Bi-Weekly Meeting of the OASIS Application Vulnerability Definition Language (AVDL) Technical Committee July 29, 2004 4:00 PM EST Meeting Minutes ====================== Role Call ====================== Carl Banzhof Jan Bialkowski Kevin Heineman Srinivas Mantripragada Kelly Ray Aaran Temin ====================== Administrative topics ====================== 1) Approve Meeting minutes from June 3rd. Minutes were approved. ====================== Action Items ====================== 1) No actions items to review. ====================== Standard Discussion ====================== 1) Announced that AVDL is participating in the OASIS Implementer's Forum. This is a discussion group for organizations who are implementing the standard. These standards are open to the public. The TC's homepage explains how to access the forum. 2) Current implementations of the standard are SPI Dynamics, NetContinuum, and Citadel. The committee is interested in hearing if other organizations have implemented the standard. If you hear about an implementation or a project, please notify the group email list. 3) We discussed version 2.0 of the standard and came to an agreement that version 2.0 should investigate the following two areas: - Internationalization of the standard - This area will be lead by Kevin Heineman and Jan Bialkowski - Attacks that are not in Web form (e.g., host based attacks) - This area will be lead by Carl Banzhof from Citadel 4) The group also discussed adding web services to the standard. The committee needs a volunteer who will drive this process. If someone is interested, please notify Kevin Heineman or Jan Bailkowski. ===================== Next Meeting ===================== The next meeting is scheduled for August 12th at 4:00 PM EST. The bridge number will be 309-495-0759 Participant Code will be 2401682 ===================== Adjourn ===================== Meeting was adjourned at 4:30 PM EST.