Fwd: SAML representation in GGF
I am in no way functioning as an organizer here, but would like to see all with an interest in standards-based development for attribute-based authorization as an OGSA component at the table. Please see below for your opportunities to do so. Please address comments to Hiro Kishimoto for the OGSA-WG and to Dane Skow and Olle Mulmo for the GGF Security area. (Alternate or additional destinations for these messages are welcome.) I think it is high time we engaged in positive communication on this issue. With best wishes, Alan Begin forwarded message:
From: Hiro Kishimoto <hiro.kishimoto@jp.fujitsu.com> Date: December 11, 2005 3:31:18 AM CST To: Alan Sill <Alan.Sill@ttu.edu> Cc: Von Welch <vwelch@NCSA.UIUC.EDU>, Chad La Joie <lajoie@georgetown.edu>, Frank Siebenlist <franks@mcs.anl.gov>, Dane Skow <dane@FNAL.GOV>, Mori <moritaku@bx.jp.nec.com>, David Chadwick <d.w.chadwick@kent.ac.uk>, Tom Maguire <maguire_tom@emc.com>, Savva Andreas <andreas.savva@jp.fujitsu.com> Subject: Re: SAML representation in GGF
Hi Alan,
Thank you very much for keeping the ball rolling.
The latest proposed agenda for January OGSA-WG and the fellow WGs F2F meeting is attached. You can also find this document at the GridForge.
https://forge.gridforum.org/projects/ogsa-wg/document/2006Jan-OGSA- F2F-agenda/en/3
I am organizing this week long F2F meeting. However, each session is owned by session owner. Actually, OGSA security session (including OGSA-AuthZ WG joint session) in the afternoon January 19th is expected to be prepared by OGSA-WG security design team (Frank and Takuya) and OGSA-AuthZ WG (Von, David, and Alan).
Personally, I would like to join attribute-based authorization discussion as an future OGSA security architecture.
Please draw up detailed session agenda for F2F meeting and review it at upcoming OGSA-WG and OGSA-AuthZ WG joint call on December 19.
If you have any farther question on F2F meeting, please let me know.
Thanks, ---- Hiro Kishimoto
Alan Sill wrote:
Hiro, Can you let us know about further plans within the OGSA-WG for discussions? (Apologies, this went out to the wrong address earlier.) Thanks, Alan On Dec 8, 2005, at 12:00 PM, Chad La Joie wrote:
For those that read my response to Alan, that's supposed to be caBIG fell down, not GGF. Sorry, wrong acronym popped off my stack.
Alan Sill wrote:
Hi, From my point of view as simply an AuthZ member with considerable involvement in these issues, everyone is welcome at the table and we need to have representatives from all of the important players (Shibboleth, LCG/EGEE VOBox, Open Science Grid Privilege Project, etc.) at the table as well as the SAML/XACML language people, in order to make progress. One quick correction - the F2F will be in Sunnyvale in January, not in Sacramento - my typo and mistake. How this will go forward in the Security area can be addressed by Dane. Frank S. will be at the F2F in Sunnyvale (Hiroyuki, can you please supply details?); I am not sure if I will make it but will try to connect if possible by phone. I am not the driver here, just trying to get all parties to the table and establish communication. the AuthZ portion of this OGSA meeting will be relatively small, I think. The meeting in Athens will be important, though, I believe. I will not be able to be there either due to budget reasons. One thing I will say is that one should not try to avoid controversy, but should be willing to approach things and overall the topic of attribute exchange for attribute-based authorization in the same spirit as has grown up around the CAOps process, i.e. to work in the direction of functional interoperability. In this spirit, your opinions I think are welcome. One thing that I think all participants can do before the next meetings would be to provide links to appropriate reading material. This might not be as productive a suggestion as it might sound, because I don't want people to simply take the opportunity to reinforce their own non-interoperable positions, but is worth making anyway. Dane, do you have a set of links to suggest? Hiro, what will be the agenda item on the Dec. 19 OGSA meeting for this topic, if any? (You had invited us back, but I'm not sure we will have anything further to include unless we can get engagement from the above parties in the first paragraph above. Some contacts have been identified within OSG and now Shibboleth and GridShib. Suggestions on remaining parties especially wihtin LCG would be welcome.) Thanks, Alan On Dec 8, 2005, at 8:27 AM, Chad La Joie wrote:
I think this goal is incredibly important, but I'll be up front with you. I've recently been vocal in certain forums that GGF has fallen down in this area and that's upset some of the people that would also probably be sitting at this table. So, while I'd love to be there, my presence might bother some.
So, if that's not an issue you, count me in. I'd LOVE to go to Athens, but I strongly doubt that GU will fly me out there. Sacramento [correction: Sunnyvale - ed.] would almost certainly be doable.
Alan Sill wrote:
My goal is to restart the AuthZ working group efforts on attribute-based authorization concentrating especially on the language needs (SAML 2, XACML 3) with an explicit connected goal of getting further down the road towards interoperability -- e.g., eventually a pluggable architecture for standards-based interchange of attributes that will work for OSG, EGEE, Shibboleth users, etc. An effort has been approved to hold a joint meeting on this topic at GGF16 in Athens. We need as many people as possible at the table. If you are interested, I can put you in touch with the organizers of that session. We can also invite you to the next teleconference with the OGSA - WG, or the next face-to-face on this topic in Sacramento [correction: Sunnyvale - ed.] in January.
-- Chad La Joie 315Q St. Mary's Hall OIS-Middleware 202.687.0124
==================================================================== : Alan Sill, Texas Tech University Office: Admin 233, MS 4-1167 : : e-mail: Alan.Sill@ttu.edu ph. 806-742-4350 fax 806-742-4358 : ====================================================================
participants (1)
-
Alan Sill