Draft Agenda for the Document Session
It's already the night before the week of, and we haven't formed an actual draft agenda yet! Well. Let's try something a bit different this time. The following is up on the CAOPS-WG wiki, feel free to add ideas, your name next to things to do :-), etc. http://forge.gridforum.org/sf/wiki/do/viewPage/projects.caops-wg/wiki/HomePa... CAOPS-WG (Document Session) Thursday 11:00 am - 12:30 pm (Windflower Room) * Status of existing documents (5' Darcy) * OCSP document ?? * CA Auditing ?? * RA Aditing (15' Matthew Viljoen) * Certificate Contents ?? * Any other bright ideas ?? Let's form the agenda on the wiki and through discussion on the mailing list, otherwise this is going to be a short session. I think it's set up so that any one who's a member of the CAOPS-WG group can edit the wiki. Let's see. Darcy
The agenda has been updated CAOPS-WG (Document Session) Thursday 11:00 am - 12:30 pm (Windflower Room) * Status of existing documents (5' Darcy) * Authentication Service Profile (10' David Groep, Christos ??) * OCSP document (3' Free-for-all) * CA Auditing (10' Yoshio Tanaka) * RA Auditing (15' Matthew Viljoen) * Grid Certificate Profile (15' Mike Helm, David Groep ??) * Any other bright ideas ?? Please updated it on the wiki but note the updated URL: http://forge.ogf.org/sf/wiki/do/viewPage/projects.caops-wg/wiki/HomePage?_me... It is no longer available at the URL below for weird DNS reasons. Darcy Quesnel wrote:
It's already the night before the week of, and we haven't formed an actual draft agenda yet! Well.
Let's try something a bit different this time. The following is up on the CAOPS-WG wiki, feel free to add ideas, your name next to things to do :-), etc.
http://forge.gridforum.org/sf/wiki/do/viewPage/projects.caops-wg/wiki/HomePa...
CAOPS-WG (Document Session) Thursday 11:00 am - 12:30 pm (Windflower Room)
* Status of existing documents (5' Darcy) * OCSP document ?? * CA Auditing ?? * RA Aditing (15' Matthew Viljoen) * Certificate Contents ?? * Any other bright ideas ??
Let's form the agenda on the wiki and through discussion on the mailing list, otherwise this is going to be a short session. I think it's set up so that any one who's a member of the CAOPS-WG group can edit the wiki. Let's see.
Darcy
-- caops-wg mailing list caops-wg@ogf.org http://www.ogf.org/mailman/listinfo/caops-wg
Hi Darcy, We'd love to participate in the OCSP discussion, but could it be possible to establish a teleconf? Thank you! Jesus Darcy Quesnel wrote:
The agenda has been updated
CAOPS-WG (Document Session) Thursday 11:00 am - 12:30 pm (Windflower Room)
* Status of existing documents (5' Darcy) * Authentication Service Profile (10' David Groep, Christos ??) * OCSP document (3' Free-for-all) * CA Auditing (10' Yoshio Tanaka) * RA Auditing (15' Matthew Viljoen) * Grid Certificate Profile (15' Mike Helm, David Groep ??) * Any other bright ideas ??
Please updated it on the wiki but note the updated URL:
http://forge.ogf.org/sf/wiki/do/viewPage/projects.caops-wg/wiki/HomePage?_me...
It is no longer available at the URL below for weird DNS reasons.
-- <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> o o o Jesus Luna Garcia | Polytechnic University of Catalonia o o o PhD Student | Department of Computer Architecture o o o phone: +34 93 401 7187 | Campus Nord. www.ac.upc.es U P C fax: +34 93 401 7055 | C/Jordi Girona 1-3, Modul D6-116 E-mail: jluna@ac.upc.es | Barcelona 08034 SPAIN <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><>
Are these docs available online?? I want to look at it. thanks dhiva DOEGrids CA ESnet/LBNL Jesus Luna wrote:
Hi Darcy, We'd love to participate in the OCSP discussion, but could it be possible to establish a teleconf? Thank you! Jesus
Darcy Quesnel wrote:
The agenda has been updated
CAOPS-WG (Document Session) Thursday 11:00 am - 12:30 pm (Windflower Room)
* Status of existing documents (5' Darcy) * Authentication Service Profile (10' David Groep, Christos ??) * OCSP document (3' Free-for-all) * CA Auditing (10' Yoshio Tanaka) * RA Auditing (15' Matthew Viljoen) * Grid Certificate Profile (15' Mike Helm, David Groep ??) * Any other bright ideas ??
Please updated it on the wiki but note the updated URL:
http://forge.ogf.org/sf/wiki/do/viewPage/projects.caops-wg/wiki/HomePage?_me...
It is no longer available at the URL below for weird DNS reasons.
Hi Dhiva, Dhiva wrote:
Are these docs available online?? I want to look at it.
They are all in Grid Forge, under CAOPS-WG documents -> working drafts. https://forge.gridforum.org/sf/projects/caops-wg so: https://forge.gridforum.org/sf/docman/do/listDocuments/projects.caops-wg/doc... DavidG.
thanks dhiva DOEGrids CA ESnet/LBNL
Jesus Luna wrote:
Hi Darcy, We'd love to participate in the OCSP discussion, but could it be possible to establish a teleconf? Thank you! Jesus
Darcy Quesnel wrote:
The agenda has been updated
CAOPS-WG (Document Session) Thursday 11:00 am - 12:30 pm (Windflower Room)
* Status of existing documents (5' Darcy) * Authentication Service Profile (10' David Groep, Christos ??) * OCSP document (3' Free-for-all) * CA Auditing (10' Yoshio Tanaka) * RA Auditing (15' Matthew Viljoen) * Grid Certificate Profile (15' Mike Helm, David Groep ??) * Any other bright ideas ??
Please updated it on the wiki but note the updated URL:
http://forge.ogf.org/sf/wiki/do/viewPage/projects.caops-wg/wiki/HomePage?_me...
It is no longer available at the URL below for weird DNS reasons.
-- caops-wg mailing list caops-wg@ogf.org http://www.ogf.org/mailman/listinfo/caops-wg
-- David Groep ** National Institute for Nuclear and High Energy Physics, PDP/Grid group ** ** Room: H1.56 Phone: +31 20 5922179, PObox 41882, NL-1009DB Amsterdam NL **
Hi All as mentioned today, the Credential Validation Service and its associated protocol defined by the OGSA-Authz group over a year ago, performs the same functionality as Rachana's Assertion Validation Service mentioned today in the CA-OPS meeting. The protocol doc and a description of the service can be found here http://forge.gridforum.org/sf/go/doc9011?nav=1 Regards David ***************************************************************** David W. Chadwick, BSc PhD Professor of Information Systems Security The Computing Laboratory, University of Kent, Canterbury, CT2 7NF Skype Name: davidwchadwick Tel: +44 1227 82 3221 Fax +44 1227 762 811 Mobile: +44 77 96 44 7184 Email: D.W.Chadwick@kent.ac.uk Home Page: http://www.cs.kent.ac.uk/people/staff/dwc8/index.html Research Web site: http://sec.cs.kent.ac.uk Entrust key validation string: MLJ9-DU5T-HV8J PGP Key ID is 0xBC238DE5 *****************************************************************
Note this document, as David says, is SAML- and WS-Trust oriented. As he says, a similar approach could be used for PKI credential evaluation. The Naples document distributed earlier by Jesus Luna is also relevant to this and to the LoA topic. Alan On Feb 1, 2007, at 11:18 AM, David Chadwick wrote:
Alan Sill, Ph.D TIGRE Senior Scientist, High Performance Computing Center Adjunct Professor of Physics TTU ==================================================================== : Alan Sill, Texas Tech University Office: Admin 233, MS 4-1167 : : e-mail: Alan.Sill@ttu.edu ph. 806-742-4350 fax 806-742-4358 : ====================================================================
Hi Alan the fact that the draft is SAML and WS-Trust oriented is because this protocol combination was chosen by the EC TrustCoM project as workable. I am personally not religiously bound to any particular protocol. I would much prefer a protocol that works and is agreed by everyone, rather than standing by the current protocol choice. If we make the service generic enough, it should be able to take a bag of credentials and return the set of valid attributes (where one or more of these attributes can be the authenticated names or IDs of the principal). The CVS will be driven by a policy that provides the rules for how the validation proceeds. Specifying the policy is not part of the current charter of the Authz group. regards David Alan Sill wrote:
Note this document, as David says, is SAML- and WS-Trust oriented. As he says, a similar approach could be used for PKI credential evaluation.
The Naples document distributed earlier by Jesus Luna is also relevant to this and to the LoA topic.
Alan
On Feb 1, 2007, at 11:18 AM, David Chadwick wrote:
Alan Sill, Ph.D TIGRE Senior Scientist, High Performance Computing Center Adjunct Professor of Physics TTU
==================================================================== : Alan Sill, Texas Tech University Office: Admin 233, MS 4-1167 : : e-mail: Alan.Sill@ttu.edu ph. 806-742-4350 fax 806-742-4358 : ====================================================================
-- ***************************************************************** David W. Chadwick, BSc PhD Professor of Information Systems Security The Computing Laboratory, University of Kent, Canterbury, CT2 7NF Skype Name: davidwchadwick Tel: +44 1227 82 3221 Fax +44 1227 762 811 Mobile: +44 77 96 44 7184 Email: D.W.Chadwick@kent.ac.uk Home Page: http://www.cs.kent.ac.uk/people/staff/dwc8/index.html Research Web site: http://sec.cs.kent.ac.uk Entrust key validation string: MLJ9-DU5T-HV8J PGP Key ID is 0xBC238DE5 *****************************************************************
http://forge.ogf.org/sf/docman/do/listDocuments/projects.caops-wg/docman.roo... It's probably not the latest draft of the OCSP document, though. Darcy Dhiva wrote:
Are these docs available online?? I want to look at it.
thanks dhiva DOEGrids CA ESnet/LBNL
Jesus Luna wrote:
Hi Darcy, We'd love to participate in the OCSP discussion, but could it be possible to establish a teleconf? Thank you! Jesus
Darcy Quesnel wrote:
The agenda has been updated
CAOPS-WG (Document Session) Thursday 11:00 am - 12:30 pm (Windflower Room)
* Status of existing documents (5' Darcy) * Authentication Service Profile (10' David Groep, Christos ??) * OCSP document (3' Free-for-all) * CA Auditing (10' Yoshio Tanaka) * RA Auditing (15' Matthew Viljoen) * Grid Certificate Profile (15' Mike Helm, David Groep ??) * Any other bright ideas ??
Please updated it on the wiki but note the updated URL:
http://forge.ogf.org/sf/wiki/do/viewPage/projects.caops-wg/wiki/HomePage?_me...
It is no longer available at the URL below for weird DNS reasons.
Hello Darcy, In first instance it seems that the draft available from Grid Forge corresponds to the latest. However, we've got another version prepared by Milan which at least changes the format of the document... I attach the latest version of the document we've got. I'll hear from you in the teleconference! Oscar
-----Mensaje original----- De: caops-wg-bounces@ogf.org [mailto:caops-wg-bounces@ogf.org] En nombre de Darcy Quesnel Enviado el: miércoles, 31 de enero de 2007 21:36 Para: Dhiva CC: caops-wg@ggf.org Asunto: Re: [caops-wg] Draft Agenda for the Document Session
http://forge.ogf.org/sf/docman/do/listDocuments/projects.caops -wg/docman.root.working_drafts
It's probably not the latest draft of the OCSP document, though.
Darcy
Dhiva wrote:
Are these docs available online?? I want to look at it.
thanks dhiva DOEGrids CA ESnet/LBNL
Jesus Luna wrote:
Hi Darcy, We'd love to participate in the OCSP discussion, but could it be possible to establish a teleconf? Thank you! Jesus
Darcy Quesnel wrote:
The agenda has been updated
CAOPS-WG (Document Session) Thursday 11:00 am - 12:30 pm (Windflower Room)
* Status of existing documents (5' Darcy) * Authentication Service Profile (10' David Groep, Christos ??) * OCSP document (3' Free-for-all) * CA Auditing (10' Yoshio Tanaka) * RA Auditing (15' Matthew Viljoen) * Grid Certificate Profile (15' Mike Helm, David Groep ??) * Any other bright ideas ??
Please updated it on the wiki but note the updated URL:
http://forge.ogf.org/sf/wiki/do/viewPage/projects.caops-wg/wiki/Home
Page?_message=1170197844284
It is no longer available at the URL below for weird DNS reasons.
participants (7)
-
Alan Sill -
Darcy Quesnel -
David Chadwick -
David Groep -
Dhiva -
Jesus Luna -
Oscar Manso