For Web services to emerge beyond the brochure, customers will need to see an open architectural model that works - and that includes a standards-based security framework. Standards organizations provide the open, vendor-neutral environment necessary to resolve critical, often sensitive issues related to security. The Forum on Security Standards for Web Services is designed to provide an overview of the Web foundation work currently being accomplished at W3C, including XML-SIG, XKMS, Xenc, its model for Web Services Architecture and the security segment; and the set of security-related technologies at OASIS, including SAML, WS-Security, and standards for access control, provisioning, biometrics and digital rights. Attendees will gain greater understanding of the relationship between these specifications and receive insights on future work, connects, disconnects, overlap and synchronicity.
Forum on Security Standards for Web Services
Program chairs: Karl Best, OASIS; and Janet Daly, W3C
Welcome by program chairs and by OASIS and W3C management
Patrick Gannon, OASIS CEO
Steve Bratt, W3C COO
Technical plenary. Why are security standards necessary for Web services? How do the pieces fit together?
Phillip Hallam-Baker, Verisign
Use cases and requirements. Presentations from various industries who use security standards for web services.
Overview of the security standards.
Expert panel. A response to the use cases/requirements and the specifications. Do they match? What's missing?
Moderated by Eve Maler, Sun Microsystems
Audience reaction and feedback.
Closing statements from conference sponsors.