Dear WG
I would like to draw up a table of implementations of the 3 protocol
profile docs that we have published (XACML, WS-Trust and SAML AA).
The information that would be useful for the group is
Profile being implemented:
Organisation doing the implementation:
Contact details:
Short description:
(the latter to contain such things as status of implementation, any
interworking carried out, where software might be obtained etc. Whatever
you feel is appropriate for the WG)
regards
David
--
*****************************************************************
David W. Chadwick, BSc PhD
Professor of Information Systems Security
The Computing Laboratory, University of Kent, Canterbury, CT2 7NF
Skype Name: davidwchadwick
Tel: +44 1227 82 3221
Fax +44 1227 762 811
Mobile: +44 77 96 44 7184
Email: D.W.Chadwick(a)kent.ac.uk
Home Page: http://www.cs.kent.ac.uk/people/staff/dwc8/index.html
Research Web site: http://www.cs.kent.ac.uk/research/groups/iss/index.html
Entrust key validation string: MLJ9-DU5T-HV8J
PGP Key ID is 0xBC238DE5
*****************************************************************
FYI, the OASIS SAML V2.0 Deployment Profiles for X.509 Subjects was
recently voted to Committee Specification status:
http://wiki.oasis-open.org/security/SstcSaml2X509ProfilesDeploy
Briefly, the life of an OASIS document is as follows:
Working Draft ==> Committee Draft ==> 60-day Public Review ==>
Committee Specification ==> Attestations ==> OASIS Standard
Before a Committee Specification can be considered as an OASIS
Standard, three OASIS member organizations must attest to have
implemented the Specification. In the case of the Deployment Profiles
for X.509 Subjects, I don't believe three such attestations exist, so
I predict the document is destined to go no higher than Committee
Specification. I mention this because it may have some bearing on an
issue being discussed in another thread.
Tom Scavo
NCSA
Dear WG
the final version of Use of XACML Request Context to Obtain an
Authorisation Decision has now been stored on gridforum at
https://forge.gridforum.org/sf/go/doc15169?nav=1
This is the version that in the opinion of the authors is ready for
public comment. With this message I am announcing the 7 day WG review
period, so that the doc can be sent to the OGF editor next week ready
for it to start the 60 day public review period.
Changes since the last version are as agreed at the OGF22 meeting and
are as follows:
i) move attribute definitions and obligations definitions to
non-normative annexes
ii) add a security section placing requirements on authn and
confidentiality.
Note that the latter are a little different to those in Chad La Joie's
SWITCH document, so the OGS/EGEE/GT folk who are familiar with Chad's
work may want to comment on the differences in the next 7 days.
regards
David
*****************************************************************
David W. Chadwick, BSc PhD
Professor of Information Systems Security
The Computing Laboratory, University of Kent, Canterbury, CT2 7NF
Skype Name: davidwchadwick
Tel: +44 1227 82 3221
Fax +44 1227 762 811
Mobile: +44 77 96 44 7184
Email: D.W.Chadwick(a)kent.ac.uk
Home Page: http://www.cs.kent.ac.uk/people/staff/dwc8/index.html
Research Web site: http://www.cs.kent.ac.uk/research/groups/iss/index.html
Entrust key validation string: MLJ9-DU5T-HV8J
PGP Key ID is 0xBC238DE5
*****************************************************************
