For Web services to emerge beyond the brochure, customers will need to see an open architectural model that works - and that includes a standards-based security framework. Standards organizations provide the open, vendor-neutral environment necessary to resolve critical, often sensitive issues related to security. The Forum on Security Standards for Web Services is designed to provide an overview of the Web foundation work currently being accomplished at W3C, including XML-SIG, XKMS, Xenc, its model for Web Services Architecture and the security segment; and the set of security-related technologies at OASIS, including SAML, WS-Security, and standards for access control, provisioning, biometrics and digital rights. Attendees will gain greater understanding of the relationship between these specifications and receive insights on future work, connects, disconnects, overlap and synchronicity.
Forum on Security Standards for Web Services
Program chairs: Karl Best, OASIS; and Janet Daly, W3C
9:00-9:30am
Welcome by program chairs and by OASIS and W3C management
Patrick Gannon, OASIS CEO
Steve Bratt, W3C COO
9:30-10:15am
Technical plenary. Why are security standards necessary for Web services? How do the pieces fit together?
Phillip Hallam-Baker, Verisign
10:15-10:30am
Break
10:30am-12:30pm
Use cases and requirements. Presentations from various industries who use security standards for web services.
12:30-1:30pm
Lunch
1:30-3:30pm
Overview of the security standards.
3:30-3:45pm
Break
3:45-4:30
Expert panel. A response to the use cases/requirements and the specifications. Do they match? What's missing?
Moderated by Eve Maler, Sun Microsystems
Panelists:
4:30-5:00pm
Audience reaction and feedback.
5:00-5:15pm
Closing statements from conference sponsors.