All,

I would like to share with you the attached strawman profile documents regarding OGSA secure communication.  Collectively these three strawman documents comprise what, up until now, we've been colloquially referring to as the "OGSA Express Authentication Profile."  (Other suggestions for what to name this trio, or for the profile documents themselves, are welcome.)

The three profile documents are intended to be complementary:

• OGSA Security Profile 2.0 - Secure Addressing document profiles the disclosure of secure communication requirements (and ancillary tokens/data) within endpoint references.  Many of the ideas and mechanisms in this document have been adapted from (and therefore should provide semantic compatibility with) the OGSA Basic Security Profile 1.0 - Core and Liberty Alliance ID-WSF security documents.
  

• OGSA Security Profile 2.0 - Secure Transport document profiles the use of transport layer security within the OGSA context.  Many of the ideas and mechanisms in this document have been adapted from (and therefore should provide semantic compatibility with) the OGSA Security Profile 1.0 - Secure Channel.
  

• OGSA Security Profile 2.0 - Secure SOAP Messaging document profiles the use of message layer security within the OGSA context.  This document is primarily an extension and refinement of the WS-I Basic Security Profile 1.0.  A crucial characteristic of this document is the extensibility provisioning for additional message-level authentication tokens/schemes.
  

Also attached is a OGSA secure-communication use-case document that motivates the requirements and capabilities afforded by these profiles.

Looking forward to discussing these with everyone next week!

Regards,

Duane

____________________________
Duane Merrill
dgm4d@cs.virginia.edu
UVa Computer Science Department