[ggf-ogsa-sec-wg] What are this working group's plans ?

[dane@fnal.gov]

This list continues to be quiet and I don't understand the plans of
the group. Is there anyone out there ?

There are two draft documents that were originally sent to this group
in July 2002. Are the listed authors still interested in these
documents ? Is anyone interested in moving these documents forward to
publication (either as individual submissions or as a WG submission) ?
Are they so dated they should be abandoned ? What, if anything, has
changed given the slow unveiling of the WS specifications ?

The OGSA Architecture document seems to me to have a few core points:
a) OGSA security model will be built upon Web Services standards.
b) The appropriate place for GGF OGSA security specifications is at
the "Security Services" layer of Figure 3.
c) An interoperable profile of the Federation layer and below is
needed for grid interoperability.

Is there more needed to the architecture than that ? Is there
disagreement with these core points ? What minimal set of Web Service
specifications and experiences is necessary before it makes sense to
discuss interoperable profiles ?

The "OGSA Security Roadmap" reads to me as an extended charter for the
group and outlines an (ambitious) program of work. Is that the intent
? Is there a group of people working toward that program ? Should we
use it as the beginning point for a discussion for a charter update of
this group ? Should it be considered a "call for proposals" to seed
formation of groups to address individual (classes of) service
specifications (ala what is happening with OGSA-AuthZ, rather
successfully in my opinion) ?

Personally, I think the exercise of reviewing the list of services
from the roadmap and prioritizing those needed for an OGSA grid would
be a useful exercise. Evidently, the AuthZ service is high on the list
given the work being done. The naming conventions seem also to be
important to me. Others ? Discussion ?

Dane