From: Tolbert, John W [mailto:firstname.lastname@example.org]
Sent: Tuesday, May 28, 2013 3:47 PM
To: Hal Lockhart; email@example.com
Subject: RE: [xacml] FW: Draft Special Publication 800-162, Guide to Attribute Based Access Control (ABAC) Definition and Considerations
I think this should be omitted from Section 2 (ABAC): Unfortunately, without a formal definition and implementation guidance, the user and technology communities started implementing ABAC solutions and defining new versions of advanced access control models based upon the XACML model without a common understanding or definition of ABAC.
Sections 188.8.131.52 and 184.108.40.206 should acknowledge and recommend the use of domain specific attribute taxonomies, such as XACML EC-US, IPC, XSPA, and TSCP BAILS.
Section 220.127.116.11 could benefit from a description of the Advice element.
Lastly, I think the TC should advocate for stronger terms in section 18.104.22.168 regarding a recommendation for using XACML for ABAC.
Time is short if the TC plans to comment on this before the deadline.
John can you identity any particular parts or aspects of this document which it might appropriate for the TC to comment on?
Perhaps if members can focus their attention on specific issues, we may get a bit more discussion.
FYI, those of us involved with OpenAz will be making a comment on behalf of that project relating to Enablement and Interoperability.
NIST Draft Special Publication 800-162, Guide to Attribute Based Access Control (ABAC) Definition and Considerations is NOW available for review/comment. If you would like to submit comments to this draft document, below are the necessary details:
URL to the full announcement of Draft SP 800-162:
Deadline to submit comments is: MAY 31, 2013.
Email address to submit comments to: