Open Standards Forum 2008 - Security Challenges for the Information Society, 30 September - 1 October 2008, Ditton Manor, Near London

Wednesday, 1 October

THURSDAY PROGRAMME / FRIDAY PROGRAMME

*subject to change

Forum Programme (Day 1)

8:30 Coffee & Registration
  OPENING PLENARY: THE CHANGING SECURITY LANDSCAPE
Session Chair: Laurent Liscia, OASIS
9:00

Welcome Remarks
Laurent Liscia, Executive Director, OASIS

Views on the Ever-Changing Security Landscape

Information and communication technologies (ICT) are a major enabler of the creation, distribution, diffusion, use, and manipulation of information and have a major impact on our quality of life, our working conditions and the overall competitiveness of our industries and services. In today's society, information and information access plays a central role, economically, socially and individually. However, open exchange of information and access to online services also pose challenges and threats. Service providers want to authenticate the identity of individuals requesting access, and determine the resources and services they are entitled to access. Users want their identity and personal data and privacy to be protected adequately, and the confidentiality of sensitive data they are submitting to be respected.

In today's Internet and in many large private network infrastructures, heterogeneity and diversity are the rule rather than the exception. Security infrastructures need open standards and interoperability to scale to the huge deployments that are being rolled out today. Some of these security standards from OASIS and other organizations support a model where identity authentication, access control, digital signature processing, encryption and key management are provided as services that can be distributed and shared. This opening session will set the stage and provide attendees an opportunity to explore the state of the art in security services, standards and products.

Keynote Speakers:

  • Mark Ferrar, Director of Infrastructure-Technology Office, NHS Connecting for Health
  • Giles Hogben, Security Expert, European Network and Information Security Agency
  • Edin Bektesevic, Senior Technology Strategist, Standardisation, Vodafone
10:45 Break
  OPENING PLENARY: THE CHANGING SECURITY LANDSCAPE (CONTINUED)
Session Chair: Abbie Barbir, Nortel
11:00

Perspectives on the Standards-Based Security Landscape

This interactive panel session featuring representatives from several leading standards organizations will come together to discuss their perspectives on the standards-based security landscape. Panelists will address what they feel the main problems are, what their organization contributes to those problems, what work should be done and how they should cooperate with other organizations.

Panelists:

  • John Sabo, Member, OASIS IDTrust Member Steering Committee
  • Anthony Nadalin, Representative, WS-I
  • Thomas Roessler, Security Activity Lead, W3C
  • Jim Hietala, VP, Security, The Open Group
  • Abbie Barbir, Representative, ITU
12:15 Luncheon
  DIGITAL SIGNATURES | LEGAL ACCEPTANCE, PRACTICAL USE CASES, AND MAINTENANCE SESSION
Session Chair: Jos Dumortier, University of Leuven
13:15

The World-Wide Legal View of Digital Signatures

Jos Dumortier will provide an insight on legal issues relating to electronic and digital signatures, and will comment on the different approaches in Europe, the United States and Asia as what is happening in the area of electronic and digital signatures.

Speaker: Jos Dumortier, Professor of ICT Law, University of Leuven

13:45

Practical Digital Signature Issues

During this interactive session, panelists will be asked to comment on critical issues in the practical use of digital signatures. These issues will include: the legal acceptance internationally, the integration into operational and business processes, and the management and maintenance for extended lifecycles.

Moderator: Jos Dumortier, Professor of ICT Law, University of Leuven

Panelists:

  • Juan Carlos Cruellas, DSS-X TC Co-Chair, Universidad Politecnia de Cataluna
  • Cindy Cullen, Chief Technology Officer, Safe BioPharma Association
  • Frederick Hirsch, Chair W3C XML Security WG; Senior Architect, Nokia
  • Ronny Bjones, Security Technology Architect, Microsoft Corporation
14:45 Break
  SECURITY & ACCESS MANAGEMENT SESSION
Session Chair: Anil Saldhana, Red Hat
15:00

Securing your Enterprise Panel - Real World Scenarios for Vertical Industries - Are these Issues Universally Applicable?

Enterprise Security is a critical aspect for the vertical industries such as healthcare, financial, and telecom. SOA security and Fine Grained Access Control needs add complexity to the needs of the business. During this panel session, speakers will provide actual case study examples of successful vertical industry standards implementations.

Panelists:

  • Mark O'Neill, CTO, Vordel
  • Sampo Kellomäki, Co-Founder and the Identity Architect, Symlabs
  • Ludwig Seitz, Training & Development, Axiomatics
  • Anil Saldhana, Leader of JBoss Security and Identity Management, Red Hat
16:00 Break
  SPECIAL INTEROPERABILITY DEMONSTRATION
16:15
XACML & Healthcare Senerio Overview


XACML Interop Demo

The eXtensible Access Control Markup Language (XACML) has emerged as a front runner in solving complex access control problems in the enterprise. Providers of XACML-compliant products will conduct an interoperability demo using healthcare requirements from the U.S. Department of Veterans Affairs, HL7, and HITSP.

Participating Organizations:  IBM, Symlabs, Axiomatics, and the University of Applied Sciences Rapperswil (Switzerland)

17:30
Cocktail Reception