[security-area] Security Area news

[Dane Skow]

For those of you who didn't attend GGF13, I'm happy to report we
had a very successful meeting and wish to acknowledge a good
amount of work since last Fall.

Not only were there several milestone accomplished at the meeting,
there was good wireless and plentiful electrical power in every room ;-)
Raises the bar for the upcoming meetings. As far as that goes:  GGF14
will be in Chicago June 26-29.  The datse for GGF15 are now Oct. 15-19,
the location yet to be determined, but will be a major city in
North America.

On the work front, we seem to be very close to completing the OGSA-AuthZ
specification documents (WG resolving last comments from WG last call)
and there is a team beginning to step forward to talk about the next 
generation to take
account the advances made in SAML v2.0 and XACML v2.0.  There was
a successful meeting of the GridPMA with agreement to form a Global
Federation of 3 regional accreditation groups of CAs. These groups 
continue
to grow and we are in a consolidation phase as Identity Providers 
globally
are forming peer groups to simplify life for the Relying Parties. As 
more
and more grids start interoperating, I expect we'll see more of this 
kind of
thing.

We had a number of BOFs this time and you can expect to see some
traffic on this list following up on the TrustedComputing, 
FirewallIssues,
and WS-Delegation discussions, with at least 2 of those groups intending
to submit charter proposals in the near future. There was a VPN BOF
held in the Data area and we are discussing with those organizers and 
ADs
the next steps there.

Finally, I'll point to the rapid progress being made in the OGSA Working
Group. We discussed how best to contribute to discussions about the 
security
portion of the Basic Profile and I will send a followup message 
describing
the results.

All the best from Seoul,
Dane