I can tell that David did a good job presenting xacml. I was
On 04/19/2012 09:50 AM, David Brossard wrote:
Just to give you a bit of feedback on the OASIS EIC workshop. I
won't be on today's call due to prior commitments.
The workshop went really well with a good intro by John Sabo of CA
and Mike Small of Kuppinger Cole and then contributions from
various TCs including OASIS's Identity in the Cloud TC, the
Privacy Management Reference Model (PMRM) TC, and the XACML TC.
In the slides I presented, I chose to introduce 3 possible ways
authorization in the cloud could be tackled. I've attached the
slides for your benefit.
I think attendees were excited by the possibility of using context
in authorization as well as having a single centralized point of
Please find the slides attached.
On Mon, Apr 9, 2012 at 6:11 PM, David
As Rich pointed out, I volunteered to represent the TC at EIC
in Munich in a fortnight. If there is particular work items
you would like to put forward, please do let me know. If there
are upcoming XACML events you want me to mention, please do
tell me as well.
On Mon, Apr 9, 2012 at 6:04 PM, rich
Time: 13:00 EDT (GMT-0400)
Access Code: 65998
Minutes for 5 April 2012 TC Meeting: (2nd update w 2nd
Thanks to Danny Thorpe of Quest Software for collecting
the details that are used as the basis for these
I Roll Call
Crystal Hayes The Boeing Company
Richard Hill The Boeing Company
Rich Levinson Oracle
Hal Lockhart Oracle
Bill Parducci Individual
Remon Sinnema EMC
Danny Thorpe Quest Software
John Tolbert The Boeing Company
Paul Tyson Bell Helicopter Textron Inc.
Erik Rissanen Axiomatics
Since no quorum at Mar 22 mtg, still need to approve Mar
8 March 2012 TC Meeting
22 March 2012 TC Meeting
Accepted minutes from prev 2 meetings.
No objections to unanimous consent.
Speaking opportunity for XACML TC at European Identity
in Munich 17 April: Jane wanted to know by 3/30, but
if any interest, then can find out if still available:
dave broussard signed up for EIC speaking
XACML Core v3.0 WD-23 uploaded: still open issue as to
baseline for this rev is: i.e. did not seem to match w
See mtg minutes for more detail:
original wd-23 notice:
ready to vote to CSD wd23? (hal)
Recent diffs make it difficult to review changes,
need to discuss changes in identity wording (rich)
Typography issues need to be fixed prior to CSD?
(eric, ray fine without font changes)
Move to take wd23 to CSD (eric) seconded (ray)
Do cross references need to be updated now?
How did we do it last time?
Defer vote for CSD to next call to allow time to
address cross references
Urge everyone to review docs,
be prepared for CSD vote on next call
New item (rich): off list request rcvd from Oded Sofer
asking when XACML 3.0 expected to be released:
hal: indicated that while ind members may express
opinions on projected dates, it is the TC process
and the TC, as a whole, that determines the actual
interested parties may refer to the OASIS Technical
Approval Process to provide a basis for
in the process a specific spec is, and what remains
its final approval:
also noted: do existing attestions need to reattest in
recent edits to spec? (rich, hal) - we will
as we move along in the process - no issues
it may be prudent to reissue the attestations
the specific version being referred to.
XACML Media Types (last mtg members asked to review the
Ray to update document for next call
(john) no way to exchange request (collection of
without a compete decision request around it
How does PDP get all xacml attributes from, say,
(hal) Note recent proposal in SAML TC.
(john) could suffice, but can that handle
(john) Among the collection of media types defined,
there appears to be a gap
(hal) can be extended later
(ray) media types we have so far should be enough
the REST profile
XACML Core v3.0 Comments
(Comment: Remon) also added comment in minutes about
needs minor fix)
XACML v3.0 Open Items
Issue #3: Combining Algorithm
general consensus is to create a separate Profile; erik
Eric posted a proposal for this comb alg as a separate
Issue #4 Context Handler
update in latest draft wd-23: members should review
Issue #8 Schema Anomalies ("choice element" or "Policy w
rich has action to post to wiki details of this issue
suggested action will be.
Meeting adjourned approx: 1:35
Next call April 19