[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: [xacml] Possible future XACML TC work
Here is a list of suggestions for future XACML TC work. I believe all of this is within our charter. 1. XACML 1.0+: RFE's based on actual usage a) Fully specify hierarchical resources b) Define new combining algorithms for deterministic Obligations. c) ebXML: Allow references to Rules (as we now allow for policies and policy sets) d) Incorporate fixes for errata 2. Profiles and bindings a) SAML: revised AuthorizationDecisionStatement, AuthorizationDecisionQuery, Response to support XACML Request and Response Context [Anne and Hal working on this] b) XMLDSig: how to sign XACML policies, requests, responses [Anne working on this] c) LDAP: 1) how to store and retrieve policies using LDAP 2) how to store and retrieve attributes using LDAP [already defined? Simon?] d) ebXML: 1) how to store and retrieve policies using ebXML 2) how to store and retrieve attributes using ebXML e) Transport protocols (in addition to SAML wrapper) 3. Additional Conformance Tests 4. XACML Extensions a) WS-Policy [Tim's proposal] b) Information about how/where to obtain policies and attributes; how to authenticate them (e.g. trust anchors) 5. XACML Primer [Hal and Konstantin working on this] 6. XACML Implementer's Guide Anne -- Anne H. Anderson Email: Anne.Anderson@Sun.COM Sun Microsystems Laboratories 1 Network Drive,UBUR02-311 Tel: 781/442-0928 Burlington, MA 01803-0902 USA Fax: 781/442-1692
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC