[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [ggf-ogsa-sec-wg] Working towards the WG deliverables:archtitecture and roadmap

To: Nataraj Nagaratnam <natarajn@us.ibm.com>
Subject: Re: [ggf-ogsa-sec-wg] Working towards the WG deliverables:archtitecture and roadmap
From: Dane Skow <dane@fnal.gov>
Date: Mon, 05 Apr 2004 16:19:36 -0500
Cc: ogsa-sec-wg@ggf.org
In-reply-to: <OF3465E0F3.9EEF76E6-ON85256E5B.0053132E-85256E5B.0053EE51@us.ibm.com>
References: <OF3465E0F3.9EEF76E6-ON85256E5B.0053132E-85256E5B.0053EE51@us.ibm.com>
Sender: owner-ogsa-sec-wg@gridforum.org
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4)Gecko/20030624

Nataraj Nagaratnam wrote:

The primary outcome of the OGSA Security WG were to be two documents:

   1. "The Security Architecture for Open Grid Services":  This
      document will describe a security architecture intended to be
      consistent with the security model that is currently being
      defined for the Web Services framework used to realize OGSA's
      service-oriented architecture.

To my mind this is the critical document (the roadmap falls out of this and where people
vote with their feet on what they're willing to work on).

The relevant documents for this Security Architecture to integrate in with then would
seem to be the OGSA Draft Recommendations document (current version available at
https://forge.gridforum.org/projects/ogsa-wg/document/draft-ggf-ogsa-spec/en/14)
and the Web Services Architecture document (http://www.w3.org/TR/ws-arch/).
Both of these are aimed at a more specific architecture description than that attempted
by the current draft Informational document. However,
if we're aiming more at a Recommendations level description in enough detail
that would allow for tests as to whether or not something was "OGSA compliant" (what I
read in the abstract),
then I think we have some top-level structural changes ahead for the document. Which
way do folks want to go ?

To my mind the current draft splits neatly into 3rds: p1-9 are introduction, p10-22
are the model/architecture, p22-28 are context. What portions of the intro still need
to be kept now that OGSA is no longer just a potential architecture ? Can/should
the requirements be referenced to other GGF documents ? Is the challenge discussion
necessary at all ? (can we presume that this document is to be read after the OGSA
architecture document ?)

I would propose the immediate discussion focus on the central section on fleshing out
the model. Is it correct to consider the 9 subsections of Section 6 to be the authors proposed
major components of the model ? At a high level, I don't see a clear description of how these
components interact in the draft. Figure 2 seems to pull in a number of other elements. Can someone elaborate on what's intended here ?

For the usage scenarios, the OGSA-WG has spent a lot of time on scenario development.
Should we use/reference/expand one of those for the security example ? Is that need
already being addressed and thus can be removed from this document ? Is it sufficient ?
As another source of scenarios being used for pedagogy,
the Web Services Interoperability group have recently released their first draft of the
basic security scenarios at http://www.ws-i.org/Profiles/BasicSecurity/2004-02/SecurityScenarios-0.15-WGD.pdf

I think that last decision can await conclusion of the Model section, but its development should
be informed by the efforts above.

Dane

Follow-Ups:
- Re: [ggf-ogsa-sec-wg] Working towards the WG deliverables: archtitectureand roadmap
  - From: Nataraj Nagaratnam <natarajn@us.ibm.com>

Next by Date: Re: [ggf-ogsa-sec-wg] Working towards the WG deliverables: archtitectureand roadmap
Next by thread: Re: [ggf-ogsa-sec-wg] Working towards the WG deliverables: archtitectureand roadmap
Index(es):
- Date
- Thread