Skip to Content.
Sympa Menu

shibboleth-dev - shib design call, TODAY monday (6/9), 3:00 pm edt, 12:00 noon pst

Subject: Shibboleth Developers

List archive

shib design call, TODAY monday (6/9), 3:00 pm edt, 12:00 noon pst


Chronological Thread 
  • From:
  • To:
  • Subject: shib design call, TODAY monday (6/9), 3:00 pm edt, 12:00 noon pst
  • Date: Mon, 9 Jun 2003 13:56:17 -0400
Title: shib design call, TODAY monday (6/9), 3:00 pm edt, 12:00
Note (still somewhat) NEW logistics:

Phone #:  (800) 541-1710
Pin #:  0142203

Agenda items:

1) status - 1.0 release --
        - W2K/apache port -- use of winsock with onc rpc...
        - other outstanding problems?

        1.0 feature list (for marketing):

        http://stc.cis.brown.edu/~stc/Projects/Shibboleth/Beta3-v1.0/NewFeatures-v1.0.html

2) Walter's updated strawman attribute profile document:

        http://www.columbia.edu/~wassa/profile/profile.html

        *today*, we need to make decisions about naming

3) Doc -- Nate -- do you need anything?
        doc for pilot federation.....

        RSA license text

3) (if there's time) XACML question..... all things come 'round....

Sun is funding two summer interns, for XACML related work.... Sun continues to show *very strong* interest in wanting to make Shib more functional......

- an undergraduate is working on basic web server stuff (apache mod_auth module to query xacml, perhaps Perl package, perhaps GUI tools to manage simple policy....)

- a grad student came to visit me this morning... looking for a) an XACML-related  summer project, and b) a summer project that might grow  into a thesis topic.... it turns out that her advisor is peripherally involved in the Winsborough, et al Automated Trust negotiation project described over dinner in Arlington....

she had a couple of suggestions for short-term projects, but is keenly interested in feedback and suggestions: ... for the short term, she seemed very interested in finding something that is practical and is thought to be useful.....

        - traditionally, the PEP will query the PDP for 'advice". She could explore having the PDP query multiple policy stores, managed by different entities. This might involve dynamically obtaining additional attributes from the origin, if required.

        - supporting the dynamic delegation of privileges. A Shib origin typically obtains values from the user's object. in this scenario, user A (with privilege X) could delegate that privilege to user B, who in turn could delegate it to user C. User C could present this credential to the target.....

        - others?

  • shib design call, TODAY monday (6/9), 3:00 pm edt, 12:00 noon pst, Steven_Carmody, 06/09/2003

Archive powered by MHonArc 2.6.16.

Top of Page