OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

xacml message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Minutes of 9 August 2012 TC Meeting

Time: 13:00 EDT (GMT-0400)
Tel: 513-241-0892
Access Code: 65998

Thanks to Danny Thorpe for taking the notes that were used
 to provide most of the info in these minutes.

Minutes of 9 August 2012 TC Meeting:

I. Roll Call&  Minutes
  Roll call:

Voting Members:
Jean-Paul Buu-Sao 	Transglobal Secure Collaboration Participation
Crystal Hayes 		The Boeing Company
Richard Hill 		The Boeing Company
Rich Levinson 		Oracle
Hal Lockhart 		Oracle
Erik Rissanen 		Axiomatics
Danny Thorpe 		Quest Software
John Tolbert 		The Boeing Company

John Davis 		Veterans Health Administration
Radu Marian 		Bank of America
Anthony Nadalin 	Microsoft

  Approve Minutes:
   26 July 2012 TC Meeting

    Approved, no objection.

II. Administrivia

  IdTrust nominations:
    dee: https://lists.oasis-open.org/archives/xacml/201208/msg00006.html
       self explanitory: (steering committee noms)

  XACML Interop
   calls being held, work being done: login required:
   dial-in info:
   jane request updates to list add new, remove if not participating:

    John: summary of demo TC activities
      Need TC members to comment on what they could demo around IPC
       at fall conferences
      Two separate events are planned: particpants can be part of
       one or both:
        1. 1st week of October, London. TSCP
        2. 2nd week of November, Phoenix, GPDIS

  OASIS: recent changes TC specification process:
    Hal: Changes in Oasis review policy. Trivial edits no longer require
     public review cycle.

  Status XACML IPC v1.0 Profile
   30 day review, TSCP feedback (nothing new on email since last mtg)
    jan comments:

    John: IPC profile
      Feedback received from public review period

    Jean-Paul: proposal for TSCP to offer demo scenarios to help
     vet / demonstrate the use of the IPC profile. How to proceed?
    John: Discuss offline.
    Jean-Paul: Perhaps the IPC demo scenario being drafted for the
     fall interop demos could be the basis for examples in the
     IPC profile.  When is the next public review for IPC?
    Hal: Currently only attribute name change, could be considered
     a trivial change not requiring public review. However, if substantial
     text and examples will be added that should go through review after
     the TC has a draft.

  Status XACML EC v1.0 Profile (note: did not see tc-admin announce)
   30 day review: TSCP comments(new):

    Hal: Export profile. status?
    John: No action. Awaiting public review to appear from Oasis.

  summary status of all currently "active" profiles (erik):

    Hal: Erik - what profiles are you editing?
    Erik: combining algorithm profile - who to acknowledge?

    long idle profiles: hierarchical, multi request profiles.
     Just need attestations.

    XACML 3.0 RBAC profile: broken/dead URL links
    RBAC profile: revert to prev wd, or fix broken links and vote
     it up to CS draft?
    RBAC edits not significant. Changing italics, URL links non-normative.
    RBAC on hold pending new wd

    Erik: all profiles together, or core separately?
    Hal: separately

  latest update to saml-xacml profile:  wd-16

    Saml 2.0 profile: Comments indicate that
      URIs in text don't match URIs in schema.
    wd16 doesn't change anything in document (other than typos),
     but reverts to referencing wd14 schema.

    TC needs to vote to promote SAML wd16 to CS draft
    Erik: SAML, new schema files, probably should go for public review.

 ->  Erik: Move to promote SAML wd16 to CSD
    Rich Hill: second
    No objections to unanimous consent

 ->  Eric: Move SAML CSD to 15 day public review
    Danny: second
    No objections to unanimous consent

 ->  Minutes need to include URL to correct document, or we have to do
     this over again.
    According to above email, the URL to download the
     SAML-XACML 2.0 Profile (xacml-profile-saml2.0-v2-spec-wd-16) is:

  xacml 3.0 ballot:
   chet: https://lists.oasis-open.org/archives/xacml/201207/msg00042.html
   erik: https://lists.oasis-open.org/archives/xacml/201208/msg00000.html
   chet: https://lists.oasis-open.org/archives/xacml/201208/msg00002.html
   erik: https://lists.oasis-open.org/archives/xacml/201208/msg00003.html
  all ok, ballot started: (presumably closed and approved)

    Hal: XACML 3.0 core committee spec ballot: 11 votes, passed.

    Hal: We now need attestations of successful use.
    Oasis TC Section 1, definition "AR", successful use.
     Need to specify exactly which committee specification
     document is being attested and the CS approval date.
    Hal will verify CS version (url?) and post to TC list.

  Combining Algorithm Profile
    erik: https://lists.oasis-open.org/archives/xacml/201208/msg00008.html
   Working Draft 01

    Erik: Acknowledgements section for combining algorithm profile?
    Hal: Lacking specific participation, convention is to use current
     voting members in acknowledgements.  Anyone who would prefer to
     not be listed on this profile?<none>

  New Profiles: Policy Bind by Reference, Policy Templates
   Request for next steps (also see comments in last mtg minutes)

    JP: Policy templates: need content from Danny.<acknowledged>

III. Issues

  Grammatical Issue w XACML 3.0 specification: need a name for a collection
      of attributes (i.e. the attributes, in general, are attributes of
      some entity, and an entity is an instance of a specific category
      of entity and possibly sub-category):
    rich: https://lists.oasis-open.org/archives/xacml/201207/msg00031.html
    danny: https://lists.oasis-open.org/archives/xacml/201207/msg00033.html
    david: https://lists.oasis-open.org/archives/xacml/201207/msg00035.html
    ray: https://lists.oasis-open.org/archives/xacml/201207/msg00037.html

    Grammatical issue w/ XACML 3.0: need a better name for a
     collection of attributes. Rich to propose action on wiki

  Multi-profile: use of term: "reduction"
    danny: https://lists.oasis-open.org/archives/xacml/201207/msg00032.html

    Reduction: no harm in using "reduction" in multiple contexts

  xacml-comments: Reqts on the Constr of XML Data Structs for XPath Processing
    erik reply to stephen:

    XPATH. Handling of namespaces in xml document in request.
    Erik: recommend an erratta to clarify "obvious" case that namespaces
     that are use must be included in the xml doc.

  Other items:

    Cloud identity ad-hoc committee:
     start new TC or incorporate into XACML TC?
     Discuss further on next XACML TC call.

  Meeting Adjourned. 10:58 PST


  JSON Request/Response
   Attribute/Val XML structure adherence (carryover)

  PAP Architecture (TTL)

   REST Profile API/PolicyId/General Plan (carryover)

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]