[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Minutes for 7 April 2011 TC Meeting
Time: 13:00 EDT Tel: 513-241-0892 Access Code: 65998 Minutes for 7 April 2011 TC Meeting: I. Roll Call & Approve Minutes: Roll call: Voting Members Erik Rissanen Axiomatics AB Abbie Barbir Bank of America Paul Tyson Bell Helicopter Textron Inc. Gregory Neven IBM Franz-Stefan Preiss IBM Anthony Nadalin Microsoft Corporation Rich Levinson Oracle Corporation Hal Lockhart Oracle Corporation John Tolbert The Boeing Company John Davis Veterans Health Administration David Staggs Veterans Health Administration Members Remon Sinnema EMC Corporation Jan Herrmann Individual Approve Minutes: 24 March 2011 TC Meeting Minutes - UPDATED(2): http://lists.oasis-open.org/archives/xacml/201103/msg00056.html hal: no obj to unan consent: approved II. Administrivia New: "OASIS IDtrust Member Section to host IIW - 3-5 May 2011": dee: http://lists.oasis-open.org/archives/xacml/201103/msg00057.html hal: mentioned Ongoing: F2F Planning Update tony: http://lists.oasis-open.org/archives/xacml/201103/msg00006.html status: 3/24: hal: f2f action on chairs to look for proposals hal: people are posting to poll, ny, wash dc, boston (looking to east coast, last was west, offers exist) Ongoing: OASIS XACML Webinar: OASIS asks is there interest to develop? bill: http://lists.oasis-open.org/archives/xacml/201103/msg00034.html status: 3/24: Erik, Doron, Hal volunteered to work on it. hal: looking at webinar in May Ongoing: "ITU-T Files of Interest": hal: http://lists.oasis-open.org/archives/xacml/201103/msg00001.html status: 3/24: abbie: apr 11-20 group 17 mtg; next update will be after that. 4/7: abbie: docs have been submitted, he will be attending mtg, "all taken care of" III. Issues New: "The known issues in XACML 3.0 CS 01": erik: http://lists.oasis-open.org/archives/xacml/201103/msg00054.html comments: bill: http://lists.oasis-open.org/archives/xacml/201103/msg00055.html erik: all are in wiki page for viewing; hal: bill and hal think a new cs is appropriate; get wkg drafts, go to 15-day pub rev, would still be 3.0; cs reps pre-impl stage, expect some chgs before OS. erik: 2 concerns: would like weekly mtgs because there are so many detailed steps; would encourage more discussion in advance; things will be continuing; erik: proposes going weekly until next CS. tony: short notice for next week erik: agrees: start weekly after next mtg in 2 wks; want to have comments on wiki: 1. accept as proposed (erik: www moving away from "duration", so difficult to mix months in for duration for some data types) 2. chg schema as proposed; loosely defined in xml sch 3. ldap not x500 coding; agree to add sample, but no fix reqd 4. both english and haskell, in one case don't match, english appears to be correct (carried over from 2.0); related issue, prev f2f, didn't update haskell to more general, removed the haskell; some of haskell defns ref the haskell defns removed in 3.0, so incomplete; shouldn't be 2 defns of same thing; erik: english is generally the correct defn; for higher order suggest using only english; jan: not sure if such defns can be done in haskell, recommends english; erik will review english and remove the haskell; 5. has been removed as not a problem 6. if target indet, results of com-alg determines result; point is that new algs track possible results if not an error; that info kept as policy eval'd upwards; if target of policy uses ext-alg, what value does whole policy get, what type of ind, comb alg should be eval'd and final result would be from the comb alg. already well-defined for rules, only impacts policy, policysets; erik will draft proposed wording 7. english is wrong, schema is correct, carryover from xacml 1.0, chg would be to remove condition from expression 8. obligations: interpretations; greg: if you look at in detail, it actually appears correct; erik: can tweak language if still confusing. greg: not strictly wrong, but confusing. erik will look at greg's proposal 9. erik: there are no accepted defns for what these "is-in" fcns mean for ip-addr or dns-name; erik: issue is equality not well defined; paul: wants to take closer look. 10. erik: embarrassing: "subtraction" defn may be ambiguous; will look closer. 11. erik: fcns convert things to strings: output from these fcns may not be definitive; need a canonical form; not sure how big a concern it is; hal: should suggest not converting to string then comparing the results; erik: either say it can't be relied on, or do what xml schema says; erik: for those types where well-defined conversions exist use those, ow make stmt indicating situation. x. tony: believes text and example are in conflict in sec 7.7. hal: msg 8 in April; tony: in sec 4.2.4.4 mismatch see post. paul: target is conjunctive list of disjunctive lists, so should study more to determine what is correct. hal: discussion should go on list; rich: need to look further before deciding what is default action based on proposal. -. jan's latest missing attr issue will be put in post-3.0 bin New: "usage of status:missing-attribute in case of an AttributeSelector - control of the pip through xacml rules" jan: http://lists.oasis-open.org/archives/xacml/201103/msg00059.html comments: paul: http://lists.oasis-open.org/archives/xacml/201103/msg00060.html erik: http://lists.oasis-open.org/archives/xacml/201104/msg00002.html jan: http://lists.oasis-open.org/archives/xacml/201104/msg00003.html New: ""Web Friendly" Policy Ids": hal: http://lists.oasis-open.org/archives/xacml/201103/msg00044.html comments: paul: http://lists.oasis-open.org/archives/xacml/201103/msg00046.html New: "Comments on Attribute predicate profile for SAML and XACML": paul: http://lists.oasis-open.org/archives/xacml/201103/msg00050.html comments: greg: http://lists.oasis-open.org/archives/xacml/201104/msg00004.html paul: http://lists.oasis-open.org/archives/xacml/201104/msg00005.html remon: http://lists.oasis-open.org/archives/xacml/201104/msg00006.html refs: greg: original posting of profile: March 23, 2011: http://lists.oasis-open.org/archives/xacml/201103/msg00035.html original (Paul from november 2010): http://lists.oasis-open.org/archives/xacml/201010/msg00012.html greg: paul's email query for attr predicate, agrees w comments, if can't get attr from pip, will do attr pred query; at that point not clear what apply stmt to use? paul: there is issue w how pdp is impl'd, no profile to be defined, possibly a small profile saying this is impl option. greg: how high up in tree to go is ambiguous. hal: time has expired for meeting; hal: will try to get draft for cd vote for apr 21, then go to weekly mtgs for pub rev etc. hal: mtg adjourned 2:03 pm Ongoing: "Obligations problem": greg: http://lists.oasis-open.org/archives/xacml/201103/msg00037.html comments: erik: http://lists.oasis-open.org/archives/xacml/201103/msg00053.html Ongoing: Specifying a specific associated Resource in a Policy (Sticky Policies): hal: http://lists.oasis-open.org/archives/xacml/201103/msg00012.html Ongoing: BTG Profile (Break The Glass): several recent comments (only listed most recent from each named member): david-c: http://lists.oasis-open.org/archives/xacml/201103/msg00014.html mike: http://lists.oasis-open.org/archives/xacml/201103/msg00021.html erik: http://lists.oasis-open.org/archives/xacml/201103/msg00024.html doron: http://lists.oasis-open.org/archives/xacml/201103/msg00027.html martin: http://lists.oasis-open.org/archives/xacml/201103/msg00028.html bill: http://lists.oasis-open.org/archives/xacml/201103/msg00029.html paul: http://lists.oasis-open.org/archives/xacml/201103/msg00030.html david-s: http://lists.oasis-open.org/archives/xacml/201103/msg00032.html rich: http://lists.oasis-open.org/archives/xacml/201103/msg00033.html original (David C): http://lists.oasis-open.org/archives/xacml/201011/msg00017.html Ongoing: PIP directive (additional information directives) original (David): http://lists.oasis-open.org/archives/xacml/201010/msg00005.html
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]