From: Hill, Richard C [mailto:Richard.C.Hill@boeing.com]
Sent: Tuesday, September 16, 2014 5:24 PM
Subject: [xacml] RE: RSA XACML Interop Participation Request
I would like to give an update on the RSA XACML Interop:
1.) Juniper would like participate in the MAP Authorization interop in addition to the University of Applied Sciences at Hochschule Hannover. Both will provide a MAP server and send XACML requests to a PDP for access decisions. So far ViewDS has expressed interest in participating. Is anyone else interested in participating in this interop?
2.) Is there an interest in a JSON/REST interop?
I would like to follow up to see which TC members are interested in participating in a 2015 RSA XACML interop. There were two opportunities proposed at the last XACML TC meeting:
1.) Interop based on the XACML MAP Authorization profile. This interop would demonstrate how a TCG TNC compliant MAP server could delegate its access decisions to an external XACML PDP. The University of Applied Sciences at Hochschule Hannover has agreed to participate in the interop using their open source IRON project MAP server (http://trust.f4.hs-hannover.de/projects/iron.html). Another MAP server vendor may also be willing to participate (TBD). MAP access authorization XACML policies will be provided to the XACML PDP product companies that wish to participate to help facilitate the demonstration.
2.) Interop based on the XACML DLP-NAC profile. This interop would demonstrate how an XACML PDP could enforce DLP & NAC policies. Although John Tolbert is looking into potential vendor products that could participate, suggestions are welcome on what other vendors outside the TC that might be interested in participating in the DLP-NAC interop.
If interested TC members would like to participate in one or both 2015 RSA XACML interops, please post your interest to the XACML TC list or contact John or me directly.