[policy-charter] Amending Identiverse 2023 notes - Take Two

Fri Jun 16 15:21:28 UTC 2023

Thanks so much for posting this for those of us who were not at Identiverse.  For whomever is keeping track – interested in PEP – PDP workstream  and glad to helps with scoping of charter – if needed/ not posted directly to iist for comments.

Best Regards

Debbie Bucci

From: policy-charter <policy-charter-bounces at lists.openid.net> on behalf of Gerry Gebel via policy-charter <policy-charter at lists.openid.net>
Date: Friday, June 16, 2023 at 11:04 AM
To: Omri Gazitt <omri at aserto.com>
Cc: Gerry Gebel <gerry at strata.io>, Policy Charter Mail List <policy-charter at lists.openid.net>
Subject: Re: [policy-charter] Amending Identiverse 2023 notes - Take Two
Omri -

There was no attachment, the notes were in a previous email that you can retrieve from the archive but I include them (corrected) here for convenience:

=========

Hi all -

Here is my attempt at capturing the essence of our meeting today to discuss

policy standardization possibilities. Feel free to correct or expand on any

point.

Attendees: MUFG (Hutch), AWS (Julian, Darren, Dean), 3Edges (Alex), Nulli

(Derek), Strata (Topher, Granville, Gerry), Microsoft (Pam, Pieter, Danny),

Spiffe (Evan), ForgeRock (Steve), Sgnl (Atul), PlainId (Gal), OpenId

(Scott), Independent (Allan), Okta (Vittorio), Ping Identity (Patrick), Axiomatics (David)

Summary

It was agreed that two possible work streams are worthy of further

discussion and would be valuable to the industry:

1. The PEP - PDP communication is very similar across multiple

implementations, such as in XACML, Open Policy Agent, Amazon Verified

Permissions and other implementations.

2. Admin Policy Push: Can access policies be written in a generic format

and translated/pushed to various runtime evaluation/enforcement systems?

**Note: Both of the above items would naturally include the gathering and

documentation of relevant use cases.

A sampling of the discussion:

Allan started the session by recounting that we held a similar meeting at

Identiverse 2022 but the mailing list quickly fizzled out. However, a lot

has happened in the past year around authorization with a renewed interest

and focus evidenced by track topics and presentations at recent Gartner

IAM, EIC and Identiverse conferences. In fact, Andre Durand and Alex

Simmons spoke directly about authorization in their respective keynotes

this week. Therefore, it seems that there must be something that this group

of people could work together on.

The open discussion pretty quickly centered around the two work streams

summarized above, since they were a couple of obvious candidates that could

result in tangible outcomes.

Next steps:

We are posting these notes to the OIDF policy charter list to see if there

are more comments to include from the meeting or if anyone has had

additional thoughts to share.

>From there, we will have to organize around the two streams to see who

wants to actively work on each or both moving forward. I am happy to help

organize the Admin Policy Push group - are there any volunteers for the

PEP-PDP group?

Best regards,

Gerry

=====

On Thu, Jun 15, 2023 at 10:27 PM Omri Gazitt <omri at aserto.com<mailto:omri at aserto.com>> wrote:
I don't think the attachment made it? (I thought maybe just on my end, but the listserv<https://lists.openid.net/pipermail/policy-charter/Week-of-Mon-20230612/000042.html> doesn't show it either)

On Thu, Jun 15, 2023 at 7:50 AM Gerry Gebel via policy-charter <policy-charter at lists.openid.net<mailto:policy-charter at lists.openid.net>> wrote:
Hopefully this is the last correction, the attendance list also included Axiomatics (David) and Ping Identity (Patrick)

Gerry
--
policy-charter mailing list
policy-charter at lists.openid.net<mailto:policy-charter at lists.openid.net>
https://lists.openid.net/mailman/listinfo/policy-charter
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/policy-charter/attachments/20230616/01399403/attachment-0001.html>