[xacml] XACML October 17, 2002 Minutes

[Ken Yagen <kyagen@crosslogix.com>]

Title: XACML Conference Call Minutes

XACML Conference Call

Date:  Thursday, October 17, 2002

Time: 10:00 AM EDT

Tel: 512-225-3050 Access Code: 65998

 

Summary

Most of the meeting was spent reviewing change request list maintained by Anne. HL03 regarding anonymous subjects generated a lengthy discussion and it was decided a use case is needed before we make any specific changes regarding this issue. A discussion of the schedule led to a vote to hold email voting over the next week to approve the committee spec v18D. This spec will be available by 10/21/02.

 

Additional minutes for discussion on the change requests were taken by Anne Anderson and will be posted separately.

                  

Action Items

1. Hal to announce email vote to list
2. Tim/Simon to release 18D version of spec and schema by 10/21
3. Anyone interested in submitting a use case for HL03 should do so

 

Votes

Voted to accept minutes of 10/10 con call

Vote to hold an email vote to approve the committee spec: "Email vote to start at close of today's meeting and end at 10:45 AM Eastern. Vote will cite version 18D of specification and schema which will be made available by 10/21."

Voted to accept the following change requests: AA01, AA02, HL02, PH02, PH03, AA04, AA06

 

Proposed Agenda:

10:00-10:05 Roll Call and Agenda Review
10:05-10:10 Vote to accept minutes of October 10 concalls
10:10-10:50 Review open Items on V 18c
10:50-11:00 Discussion plan to get to Committee Spec

 

Roll Call

Ken Yagen, Crosslogix

Hal Lockhart, Entegrity

Tim Moses, Entrust

Don Flinn, Hitachi

Konstantin Beznosov, Hitachi

Michiharu Kudoh, IBM

Steve Andersen, OpenNetwork

Simon Godik, Overxeer

Bill Parducci, Overxeer

Polar Humenn, Self

Anne Anderson, Sun Microsystems

Piras Vilandai Thiyatarajan, Sun Microsystems

Gerald Brose, Xtradyne

 

Raw Minutes (taken by Ken Yagen)

Motion to accept minutes of October 10 approved

 

Review of open items on v18c

[Based on Anne's Change Request List posted to mailing list]

Assume editorial items already addressed by Tim

AA01: Remove Table 4 - Attribute Identifiers from A.13.1

  STATUS: Accepted

AA02: New section in Appendix A on Structured  datatypes and how to define foreign ones. Four techniques described. Using attribute selector is the preferred way. To follow primitive types section.

  STATUS: Accepted

HL02: Policy Indexing. Modified with Polar's text and Polar's new policy combination algorithm for one applicable policy.

  STATUS: Accepted

PH02: Review of Obligations Section 5.32

  STATUS: Accepted

PH03: Section 7.5 Contradictory sentence

  STATUS: Accepted

AA04: 5.1 PolicySetId explanation clarification

  STATUS: Accepted

AA06: clarify computed <Target>s. Discussion that it should be non-normative. Suggest adding to of 3.3.2.1

  STATUS: Tim will modify in v18D for review

HL03: Question about Anonymous Access Subject. Polar mentioned there is a default principal. No text changes needed. Just need a subject with no attributes in it. Hal would like text to explicitly answer this question. Need a use case for explicitly writing rules where you know the subject is not authenticated. Do have identifier for subject authentication method with no values. SAML defines a list of values and procedure for creating new ones. Does not define unauthenticated. Simon objects to no attributes meaning anonymous.

  STATUS: Need use case

 

Schedule

Anne proposes we hold email vote on 10/24 and have another version of spec by 10/21.

 

Motion to propose email vote to start at close of today's meeting and end at 10:45 AM Eastern. Vote will cite version 18D of specification and schema which will be made available by 10/21.

 

Motion accepted.

 

Hal will draft announcement of public review. Next week will look for public review coordinator. Anne volunteers for that role.

 

Hal will send out email vote announcement to list after meeting.

 

Remaining minutes to be taken by Anne.