On-Demand Enterprise: OASIS Forms WS-Federation Committee

Real-time computing. Real-time news.

On-Demand Enterprise >> Off the Wire

May 07, 2007

OASIS Forms WS-Federation Committee

BOSTON, May 2 -- Members of the OASIS consortium have formed a new committee to advance the WS-Federation specification through the international standards process. WS-Federation aims to extend the scope of identity management, enabling federations of trust. Version 1.1 of the specification, which was created by a cooperative of eight companies, will be contributed to the new OASIS WS-Federation Technical Committee for advancement and input from the broader community.

“It's good to see WS-Federation submitted to a standards body,” said Gerry Gebel, Identity and Privacy Strategies service director at Burton Group. “We're hopeful that this move will make convergence of existing standards more likely since OASIS has also produced WS-Security, WS-Trust, WS-SecureConversation, SAML, XACML and SPML.”

“Organizations and business partners will be able to collaborate more safely and smoothly with WS-Federation,” noted Paul Cotton of Microsoft, convener of the OASIS WS-Federation Technical Committee. “Today, it often takes weeks for a company to set up user accounts and access privileges to enable their partner organizations’ staff to safely gain access to shared materials. When a project is complete, all that time and effort must be repeated in order to revoke the partner’s accounts. WS-Federation allows user accounts to continue to be owned, stored, and managed by the users' companies, and shared as needed with partner organizations, instead of relinquishing control to them or creating duplicate copies.”

The OASIS WS-Federation Technical Committee will work to simplify interactions between the participants of a federation. The group will advance capabilities for structuring and acquiring federation metadata, sign-out notifications, and the use of pseudonym and identity mapping and attribute services. In addition, the committee will enable brokered trust relationships and distributed authentication and authorization to be used in browser-based scenarios.

“WS-Federation is a method for expressing and managing trust relationships among parties sharing identity data,” explained James Bryce Clark, director of standards development for OASIS. “This specification was intended for programs that use the WS-Trust OASIS Standard for security token exchange, the WS-Policy family of methods for describing constraints and rules, and the WS-Security OASIS Standard for associating security content with SOAP messages. This set of specifications is designed to compose, together with other related standards (including WS-Reliable Messaging and the WS-Transaction OASIS Standard), as a seamless and exclusive stack of specifications for secure and reliable Web services.”

Representatives of Active Endpoints, AmberPoint, BEA Systems, BMC Software, CA, Forum Systems, HP, IBM, IONA, Novell, Microsoft, Progress Software, Red Hat, SOA Software, TIBCO, VeriSign, webMethods and others make up the OASIS WS-Federation Technical Committee. Participation remains open to all companies, non-profit groups, governments, academic institutions and individuals.

The WS-Federation Technical Committee will operate under the Royalty Free on RAND Terms mode, as defined by the OASIS Intellectual Property Rights Policy. As with all OASIS projects, archives of the Committee's work will be accessible to both members and non-members, and OASIS will host an open mail list for public comment.

For additional information on the OASIS WS-Federation Technical Committee, visit www.oasis-open.org/committees/wsfed/.

About OASIS

OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, international consortium that drives the development, convergence and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. The consortium produces open standards for Web services, security, e-business, and standardization efforts in the public sector and for application-specific markets. Founded in 1993, OASIS has more than 5,000 participants representing over 600 organizations and individual members in 100 countries. www.oasis-open.org

-----

Source: OASIS

-----

Source: OASIS

Article Tools

Share & Save Options

Discussion

There are 0 discussion items posted.

Join the Discussion

You must be a registered user in order to comment on On-Demand Enterprise stories.

Members enjoy:

	Access to Special Content, including Podcasts, Webcasts, and Whitepapers and more!
	Ability to take an active role in the discussions that are shaping the On-Demand technology discipline!
	Special offers available only to On-Demand Enterprise members!

Become a Registered User Today!

Registered Users Log in Here to Comment

Email Address:	Password (case sensitive)

Remember me	Forgot Password?

RSS Feeds

Feeds by Topic

Feeds by Content Type

Feature Articles

The Grid-Cloud Connection (Pt. II): Spare the Hype

The advent of cloud computing has drastically affected the product offerings and solutions by grid computing veterans. Everything is about flexibility, mobility, virtualization and, overall, being on-demand. However, after seeing how quickly a nebulous term can lose favor among the user community, vendors are betting on the delivery model but not necessarily the terminology.
Read More...

The Grid-Cloud Connection (Pt. I): Compare and Contrast

Burned to some degree by the confusion surrounding grid computing, many vendors have drastically cut the term from their marketing strategies. As a result, these vendors are not so quick to latch onto cloud computing. However, many of their new directions could easily fall under the cloud umbrella, and those in the know readily acknowledge that grid technologies underlie the cloud. So, what's a middleware vendor to do? How can a user tell the difference?
Read More...

Network-Attached Memory: Virtualization for Java Environments

Network-attached memory is analogous to network-attached storage (NAS) in that it provides a service to thousands of connected clients transparently. As NAS is transparent underneath the file system, network-attached memory is transparent underneath the Java language. But in Terracotta's network-attached memory pool, everything can be massively scaled out.
Read More...

Read more On-Demand Enterprise features...

Top Headlines

Developers Discuss Ways to Program in Cloud Environments

Oct 10 | SD Times | Developers are still trying to figure out just what building applications for the cloud really entails. Read more...

Putting Your Trust in the Cloud

Oct 10 | LinuxInsider | Security in cloud computing is an evolution of the age-old business model of outsourcing. Read more...

The Many Faces of Clustered Storage

Oct 10 | Byte and Switch | Clustered storage is one of the hottest buzz words in the industry, but it means different things when different vendors talk about it. Read more...

Data Warehousing in the Clouds

Oct 09 | Business Intelligence Network | Data warehousing in the clouds has the potential to enable business executives and IT departments to do more with less, work around organizational latency and compete with agility in the digital economy. Read more...