<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Consolas;
panose-1:2 11 6 9 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
pre
{mso-style-priority:99;
mso-style-link:"HTML Preformatted Char";
margin:0in;
margin-bottom:.0001pt;
font-size:10.0pt;
font-family:"Courier New";}
span.HTMLPreformattedChar
{mso-style-name:"HTML Preformatted Char";
mso-style-priority:99;
mso-style-link:"HTML Preformatted";
font-family:"Consolas",serif;}
span.EmailStyle20
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;
mso-ligatures:none;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style>
</head>
<body lang="EN-US" link="blue" vlink="purple" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal">Thanks so much for posting this for those of us who were not at Identiverse. For whomever is keeping track – interested in PEP – PDP workstream and glad to helps with scoping of charter – if needed/ not posted directly to iist for comments.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Best Regards <o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Debbie Bucci <o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<div id="mail-editor-reference-message-container">
<div>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal" style="margin-bottom:12.0pt"><b><span style="font-size:12.0pt;color:black">From:
</span></b><span style="font-size:12.0pt;color:black">policy-charter <policy-charter-bounces@lists.openid.net> on behalf of Gerry Gebel via policy-charter <policy-charter@lists.openid.net><br>
<b>Date: </b>Friday, June 16, 2023 at 11:04 AM<br>
<b>To: </b>Omri Gazitt <omri@aserto.com><br>
<b>Cc: </b>Gerry Gebel <gerry@strata.io>, Policy Charter Mail List <policy-charter@lists.openid.net><br>
<b>Subject: </b>Re: [policy-charter] Amending Identiverse 2023 notes - Take Two<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal">Omri - <o:p></o:p></p>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">There was no attachment, the notes were in a previous email that you can retrieve from the archive but I include them (corrected) here for convenience:<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">=========<o:p></o:p></p>
</div>
<div>
<pre style="white-space:pre-wrap"><span style="color:black">Hi all -<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">Here is my attempt at capturing the essence of our meeting today to discuss<o:p></o:p></span></pre>
<pre><span style="color:black">policy standardization possibilities. Feel free to correct or expand on any<o:p></o:p></span></pre>
<pre><span style="color:black">point.<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">Attendees: MUFG (Hutch), AWS (Julian, Darren, Dean), 3Edges (Alex), Nulli<o:p></o:p></span></pre>
<pre><span style="color:black">(Derek), Strata (Topher, Granville, Gerry), Microsoft (Pam, Pieter, Danny),<o:p></o:p></span></pre>
<pre><span style="color:black">Spiffe (Evan), ForgeRock (Steve), Sgnl (Atul), PlainId (Gal), OpenId<o:p></o:p></span></pre>
<pre><span style="color:black">(Scott), Independent (Allan), Okta (Vittorio), Ping Identity (Patrick), Axiomatics (David)<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">Summary<o:p></o:p></span></pre>
<pre><span style="color:black">It was agreed that two possible work streams are worthy of further<o:p></o:p></span></pre>
<pre><span style="color:black">discussion and would be valuable to the industry:<o:p></o:p></span></pre>
<pre><span style="color:black">1. The PEP - PDP communication is very similar across multiple<o:p></o:p></span></pre>
<pre><span style="color:black">implementations, such as in XACML, Open Policy Agent, Amazon Verified<o:p></o:p></span></pre>
<pre><span style="color:black">Permissions and other implementations.<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">2. Admin Policy Push: Can access policies be written in a generic format<o:p></o:p></span></pre>
<pre><span style="color:black">and translated/pushed to various runtime evaluation/enforcement systems?<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">**Note: Both of the above items would naturally include the gathering and<o:p></o:p></span></pre>
<pre><span style="color:black">documentation of relevant use cases.<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">A sampling of the discussion:<o:p></o:p></span></pre>
<pre><span style="color:black">Allan started the session by recounting that we held a similar meeting at<o:p></o:p></span></pre>
<pre><span style="color:black">Identiverse 2022 but the mailing list quickly fizzled out. However, a lot<o:p></o:p></span></pre>
<pre><span style="color:black">has happened in the past year around authorization with a renewed interest<o:p></o:p></span></pre>
<pre><span style="color:black">and focus evidenced by track topics and presentations at recent Gartner<o:p></o:p></span></pre>
<pre><span style="color:black">IAM, EIC and Identiverse conferences. In fact, Andre Durand and Alex<o:p></o:p></span></pre>
<pre><span style="color:black">Simmons spoke directly about authorization in their respective keynotes<o:p></o:p></span></pre>
<pre><span style="color:black">this week. Therefore, it seems that there must be something that this group<o:p></o:p></span></pre>
<pre><span style="color:black">of people could work together on.<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">The open discussion pretty quickly centered around the two work streams<o:p></o:p></span></pre>
<pre><span style="color:black">summarized above, since they were a couple of obvious candidates that could<o:p></o:p></span></pre>
<pre><span style="color:black">result in tangible outcomes.<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">Next steps:<o:p></o:p></span></pre>
<pre><span style="color:black">We are posting these notes to the OIDF policy charter list to see if there<o:p></o:p></span></pre>
<pre><span style="color:black">are more comments to include from the meeting or if anyone has had<o:p></o:p></span></pre>
<pre><span style="color:black">additional thoughts to share.<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">><i>From there, we will have to organize around the two streams to see who<o:p></o:p></i></span></pre>
<pre><span style="color:black">wants to actively work on each or both moving forward. I am happy to help<o:p></o:p></span></pre>
<pre><span style="color:black">organize the Admin Policy Push group - are there any volunteers for the<o:p></o:p></span></pre>
<pre><span style="color:black">PEP-PDP group?<o:p></o:p></span></pre>
<pre><span style="color:black"><o:p> </o:p></span></pre>
<pre><span style="color:black">Best regards,<o:p></o:p></span></pre>
<pre><span style="color:black">Gerry<o:p></o:p></span></pre>
<pre style="white-space:pre-wrap"><span style="color:black">=====<o:p></o:p></span></pre>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<div>
<p class="MsoNormal">On Thu, Jun 15, 2023 at 10:27 PM Omri Gazitt <<a href="mailto:omri@aserto.com">omri@aserto.com</a>> wrote:<o:p></o:p></p>
</div>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<div>
<p class="MsoNormal">I don't think the attachment made it? (I thought maybe just on my end, but the
<a href="https://lists.openid.net/pipermail/policy-charter/Week-of-Mon-20230612/000042.html" target="_blank">
listserv</a> doesn't show it either)<o:p></o:p></p>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<div>
<p class="MsoNormal">On Thu, Jun 15, 2023 at 7:50 AM Gerry Gebel via policy-charter <<a href="mailto:policy-charter@lists.openid.net" target="_blank">policy-charter@lists.openid.net</a>> wrote:<o:p></o:p></p>
</div>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<div>
<p class="MsoNormal">Hopefully this is the last correction, the attendance list also included Axiomatics (David) and Ping Identity (Patrick)<o:p></o:p></p>
<div>
<p class="MsoNormal"><br>
Gerry<o:p></o:p></p>
</div>
</div>
<p class="MsoNormal">-- <br>
policy-charter mailing list<br>
<a href="mailto:policy-charter@lists.openid.net" target="_blank">policy-charter@lists.openid.net</a><br>
<a href="https://lists.openid.net/mailman/listinfo/policy-charter" target="_blank">https://lists.openid.net/mailman/listinfo/policy-charter</a><o:p></o:p></p>
</blockquote>
</div>
</blockquote>
</div>
</div>
</div>
</div>
</body>
</html>