All, I would like to share with you the attached strawman profile documents regarding OGSA secure communication. Collectively these three strawman documents comprise what, up until now, we've been colloquially referring to as the "OGSA Express Authentication Profile." (Other suggestions for what to name this trio, or for the profile documents themselves, are welcome.) The three profile documents are intended to be complementary: * /OGSA Security Profile 2.0 - Secure Addressing/ document profiles the disclosure of secure communication requirements (and ancillary tokens/data) within endpoint references. Many of the ideas and mechanisms in this document have been adapted from (and therefore should provide semantic compatibility with) the /OGSA Basic Security Profile 1.0 - Core /and Liberty Alliance ID-WSF security documents. * /OGSA Security Profile 2.0 - Secure Transport/ document profiles the use of transport layer security within the OGSA context. Many of the ideas and mechanisms in this document have been adapted from (and therefore should provide semantic compatibility with) the /OGSA Security Profile 1.0 - Secure Channel. / * /OGSA Security Profile 2.0 - Secure SOAP Messaging/ document profiles the use of message layer security within the OGSA context. This document is primarily an extension and refinement of the /WS-I Basic Security Profile 1.0/. A crucial characteristic of this document is the extensibility provisioning for additional message-level authentication tokens/schemes. Also attached is a OGSA secure-communication use-case document that motivates the requirements and capabilities afforded by these profiles. Looking forward to discussing these with everyone next week! Regards, Duane ____________________________ Duane Merrill dgm4d@cs.virginia.edu UVa Computer Science Department