec dependencies

i008 - Need well formed XML examples

i031 - Clarification for UsernameToken assertion
AI-2006-04-12-01, AI-2006-04-12-02

i033 - Identify security header components that are signed and/or
encrypted
See thread from AI-2006-03-29-01
http://lists.oasis-open.org/archives/ws-sx/200604/msg00099.html

i048 - Binding Assertions should support Operation subjects
Tony G. will revive discussion this week.

i055 - Clarification on RequireDerivedKeys and X509Token under
AsymmetricBinding
AI-2006-05-03-01 Gudge will investigate and start thread on issue 55.

i064 - Should SecureConversation support batch semantics as created by
Issue 52?
See AI-2006-04-05-03
No use case. Will reopen if one is presented. 
Close with no action.

i065 - Permitting requestors to avoid recieving cancel messages
AI-2006-05-03-02 Jan is working on a proposal for issue 65, ETA May
10th.

i066 - SecurityPolicy use cases

i067 - Resolving Policies if more than one SecureConversationToken is
present
AI-2006-05-03-03 Tony will investigate and start thread on issue 67.


f) Pending issues
Update from the editors.
AI-2006-05-03-04 Tony to update pending trust issues by May 10th.
AI-2006-05-03-05 Gudge to update pending schema issues by May 10th.

i020 - Describe minimum acceptable lengths for P_SHA1 inputs

i043 - Missing enumeration for validate request type in the
RequestTypeEnumdefinition

i047 - Does IssuedTokenOverTransport require client-side digital
signature?
Move to Review
http://lists.oasis-open.org/archives/ws-sx/200605/msg00003.html

i063 - Error in the WS-SecurityPolicy Schema

i068 - Security considerations for relying parties


5. AOB

None.

6. Adjournment

The meeting adjourned at 7:35 AM PST


Marc Goodner
Technical Diplomat
Microsoft Corporation
Tel: (425) 703-1903
Blog: http://spaces.msn.com/mrgoodner/ 



[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]