[Prev]

10.2.5 Enhanced transparency

TAS³ shall ensure that, as a rule, no operation upon personal data will be authorized within the TAS³ network without the prior consent of the data subject [SEW14].

As described in section of 3.2 of D6.2, notice and consent typically only provide ex ante transparency towards the data subject. The data subject usually has no or only limited means of verifying whether or not the data recipient has adhered to the asserted or negotiated policies.

TAS³ will enhance transparency towards the data subject by providing him with the opportunity to verify after the fact [SEW15] which actions upon his personal data have taken place. Due to the advanced level of security and accountability mechanisms applied throughout the TAS³ network, the user will be able to obtain a much higher degree of assurance that his privacy preferences have in fact been adhered to.

See deliverable D2.1 (dashboard)

References

[AAPML]: Prateek Mishra, ed.: "AAPML: Attribute Authority Policy Markup Language", Working Draft 08, Nov. 28, 2006, Liberty Alliance / Oracle. http://www.oracle.com/technology/tech/standards/idm/igf/pdf/IGF-AAPML-spec-08.pdf
[AcctSvc]: "Liberty ID-WSF Accounting Service Specification"
[AdvClient]: "Liberty ID-WSF Advanced Client Technologies Overview", liberty-idwsf-adv-client-v1.0.pdf
[AeGArch07]: "D3.1 Access-eGov Platform Architecture", Access-eGov consortium, Feb 12, 2007. http://www.accessegov.org/acegov/uploadedFiles/webfiles/cffile\_4\_3\_07\_3\_25\_17\_PM.pdf, also http://www.accessegov.org/acegov/web/uk/index.jsp?id=50268
[Alberts01]: Alberts, C. J., \& Dorofee, A. J. (2001). OCTAVE Criteria Version 2.0. Tech. report CMU/SEI-2001-TR-016. ESC-TR-2001-016.
[AMQP06]: "AMQP: A General-Purpose Middleware Standard" (a.k.a Advanced Message Queueing Protocol), 2006.
[Anderson07]: Anne Anderson: "Web Services Profile of XACML (WS-XACML) Version 1.0", Working Draft 10, OASIS XACML Technical Committee, 10 August 2007, available at http://www.oasis-open.org/committees/download.php/24950/xacml-3.0-profile-webservices-v1-wd-10.zip
[BraberEA07]: Den Braber, F., Hogganvik, I., Lund, M. S., Stølen, K., \& Vraalsen, F. (2007). Model-based security analysis in seven steps - a guided tour to the CORAS method. BT Technology Journal, 25(1), pp. 101-117.
[CardSpace]: InfoCard protocol (aka CardSpace) from Microsoft
[CARML]: Phil Hunt and Prateek Mishra, eds.: "Liberty IGF Client Attribute Requirements Markup Language (CARML) Specification", Draft 1.0-12, Liberty Alliance, 2008. http://www.projectliberty.org/liberty/resource\_center/specifications/igf\_1\_0\_specs
[Castano07]: Castano, S., Ferrara, A., Montanelli, S., Hess, G. N., and Bruno, S. (2007). State of the art on ontology coordination and matching. Report FP6-027538, BOEMIE.
[Chadwick08]: David Chadwick: "Functional Components of Grid Service Provider Authorisation Service Middleware", Open Grid Forum, 17 September, 2008. (*** AuthzFunc0.7.doc)
[Chadwick09]: David Chadwick: "FileSpace - An Alternative to CardSpace that supports Multiple Token Authorisation and Portability Between Device". Presented at IDtrust 2009, the 8th Symposium on Identity and Trust on the Internet, NIST, Gaithersberg, April 2009. Available from http://middleware.internet2.edu/idtrust/2009/papers/08-chadwick-filespace.pdf
[ChadwickEA09]: David W Chadwick, Sassa Otenko and Tuan Anh Nguyen. "Adding Support to XACML for Multi-Domain User to User Dynamic Delegation of Authority". International Journal of Information Security. Volume 8, Number 2 / April, 2009 pp 137-152. DOI 10.1007/s10207-008-0073-y
[ChadwickEA09b]: David W Chadwick, Linying Su, Romain Laborde: "Use of XACML Request Context to Obtain an Authorisation Decision". GFD.159. 13 November 2009. Available from http://www.ogf.org/documents/GFD.159.pdf
[ChadwickSu09]: David Chadwick, Linying Su: "Use of WS-TRUST and SAML to access a Credential Validation Service". GFD.157. 13 November 2009. Available from http://www.ogf.org/documents/GFD.157.pdf
[CogWalkthruWeb]: http://www.cc.gatech.edu/classes/cs3302/documents/cog.walk.html
[CVS-SAML-WS-Trust]: David Chadwick and Linying Su: "Use of WS-TRUST and SAML to access a Credential Validation Service", Open Grid Forum, 2008. (*** WS-TrustProfile0.8.doc)
[DahlEA07]: Dahl, H., Hogganvik, I., \& Stølen, K. (2007). Structured semantics for the CORAS security risk modelling language. Pre-proceedings of the 2nd International Workshop on Interoperability Solutions on Trust, Security, Policies and QoS for Enhanced Enterprise Systems (IS-TSPQ'07), (pp. 79-92).
[DesignPat]: "Liberty ID-WSF Design Patterns", liberty-idwsf-dp-v1.0.pdf
[Dieng98]: Dieng, R. and Hug, S. (1998). Comparison of "personal ontologies" represented through conceptual graphs. In Proceedings of the 13th European Conference on Artificial Intelligence (ECAI 98), pages 341-345, Brighton, UK.
[Disco2]: Cahill, ed.: "Liberty ID-WSF Discovery service 2.0", liberty-idwsf-disco-svc-2.0-errata-v1.0.pdf from http://projectliberty.org/resource\_center/
[Disco12]: Liberty ID-WSF Discovery service 1.2 (liberty-idwsf-disco-svc-v1.2.pdf)
[DST11]: Liberty DST v1.1
[DST21]: Sampo Kellomäki and Jukka Kainulainen, eds.: "Liberty Data Services Template 2.1", Liberty Alliance, 2007. liberty-idwsf-dst-v2.1.pdf from http://projectliberty.org/resource\_center/specifications/
[DST20]: Sampo Kellomäki and Jukka Kainulainen, eds.: "Liberty DST v2.0", Liberty Alliance, 2006.
[Enisa10]: Inventory of Risk Management / Risk Assessment Methods. http://rm-inv.enisa.europa.eu/rm\_ra\_methods.html (fethced 25.6.2010)
[FF12]: Liberty ID Federation Framework 1.2, Protocols and Schemas
[FMC03]: Frank Keller, Siegfried Wendt: "FMC: An Approach Towards Architecture-Centric System Development", Hasso Plattner Institute for Software Systems Engineering, 2003.
[FMCWeb]: "Fundamental Modeling Concepts" http://fmc-modeling.org/
[GiraoSarma10]: João Girão and Amardeo Sarma: "IDentity Engineered Architecture (IDEA)", in Towards the Future Internet, G. Tselentis et al. (Eds.), IOS Press, 2010. (STAL9781607505396-0085.pdf)
[HafnerBreu09]: Hafner \& Breu: "Security Engineering for Service-Oriented Architectures", Springer, 2009.
[Hardt09]: Dick Hardt and Yaron Goland: "Simple Web Token (SWT)", Version 0.9.5.1, Microsoft, Nov. 4, 2009 (SWT-v0.9.5.1.pdf)
[IAF]: Russ Cutler, ed.: "Identity Assurance Framework", Liberty Alliance, 2007. File: liberty-identity-assurance-framework-v1.0.pdf (from http://projectliberty.org/liberty/resource\_center/papers)
[ICAMSAML2]: Terry McBride and Dave Silver, eds.: "Federal Identity, Credentialing, and Access Management Security Assertions Markup Language (SAML) 2.0 Profile", version 0.1.0 draft, Feb 17, 2010, Federal-ICAMSC-SAML-20-Profile-Draftv010-36529.pdf
[IDDAP]: Sampo Kellomäki, ed.: "Liberty Identity based Directory Access Protocol", Liberty Alliance, 2007.
[IDFF12]: http://www.projectliberty.org/resources/specifications.php
[IDFF12meta]: Peted Davis, ed., "Liberty Metadata Description and Discovery Specification", version 1.1, Liberty Alliance Project, 2004. (liberty-metadata-v1.1.pdf)
[IDPP]: Sampo Kellomäki, ed.: "Liberty Personal Profile specification", Liberty Alliance, 2003.
[IDWSF08]: Conor Cahill et al.: "Liberty Alliance Web Services Framework: A Technical Overview", Liberty Alliance, 2008. File: idwsf-intro-v1.0.pdf (from http://projectliberty.org/liberty/resource\_center/papers)
[IDWSF2IOP]: Eric Tiffany, ed.:"Liberty ID-WSF 2.0 Interoperability Testing Procedures", Version Draft 1.0-01, 16. Aug. 2006. File: ID-WSF-2-0-TestProcedures-v1-01.pdf, from http://projectliberty.org/
[IDWSF2MRD]: "Liberty ID-WSF 2.0 Marketing Requirements Document", Liberty Alliance, 2006. File: liberty-idwsf-2.0-mrd-v1.0.pdf (from http://projectliberty.org/liberty/strategic\_initiatives/requirements/)
[IDWSF2Overview]: "Liberty ID-WSF Architecture Overview", liberty-idwsf-overview-v2.0.pdf from http://projectliberty.org/resource\_center/specifications
[IDWSF2SCR]: "Liberty ID-WSF 2.0 Static Conformance Requirements", liberty-idwsf-2.0-scr-1.0-errata-v1.0.pdf
[IDWSFSecPriv]: "Liberty ID-WSF Security \& Privacy Overview", liberty-idwsf-security-privacy-overview-v1.0.pdf from http://projectliberty.org/resource\_center/specifications/
[IGF]: "An Overview of the Identity Governance Framework", Liberty Alliance, 2007. File: overview-id-governance-framework-v1.0.pdf (from http://projectliberty.org/liberty/resource\_center/papers)
[Interact2]: "Liberty ID-WSF Interaction Service", liberty-idwsf-interaction-svc-2.0-errata-v1.0.pdf from http://projectliberty.org/resource\_center/specifications/
[ISO27001]: ISO standard 27001: http://www.iso.org
[Kellomaki08]: Sampo Kellomäki: "Query Extension for SAML AuthnRequest", feature request to OASIS Security Services Technical Committee (SSTC), 2008. See OASIS SSTC mailing list archive.
[Levenshtein66]: Levenshtein, V. I. (1966). Binary codes capable of correcting deletions, insertions and reversals. Soviet Physics Doklady, 10:707+.
[LibertyInterFed]: Carolina Canales Valenzuela, Sampo Kellomäki, eds.: "Access to Identity-Enabled Web Services in Cross-Border, Inter-Federation Scenarios", Liberty Alliance, 2007. File: access-to-identity-enabled-services-in-inter-cot-scenarios-v1.0.pdf (from http://projectliberty.org/liberty/resource\_center/papers)
[LibertyLegal]: Victoria Sheckler, ed.: "Contractual Framework Outline for Circles of Trust", Liberty Alliance, 2007. File: Liberty Legal Frameworks.pdf (from http://projectliberty.org/liberty/resource\_center/papers)
[LibertyXF]: Sampo Kellomäki, ed.: "Cross Operation of Single Sign-On, Federation, and Identity Web Services Frameworks", Liberty Alliance, 2006.
[Madsen03]: Paul Madsen: "WS-Trust: Interoperable Security for Web Services" Available from http://www.xml.com/pub/a/ws/2003/06/24/ws-trust.html
[Mbanaso09]: U.M. Mbanaso, G.S. Cooper, David Chadwick, Anne Anderson: "Obligations of Trust for Privacy and Confidentiality in Distributed Transactions", Internet Research. Vol 19 No 2, 2009, pp. 153-173.
[Meier08]: J.D. Meier: "Threats, Attacks, Vulnerabilities, and Countermeasures", 30.3.2008. http://shapingsoftware.com/2008/03/30/threats-attacks-vulnerabilities-and-countermeasures/
[Meier09]: J.D. Meier: "Security Hot Spots", 9.3.2009. http://shapingsoftware.com/2009/03/09/security-hot-spots/
[Microsoft06]: Microsoft Centre of Excellence. (2006). The Security Risk Management Guideline. Microsoft Solutions for Security and Compliance.
[MS-MWBF]: Microsoft Web Browser Federated Sign-On Protocol Specification, 20080207, http://msdn2.microsoft.com/en-us/library/cc236471.aspx
[Nagios]: "System, Network, and Application Monitor", the latest incarnation of the Satan and Net Saint saga, http://www.nagios.org/
[NexofRA09]: "Deliverable D6.2 RA Model V2.0", All NEXOF-RA Partners, NESSI Strategic Project and External Contributors, 2009.
[NIST-SP800-30]: Gary Stoneburner, Alice Goguen, and Alexis Feringa: "Risk Management Guide for Information Technology Systems", Recommendations of the National Institute of Standards and Technology, NIST, 2002. http://csrc.nist.gov/publications/nistpubs/800-30/sp800-30.pdf
[NIST-SP800-42]: John Wack, Miles Tracy and Murugiah Souppaya: "Guideline Network Security", Recommendations of the National Institute of Standards and Technology, NIST, 2002. http://csrc.nist.gov/publications/nistpubs/800-30-42/sp800-42.pdf
[NIST-SP800-63]: William E. Burr, Donna F. Dodson, Ray A. Perlner, W. Timothy Polk, Sarbari Gupta, Emad A. Nabbus: "Electronic Authentication Guideline", Recommendations of the National Institute of Standards and Technology, NIST Special Publication 800-63-1, Feb 2008. http://csrc.nist.gov/publications/nistpubs/
[OAUTH]: http://oauth.net/
[OpenID]: http://openid.net/
[OWL-S-Web]: David Martin, ed.: "OWL-S: Semantic Markup for Web Services", W3C, 22. Nov, 2004. http://www.w3.org/Submission/OWL-S/
[PCI08]: "Payment Card Industry Data Security Standard", Version 1.2, Oct 2008, PCI Security Standards Council. Document pci\_dss\_v1-2.pdf from https://www.pcisecuritystandards.org/security\_standards/pci\_dss.shtml
[Peeters09]: Roel Peeters, Koen Simoens, Danny De Cock, and Bart Preneel: "Cross-Context Delegation through Identity Federation", KUL 2009 (To be published?)
[PeopleSvc]: "Liberty ID-WSF People Service Specification", liberty-idwsf-people-service-1.0-errata-v1.0.pdf from http://projectliberty.org/resource\_center/specifications/
[PERMIS]: D.W.Chadwick and A. Otenko: "The PERMIS X.509 Role Based Privilege Management Infrastructure". Future Generation Computer Systems, Vol 19, Issue 2, Feb 2003. pp 277-289
[RFC1157]: J. Case et al.: " A Simple Network Management Protocol (SNMP)", RFC 1157, 1990.
[RFC1950]: P. Deutcsh, J-L. Gailly: "ZLIB Compressed Data Format Specification version 3.3", Aladdin Enterprises, Info-ZIP, May 1996
[RFC1951]: P. Deutcsh: "DEFLATE Compressed Data Format Specification version 1.3", Aladdin Enterprises, May 1996
[RFC1952]: P. Deutcsh: "GZIP file format specification version 4.3", Aladdin Enterprises, May 1996
[RFC2119]: S. Bradner, ed.: "Key words for use in RFCs to Indicate Requirement Levels", Harvard University, 1997.
[RFC2138]: C. Rigney et al.: "Remote Authentication Dial In User Service (RADIUS)", RFC 2138, April 1997.
[RFC2139]: C. Rigney: "RADIUS Accounting", RFC 2139, April 1997.
[RFC2246]: T. Dierks and C. Allen: "The TLS Protocol Version 1.0", RFC 2246, January 1999.
[RFC2251]: M. Wahl, T. Howes, S. Kille: "Lightweight Directory Access Protocol (v3)", RFC 2251, December 1997.
[RFC2256]: Wahl, M., "A Summary of the X.500(96) User Schema for use with LDAPv3", RFC 2256, December 1997.
[RFC2560]: Myers et al., "X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP", RFC 2560, June 1999.
[RFC2798]: M. Smith: "Definition of the inetOrgPerson LDAP Object Class", Netscape Communications, RFC 2798, April 2000.
[RFC3548]: S. Josefsson, ed.: "The Base16, Base32, and Base64 Data Encodings", July 2003. (Section 4 describes Safebase64)
[RFC3588]: P. Calhoun et al.: "Diameter Base Protocol", RFC 3588, September 2003.
[RFC3768]: R. Hinden, ed.: "Virtual Router Redundancy Protocol (VRRP)", RFC 3768, April 2004.
[SAML2LOA]: OASIS. "Level of Assurance Authentication Context Profiles for SAML 2.0" Working Draft 01. 01 July 2008
[SAML11core]: SAML 1.1 Core, OASIS, 2003
[SAML11bind]: "Bindings and Profiles for the OASIS Security Assertion Markup Language (SAML) V1.1", Oasis Standard, 2.9.2003, oasis-sstc-saml-bindings-1.1
[SAML2core]: "Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V2.0", Oasis Standard, 15.3.2005, saml-core-2.0-os
[SAML2prof]: "Profiles for the OASIS Security Assertion Markup Language (SAML) V2.0", Oasis Standard, 15.3.2005, saml-profiles-2.0-os
[SAML2profErrata]: OASIS. "Profiles for the OASIS Security Assertion Markup Language (SAML) V2.0 - Errata Composite Working Draft", 12 February 2006
[SAML2bind]: "Bindings for the OASIS Security Assertion Markup Language (SAML) V2.0", Oasis Standard, 15.3.2005, saml-bindings-2.0-os
[SAML2context]: "Authentication Context for the OASIS Security Assertion Markup Language (SAML) V2.0", Oasis Standard, 15.3.2005, saml-authn-context-2.0-os
[SAML2meta]: Cantor, Moreh, Philpott, Maler, eds., "Metadata for the OASIS Security Assertion Markup Language (SAML) V2.0", Oasis Standard, 15.3.2005, saml-metadata-2.0-os
[SAML2security]: "Security and Privacy Considerations for the OASIS Security Assertion Markup Language (SAML) V2.0", Oasis Standard, 15.3.2005, saml-sec-consider-2.0-os
[SAML2conf]: "Conformance Requirements for the OASIS Security Assertion Markup Language (SAML) V2.0", Oasis Standard, 15.3.2005, saml-conformance-2.0-os
[SAML2glossary]: "Glossary for the OASIS Security Assertion Markup Language (SAML) V2.0", Oasis Standard, 15.3.2005, saml-glossary-2.0-os
[SAML2SimpleSign]: "SAML 2.0 POST Simple Sign Binding", OASIS, 2008.
[Schema1-2]: Henry S. Thompson et al. (eds): XML Schema Part 1: Structures, 2nd Ed., WSC Recommendation, 28. Oct. 2004, http://www.w3.org/2002/XMLSchema
[SecMech2]: "Liberty ID-WSF 2.0 Security Mechanisms", liberty-idwsf-security-mechanisms-core-2.0-errata-v1.0.pdf from http://projectliberty.org/resource\_center/specifications
[Shibboleth]: http://shibboleth.internet2.edu/shibboleth-documents.html
[SHPS]: Conor Cahill, et al.: "Service Hosting and Proxying Service Specification", Liberty Alliance Project, 15. Dec. 2006.
[Siemens10]: Cram Methods http://www.cramm.com (fetched in 25.6.2010)
[SOAPAuthn2]: "Liberty ID-WSF Authentication, Single Sign-On, and Identity Mapping Services Specification", liberty-idwsf-authn-svc-2.0-errata-v1.0.pdf from http://projectliberty.org/resource\_center/specifications/
[SOAPBinding2]: "Liberty ID-WSF SOAP Binding Specification", liberty-idwsf-soap-binding-2.0-errata-v1.0.pdf from http://projectliberty.org/resource\_center/specifications
[SOX02]: "Sarbanes-Oxley Act of 2002", Public Law 107-204, United States, 2002. http://frwebgate.access.gpo.gov/cgi-bin/getdoc.cgi?dbname=107\_cong\_public\_laws\&docid=f:publ204.107
[SUBS2]: "Liberty ID-WSF Subscriptions and Notifications Specification", liberty-idwsf-subs-v1.0.pdf from http://projectliberty.org/resource\_center/specifications/
[SwiderskiSnyder04]: Frank Swiderski and Window Snyder. Threat Modeling. Microsoft Press, 2004.
[SWIG]: Simplified Interface and Wrapper Generator by Dave Beazley. www.swig.org
[TAS3ARCH]: Sampo Kellomäki, ed.: "TAS3 Architecture", TAS3 Consortium, 2009. Document: tas3-arch-vXX.pdf, also deliverable D2.1, document: tas3-deliv-2\_1-arch-v17\_2.pdf
[TAS3BIZ]: Luk Vervenne, ed.: "TAS3 Business Model", TAS3 Consortium, 2009.
[TAS3COMPLIANCE]: Sampo Kellomäki, ed.: "TAS3 Compliance Requirements", TAS3 Consortium, 2009. Document: tas3-compliance-vXX.pdf
[TAS3CONSOAGMT]: "TAS3 Consortium Agreement", TAS3 Consortium, 2008. (Not publicly available.)
[TAS3D12DESIGNRAR]: David Chadwick (Kent), Seda Gürses (KUL), eds.: "Requirements Assessment Report", TAS3 Consortium, 20090102. Document: TAS3\_D1p2\_Requirements\_Assesment\_Report\_1\_V1p0.pdf
[TAS3D14DESIGNREQ]: Gilles Montagnon (SAP), ed.: "Design Requirements", TAS3 Consortium, 20081221. Document: TAS3\_D1p4\_Design\_Requirements\_1\_V2p0.pdf
[TAS3D22UPONTO]: Quentin Reul (VUB), ed.: "Common Upper Ontologies", TAS3 Consortium, Deliverable D2.2, 7.5.2009. Document: D2.2\_ver1.7.pdf
[TAS3D41ID]: Sampo Kellomäki, ed.: "Identifier and Discovery Function", TAS3 Deliverable 4.1, 2009. Document: tas3-disco-v01.pdf
[TAS3D42Repo]: David Chadwick, ed.: "Specification of information containers and authentic repositories", TAS3 Deliverable 4.2, 2009.
[TAS3D62Contract]: Joseph Alhadef, Brendan Van Alsenoy: "Contractual Framework", v3.0, TAS3 Deliverable D6.1, December 2009.
[TAS3D71IdMAnAz]: TAS3 Deliverable 7.1. "Design of Identity Management, Authentication and Authorization Infrastructure" 3 Jan 2009.
[TAS3D81RepoSW]: "Software Documentation System: Repository Services", UniKOLD, TAS3 Deliverable 8.1, 2009.
[TAS3D82BackOffice]: "Back Office Services with Documentation", TAS3 Consortium, 2009.
[TAS3D83CliSW]: "TAS3 Client Software with User Guide", TAS3 Consortium, 2009.
[TAS3D91PilotUC]: "Pilot Use Cases", Deliverable D9.1, TAS3 Consortium, 2009.
[TAS3DOW]: "TAS3 Description of Work", TAS3 Consortium, 2008. (Not publicly available.) File: TAS3\_DescriptionOfWork.DoW.technical.annex.final.version.20071030.pdf
[TAS3GLOS]: Quentin Reul (VUB), ed.: "TAS3 Glossary", TAS3 Consortium, 2009. Document: tas3-glossary-vXX.pdf
[TAS3PROTO]: Sampo Kellomäki, ed.: "TAS3 Protocols and Concrete Architecture", TAS3 Consortium, 2009. Document: tas3-proto-vXX.pdf
[TAS3THREAT]: Sampo Kellomäki, ed.: "TAS3 Threat Analysis", TAS3 Consortium, 2009. Document: tas3-threats-vXX.pdf
[TAS3WP]: "TAS3 Architecture White Paper", TAS3 Consortium, 2009 (as of 20090324 to be published).
[Tom09]: Allen Tom, et al.: "OAuth Web Resource Authorization Profiles (OAuth WRAP)", Version 0.9.7.2, Google, Microsoft, and Yahoo, Nov. 5, 2009 (WRAP-v0.9.7.2.pdf)
[TrustBuilder2]: Adam J. Lee, Marianne Winslett and Kenneth J. Perano: "TrustBuilder2: A Reconfigurable Framework for Trust Negotiation", IFIP Trust Management Conference, June 2009.
[UML2]: http://www.sparxsystems.com.au/resources/uml2\_tutorial/
[UNDP07]: "e-Government Interoperability Guide", United Nations Development Programme, 2007. http://www.apdip.net/projects/gif/GIF-Guide.pdf
[VenturiEA08]: V. Venturi, et al.: "Use of SAML to retrieve Authorization Credentials", Open Grid Forum, 2008. (*** Attribute PullProfilev1.5.doc; CVS related)
[Wharton94]: C. Wharton et al. "The cognitive walkthrough method: a practitioner's guide" in J. Nielsen \& R. Mack "Usability Inspection Methods" pp. 105-140, Wiley, 1994.
[WSML-Web]: "Web Services Modelling Language" http://www.wsmo.org/wsml/
[WSMO05]: D. Roman, U. Keller, H. Lausen, J. de Bruijn, R. Lara, M. Stollberg, A. Polleres, C. Feier, C. Bussler, and D. Fensel (2005). "Web Service Modeling Ontology". In Applied Ontology 1, pages 77-106.
[WSMO-Web]: "Web Services Modelling Ontology" http://www.wsmo.org/
[WSPolicy]: Bajaj et al.: "Web Services Policy Framework (WS-Policy) and Web Services Policy Attachment (WS-PolicyAttachment)", W3C, March 2006. http://schemas.xmlsoap.org/ws/2004/09/policy/
[WSTrust]: "WS-Trust 1.3", CD 6, OASIS, Sept 2006. (*** WS-Trust, STS, etc.)
[X520]: ITU-T Rec. X.520, "The Directory: Selected Attribute Types", 1996.
[X521]: ITU-T Rec. X.521, "The Directory: Selected Object Classes", 1996.
[XACML2]: "eXtensible Access Control Markup Language (XACML)" v2.0, OASIS Standard, February 2005. From http://www.oasis-open.org/committees/tc\_home.php?wg\_abbrev=xacml
[XACML2SAMLold]: "SAML 2.0 Profile of XACML, Version 2, Working Draft 5", 19 July 2007, OASIS. (*** instead of "SAML 2.0 profile of XACML v2.0, ERRATA, Working Draft 01, 17 November 2005" which is the version that the profile is currently based on; XACMLContextProfile1.1.doc from Open Grid Forum - OGF)
[XACML2SAML]: "SAML 2.0 Profile of XACML, Version 2, Committee Draft", 16 April 2009
[XML]: http://www.w3.org/TR/REC-xml
[XML-C14N]: XML Canonicalization (non-exclusive), http://www.w3.org/TR/2001/REC-xml-c14n-20010315; J. Boyer: "Canonical XML Version 1.0", W3C Recommendation, 15.3.2001, http://www.w3.org/TR/xml-c14n, RFC3076
[XML-EXC-C14N]: Exclusive XML Canonicalization, http://www.w3.org/TR/xml-exc-c14n/
[XMLDSIG]: "XML-Signature Syntax and Processing", W3C Recommendation, 12.2.2002, http://www.w3.org/TR/xmldsig-core, RFC3275
[XMLENC]: "XML Encryption Syntax and Processing", W3C Recommendation, 10.12.2002, http://www.w3.org/TR/xmlenc-core
[XPATH99]: James Clark and Steve DeRose, eds. "XML Path Language (XPath) Version 1.0", W3C Recommendation 16 November 1999. From: http://www.w3.org/TR/xpath
[ZXIDREADME]: Sampo Kellomäki: "README.zxid" file from zxid.org, 2009.

Document ID: tas3-deliv-2_1-arch-v20.pdf
URL path: https://portal.tas3.eu/arch/review/tas3-deliv-2_1-arch-v20.pdf

[Prev | Next]