[OGSA-AUTHZ] OGSA-Authz-WG draft meeting minutes: OGF Jan 29 session
Takuya Mori
moritaku at bx.jp.nec.com
Wed Jan 31 13:05:42 CST 2007
Hi Von, David,
Please find my slides in the attachement.
> > * Takuyi Mori presentation on NAREGI Authz Service and NAREGI XACML
Please correct my name to "Takuya Mori".
Thank you,
> > profile Slides will be sent to the email list SAML 2.0 and XACML 2.0
> > based Uses GT authz framework Profile between Authz service client
> > (in GT4) and Authz CVS Handles VOMS AC's and passes to Authz service
> > Presented mapping of attributes from X.509 EEC/VOMS AC into XACML
> > Resource Attribute Filtering Mechanism (RAFM) - Reference properties,
> > XACML profile has Subject, Resource and Action attributes
>
> There is an issue as to how a resource's attributes are obtained by the
> PEP. If the user submits them to the PEP there is a potential trust
> issue here, and the attributes will need to validated by the CVS. If the
> PEP obtains them itself from a local store this is not an issue.
Yes, this is an open issue. I'll write the detail on the RAFM
and send it to the list.
----
Takuya Mori
moritaku at bx.jp.nec.com / tk-mori at isd.nec.co.jp
System Platform Software Development Division
NEC Corporation, Tokyo Japan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: NRG-AUTHZ-070129.pdf
Type: application/pdf
Size: 144144 bytes
Desc: not available
Url : http://www.ogf.org/pipermail/ogsa-authz-wg/attachments/20070201/2977a396/attachment-0001.pdf
More information about the ogsa-authz-wg
mailing list