OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

xacml message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Minutes for 24 July 2014 TC Meeting

Time: 4:30 EDT (-0400 GMT)
Tel: 513-241-0892
Access Code: 65998

Minutes for 24 July 2014 TC Meeting

I. Roll Call & Minutes

Meeting Statistics
Quorum rule		51% of voting members
Achieved quorum		yes
Individual Attendance	Contributing Members: 9 of 60 (15%) 
Voting Members: 	9 of 11 (81%) (used for quorum calculation) 
Company Attendance	Contributing Companies: 6 of 24 (25%) 
Voting Companies: 	6 of 7 (85%) 

Meeting Attendees   Spreadsheet
The Boeing Company		Crystal Hayes	Voting Member
The Boeing Company		Richard Hill	Voting Member
Veterans Health Administration	Mohammad Jafari	Voting Member
ViewDS				Steven Legg	Voting Member
Oracle				Rich Levinson	Secretary
Oracle				Hal Lockhart	Chair
Individual			Bill Parducci	Chair
EMC				Remon Sinnema	Voting Member
The Boeing Company		John Tolbert	Voting Member

    bill: we have quorum

  Approve Minutes:
   10 July 2014 - - UPDATED (2)

    hal: any objection to approving minutes above? none heard, minutes approved.

II. Administrivia

  DLP/NAC Profile uploaded (WD-07) - updated w Steven's proposed chgs:
   q&a: john and steven:

    hal: what is the story w the version?
    steven: uploaded current version w edits.


  MAP Authorization profile - suggestion from David on more complete Attr defns

     hal: category is a runtime phenomenon: assigned @time req made.

     hal: steven has raised issue as to how attrs get assoc w specific
	categories. ex. profile should say what categories the attr
	can be used in.

     rich: attrs are independent of category, except when they are bound
	to category @ runtime to include in req for evaluation by

     steven: whenever see an attr in xacml it is assoc w a category;
	it is combo of cat and attr id;

     john: want to go the way it makes sense to recipient on policy side.

     hal: policy is more like data modeling; i.e. profile is specific
	data model, list categories an attr-id might be assoc w

     john: not sure how it applies to subject;

  MAP Profile Attestations
   richard hill: there are now 3 attestions for MAP Profile:
    also: richard: question as to next steps:
     bill: replies vote is required:
     hal: additional steps/details:

    motion to accept the statements of use as being appropriate
      richard moves:
      steven seconds:
    hal: no objections, approved

    Richard Hill moved to accept the Statements of Use for XACML MAP Authorization Profile,
     Version 1.0, Committee Specification 01, approved on 07 April 2014,

    Do the TC members approve and accept the Statements of Use received and posted
     to the TC mailing list on behalf of

      Trust@HsH Research Group at the University of Applied Sciences and Arts, Hanover, Germany
      ViewDS Identity Solutions 
      Axiomatics AB

    as acceptable Statements of Use for XACML MAP Authorization Profile,
      Version 1.0, Committee Specification 01, approved on 07 April 2014

    Motion was seconded by Steven Legg and accepted with unanimous consent.

    motion to ask for elec ballot to move to oasis and make oasis std
      richard moves:
      crystal seconds:
    hal: no objections, approved

    I move that the TC approve XACML MAP Authorization Profile,
      Version 1.0, Committee Specification 01, approved on 07 April 2014
     and any associated artifacts packaged together in:
    as a Committee Specification Draft OASIS Standard, designating the DOC version of the document
    as authoritative.
   Crystal: I second.
   VOTE: APPROVED unanimously
   ACTION: Chairs will submit to TC Admin.
 ->    hal: chairs have action to have tc admin start ballot

  SAML Profile WD-19: update based comment in issue section:

  hal: only has typo that steven identified and erik fixed

  XACML Presentation - Cloud Identity Summit - any update post-presentation?

   hal: david not here to discuss how it went

III. Issues

  SAML Profile (erik: reply to comment)

IV. Additional Items

   john: talk about starting a scim profile
     to give a preview will try to come up w something that appears useful

   hal: scim has some "unusual" use cases; would like to see exact use case approach

   hal: today scim is mostly being used to provision users; how that would work
         w xacml is unexplored territory at the moment.

   john: push authorization policies around

   hal: protocol is simple, it is the semantics of the data model that
         is creating current scim issues, and where complexity resides.

   john: we will try to propose something and get comments

Meeting adjourned approx: 5:15PM

Thanks, Rich

Rich Levinson | Internet Standards Security Architect
Mobile: +1 978 5055017
Oracle Identity Management
45 Network Drive | Burlington, Massachusetts 01803

            Oracle Oracle is committed to developing practices and products that help protect the environment

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]