On Fri, Jul 25, 2014 at 11:33 PM, rich levinson <rich.levinson@oracle.com> wrote:
Time: 4:30 EDT (-0400 GMT) Tel: 513-241-0892 Access Code: 65998 Minutes for 24 July 2014 TC Meeting I. Roll Call & Minutes Meeting Statistics Quorum rule 51% of voting members Achieved quorum yes Individual Attendance Contributing Members: 9 of 60 (15%) Voting Members: 9 of 11 (81%) (used for quorum calculation) Company Attendance Contributing Companies: 6 of 24 (25%) Voting Companies: 6 of 7 (85%) Meeting Attendees Spreadsheet The Boeing Company Crystal Hayes Voting Member The Boeing Company Richard Hill Voting Member Veterans Health Administration Mohammad Jafari Voting Member ViewDS Steven Legg Voting Member Oracle Rich Levinson Secretary Oracle Hal Lockhart Chair Individual Bill Parducci Chair EMC Remon Sinnema Voting Member The Boeing Company John Tolbert Voting Member bill: we have quorum Approve Minutes: 10 July 2014 - - UPDATED (2) https://lists.oasis-open.org/archives/xacml/201407/msg00009.html hal: any objection to approving minutes above? none heard, minutes approved. II. Administrivia DLP/NAC Profile uploaded (WD-07) - updated w Steven's proposed chgs: https://lists.oasis-open.org/archives/xacml/201407/msg00008.html q&a: john and steven: https://lists.oasis-open.org/archives/xacml/201407/msg00013.html https://lists.oasis-open.org/archives/xacml/201407/msg00017.html hal: what is the story w the version? steven: uploaded current version w edits. hal: MAP Authorization profile - suggestion from David on more complete Attr defns https://lists.oasis-open.org/archives/xacml/201407/msg00010.html hal: category is a runtime phenomenon: assigned @time req made. hal: steven has raised issue as to how attrs get assoc w specific categories. ex. profile should say what categories the attr can be used in. rich: attrs are independent of category, except when they are bound to category @ runtime to include in req for evaluation by policy; steven: whenever see an attr in xacml it is assoc w a category; it is combo of cat and attr id; john: want to go the way it makes sense to recipient on policy side. hal: policy is more like data modeling; i.e. profile is specific data model, list categories an attr-id might be assoc w john: not sure how it applies to subject; MAP Profile Attestations https://lists.oasis-open.org/archives/xacml/201407/msg00011.html richard hill: there are now 3 attestions for MAP Profile: https://lists.oasis-open.org/archives/xacml/201407/msg00014.html also: richard: question as to next steps: https://lists.oasis-open.org/archives/xacml/201407/msg00015.html bill: replies vote is required: https://lists.oasis-open.org/archives/xacml/201407/msg00016.html hal: additional steps/details: https://lists.oasis-open.org/archives/xacml/201407/msg00018.html motion to accept the statements of use as being appropriate richard moves: steven seconds: hal: no objections, approved ******* Richard Hill moved to accept the Statements of Use for XACML MAP Authorization Profile, Version 1.0, Committee Specification 01, approved on 07 April 2014, Do the TC members approve and accept the Statements of Use received and posted to the TC mailing list on behalf of Trust@HsH Research Group at the University of Applied Sciences and Arts, Hanover, Germany https://lists.oasis-open.org/archives/xacml/201407/msg00000.html ViewDS Identity Solutions https://lists.oasis-open.org/archives/xacml/201407/msg00002.html Juniper http://lists.oasis-open.org/archives/xacml-comment/201407/msg00004.html Axiomatics AB https://lists.oasis-open.org/archives/xacml/201407/msg00011.html as acceptable Statements of Use for XACML MAP Authorization Profile, Version 1.0, Committee Specification 01, approved on 07 April 2014 Motion was seconded by Steven Legg and accepted with unanimous consent. ******* motion to ask for elec ballot to move to oasis and make oasis std richard moves: crystal seconds: hal: no objections, approved ******* Richard: I move that the TC approve XACML MAP Authorization Profile, Version 1.0, Committee Specification 01, approved on 07 April 2014 and any associated artifacts packaged together in: http://docs.oasis-open.org/xacml/xacml-map-authz/v1.0/cs01/xacml-map-authz-v1.0-cs01.zip as a Committee Specification Draft OASIS Standard, designating the DOC version of the document as authoritative. Crystal: I second. VOTE: APPROVED unanimously ACTION: Chairs will submit to TC Admin. ********* -> hal: chairs have action to have tc admin start ballot SAML Profile WD-19: update based comment in issue section: https://lists.oasis-open.org/archives/xacml/201407/msg00020.html hal: only has typo that steven identified and erik fixed XACML Presentation - Cloud Identity Summit - any update post-presentation? https://lists.oasis-open.org/archives/xacml/201407/msg00001.html hal: david not here to discuss how it went III. Issues SAML Profile (erik: reply to comment) https://lists.oasis-open.org/archives/xacml/201407/msg00019.html IV. Additional Items john: talk about starting a scim profile to give a preview will try to come up w something that appears useful hal: scim has some "unusual" use cases; would like to see exact use case approach hal: today scim is mostly being used to provision users; how that would work w xacml is unexplored territory at the moment. john: push authorization policies around hal: protocol is simple, it is the semantics of the data model that is creating current scim issues, and where complexity resides. john: we will try to propose something and get comments Meeting adjourned approx: 5:15PM--
Thanks, Rich
Rich Levinson | Internet Standards Security Architect
Mobile: +1 978 5055017
Oracle Identity Management
45 Network Drive | Burlington, Massachusetts 01803
Oracle is committed to developing practices and products that help protect the environment
David Brossard, M.Eng, SCEA, CSTP
VP of Customer Relations
+46(0)760 25 85 75
Axiomatics AB
Skeppsbron 40
S-111 30 Stockholm, Sweden
VP of Customer Relations
+46(0)760 25 85 75
Axiomatics AB
Skeppsbron 40
S-111 30 Stockholm, Sweden