RE: [ws-sx] WS-SX TC Minutes, Oct 25 2006

[Marc Goodner <mgoodner@microsoft.com>]

[VER 2] Added roll and note under logistics on OASIS email server outage this Thursday.

 

WS-SX TC Minutes, Oct 25 2006

 

Summary of new Action Items:

None.

 

1. Call to order/roll call

   

Status Change
Kate Cherry lost voting status

Present:

Hal Lockhart, BEA Systems, Inc.*
Denis Pilipchuk, BEA Systems, Inc.*
Yakov Sverdlov, CA*
Toshihiro Nishimura, Fujitsu Limited*
Ching-Yun (C.Y.) Chao, IBM*
Henry (Hyenvui) Chung, IBM*
Kelvin Lawrence, IBM*
Michael McIntosh, IBM*
Anthony Nadalin, IBM*
Bruce Rich, IBM*
Mike Lyons, Layer 7 Technologies Inc.*
Jan Alexander, Microsoft Corporation*
Greg Carpenter, Microsoft Corporation*
Paul Cotton, Microsoft Corporation*
Colleen Evans, Microsoft Corporation*
Marc Goodner, Microsoft Corporation*
Martin Gudgin, Microsoft Corporation*
Chris Kaler, Microsoft Corporation*
Norman Brickman, Mitre Corporation*
Frederick Hirsch, Nokia Corporation*
Abbie Barbir, Nortel Networks Limited*
Steve Carter, Novell*
Rich Levinson, Oracle Corporation*
Martin Raepple, SAP AG*
Tony Gullotta, SOA Software Inc.*
Don Adams, Tibco Software Inc.*
Ruchith Fernando, WSO2*

 

2. Reading/Approving minutes of last meeting (Oct 18)

http://lists.oasis-open.org/archives/ws-sx/200610/msg00042.html

Adopted unanimously.

 

3. TC Logistics (10 minutes or less)

Noted OASIS email server outage during business hours this Thursday.

 

4. Issues list

http://docs.oasis-open.org/ws-sx/issues/Issues.xml

   

a) Review of action items

AI-2006-10-04-02 - Marc to delve into TC document organization issues and report back

Will be done before next week’s call.

 

b) Issues in Review status

 

  None.

 

   

c) New issues

i117 - Element or Content Encryption on SignedEncryptedSupportingTokens Assertion

http://docs.oasis-open.org/ws-sx/issues/Issues.xml#i117

Summary:

SignedEncryptedSupportingTokens does not define whether to use Element Encryption or Content Encryption to encrypt the token.

Proposal: 

Add one sentence to Sec. 8.5, Sec. 8.6, and Sec. 8.7: "Content Encryption should be used for encrypting the supporting tokens."

Differences of opinion on using #content as is proposed vs. #element.

Need to verify what was done in the interop.

More list discussion is needed.

 

d) Active issues

 

i066 - SecurityPolicy use cases

No progress this week. Expect input next week.

 

i081 - Provide policy statements and associated URIs that can be referenced from wsp:PolicyReference statements

Not discussed.

 

i090 - Description of Strict Formatting seems wrong for EncryptedKey

Proposal 4

http://lists.oasis-open.org/archives/ws-sx/200609/msg00065.html

 

i101 - Need additional SamlToken Assertion Elements for Holder-of-Key and Sender-Vouches

Not discussed.

 

i114 - Additional algorithm properties, assertions and references needed

Feedback from Gudge http://lists.oasis-open.org/archives/ws-sx/200610/msg00049.html

Assigned to editor’s to update according to Gudge’s feedback above.

Issue status changed to pending.

 

i115 - Universal Encryption of UsernameToken (as specified by Appendix D, d.4, 3.) seems wrong

Waiting for feedback.

 

i116 - Is Appendix D Normative?

New proposal from Hal: http://lists.oasis-open.org/archives/ws-sx/200610/msg00046.html

Review before next week’s call.

 

PR001 - Question on WS-Trust sections 4.3.5 to 4.3.7

4.3.7 uses the wrong element name, <wst:RequestedTokenReference>, it should use <wst:RequestedAttachedReference>.

Marc will send in proposal to update text and example in section 4.3.7 accordingly after today’s call.

 

 

f) Pending issues

 

None.

 

 

5. Next steps

Interop doc needs an update to reflect WSDL attachment points for SP and correct some of the failure cases.

 

6. AOB

 

None.

 

7. Adjournment

 

The meeting adjourned at 7:29am PST