Security Services TC:
I’m reaching out to you as the chair of the OASIS LegalXML Electronic Court Filing TC to request assistance incorporating rules and/or guidance for identity management, authentication and access management (IAM) in future ECF TC specifications.
The ECF TC develops specifications for integrating systems used by courts and litigants. The TC has intentionally left issues of identifying, authentication and managing access by specific users (e.g. filers, judges, court clerks) and
organizations (e.g. courts, law firms) out of previous versions of the ECF specification, leaving those issues to be addressed by implementers.
However, with the emergence of federated identity technologies (e.g. SAML, OAuth/OpenID) and increasing adoption by implementers, the ECF is considering whether to include either normative conformance rules or non-normative guidance in
future versions of ECF to improve interoperability between implementations.
When possible, the ECF TC attempts to leverage existing standards but we are not experts in IAM as you are. Does the Security Services TC have any resources the ECF TC can leverage as we consider how best to guide our implementers in IAM?
Let me know if a meeting to discuss would be useful.
Thanks in advance for you assistance,
|
|
Jim Cabral |
|
Vice President, Court Relations |
|
|
502-640-4970 |
