Boston, MA, USA; 4 December 2002 — The OASIS interoperability consortium today announced that it is providing an international forum for governments to voice their needs and requirements with respect to XML-based standards. Bringing together government representatives from around the world, the OASIS e-Government Technical Committee will support the modernization of government and assist in the electronic delivery of services to citizens and businesses through the coordination and adoption of XML standards. “The creation of this technical committee provides an excellent opportunity for all governments to have a significant say in the development of the standards that support their initiatives,” noted John Borras of the UK Office of e-Envoy, chair of the OASIS e-Government Technical Committee. “OASIS has recognized the importance of the emerging e-government agendas, and the consortium is working hard to produce standards that are appropriate for both the public and private sectors. The formation of this new technical committee will help OASIS deliver open, international standards that will be well supported in the marketplace and meet the needs of e-Government strategies.” The OASIS e-Government Technical Committee will identify and organize plans for the development of new standards. Their recommendations and requirements will be formally submitted to appropriate working groups within OASIS. New technical committees may be formed for needs that are not currently being addressed. The new technical committee will also work to promote the adoption of OASIS Open Standards within governments by creating best practice documents and staging implementation-oriented pilot projects. The group will coordinate input from governments on emerging technologies, such as ebXML and Web services, to ensure that existing specifications are not developed solely for the benefit of the private sector. Special emphasis will be placed on the needs of EU countries working to deliver aspects of the eEurope 2005 plan. OASIS e-Government Technical Committee members include representatives from the Danish Ministry of Science, Technology and Innovation, Ontario Government Canada, United Kingdom Ministry of Defense, United Kingdom Office of e-Envoy, United States General Services Administration, and United States Department of Navy, as well as developers from Baltimore Technologies, BEA Systems, Booz, Allen & Hamilton, Commerce One, Drake Certivo, Entrust, Fujitsu, Logistics Management Institute, Microsoft, Novell, Republica, SAP, Sun Microsystems, TSO, webMethods, and others. Participation in the OASIS e-Government Technical Committee remains open to all organizations and individuals. OASIS will host an open mail list for public comment, and completed work will be freely available to the public without licensing or other fees. Information on joining OASIS can be found on http://www.oasis-open.org/join. The first meeting of the OASIS e-Government Technical Committee will be held at the IDEAlliance XML 2002 Conference in Baltimore on 13 December 2002. Support for the OASIS e-Government Technical Committee “The launch of the OASIS E-Gov effort has the opportunity to benefit citizens in the United States across multiple dimensions. Perhaps most important, setting global standards for e-government and e-business should enable significant reduction in government’s burden on citizens, businesses, and government employees. Better standards should also improve security and cut the cost of government IT purchases. We welcome this initiative and will fully support it,” said Mark A. Forman, Associate Administrator for IT and E-Government, Office of Management and Budget, Executive Office of the President of the United States. “BEA Systems, Inc. is at the forefront of helping governments around the world take advantage of off-the-shelf commercial technologies to improve service delivery, efficiency, and effectiveness at all levels of government,” said Mark Hogan, general manager of BEA Government Systems. “The ability to access and securely interact with government agencies electronically will help reduce information delivery costs and improve consumer access for the public sector, building on the revolution in the private eBusiness sector.” “XML and Web services provide the foundation of an E-Government vision by enabling the enhancement of relationships between government entities, citizens and businesses,” said John Evdemon, Senior Associate with Booz Allen Hamilton. “Booz Allen is a leader in facilitating E-Government transformation, and we look forward to supplying our expertise in XML, Web services and E-Government business models to help ensure the success of the OASIS e-Government Technical Committee,” said Terry Bjornsen, Senior Associate with Booz Allen Hamilton. “The Logistics Management Institute (LMI), as an active partner in a variety of U.S. Government eBusiness and eGovernment initiatives, welcomes the formation of the OASIS e-Government Technical Committee. We look forward to supporting this valuable effort as it looks to enhance electronic citizen services,” said Mark Crawford Research Fellow, LMI. “Open systems architectures are the linchpins for building the next generation of e-Government infrastructure–they are the only viable way to deliver true interoperability and enable government organizations to take advantage of the widest selection of solutions available,” said Jeff Veis, Senior Director, Public Services Sector at Sun Microsystems, Inc. “OASIS, through its creation of the e-Government Technical Committee, shares Sun’s commitment to open standards, and it is a natural industry body to bring together the specifications for XML-based standards that address the needs for G2G, G2B, and G2C exchange and interoperability.” About OASIS (http://www.oasis-open.org) OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 600 corporate and individual members in 100 countries around the world. For more information: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 2 December 2002 — The OASIS interoperability consortium today announced that its members have approved the ebXML Collaboration Protocol Profile and Agreement (CPPA) v2.0 as an OASIS Open Standard, a status that signifies the highest level of ratification. ebXML CPPA defines business partners’ technical capabilities and documents agreements between partners, enabling organizations to securely engage in electronic business collaboration. “While many vendors suggest specifications and lead standards initiatives, OASIS has provided enterprises of all sizes with a future-proofed, tested and technically proficient ‘standard.’ ebxml CPPA will foster global collaborative ebusiness growth by removing barriers to entry and eliminating the high cost and complexity of trading partner on-boarding. Valuable to any organization focused on adopting standards,” said Joanne Friedman, Vice President, META Group Inc. “ebXML CPPA ensures interoperability between two parties, even organizations that use software from different sources. The CPP defines a party’s message-exchange capabilities and the business collaborations that it supports. The CPA defines the way two business parties will interact in performing the chosen business collaborations,” explained Dale Moberg of Cyclone Commerce, chair of the OASIS ebXML CPPA Technical Committee. “The OASIS Open Standard also facilitates the migration of both traditional EDI-based applications and other legacy applications to ebXML-based platforms.” ebXML CPPA was developed by Commerce One, Cyclone Commerce, E2open, Hewlett-Packard Company, IBM, Intel, IONA, Mercator, SAP, SeeBeyond, Sterling Commerce, Sun Microsystems, Sybase, TIBCO, Vitria, webMethods, and other members of the OASIS ebXML Collaboration Protocol Profile and Agreement Technical Committee. “Ratification as an OASIS Open Standard means that developers can deploy ebXML CPPA with confidence,” said Karl Best, vice president of OASIS. “To attain this level of acceptance, ebXML CPPA first completed an extensive public review, was approved by the OASIS ebXML CPPA Technical Committee, and demonstrated its readiness through multiple implementations. Finally, ebXML CPPA was reviewed and approved by the OASIS membership as a whole. We congratulate and thank the members of the OASIS ebXML CPPA Technical Committee for all their outstanding efforts in advancing ebXML CPPA as the newest OASIS Open Standard.” In related news, the ebXML OASIS UN/CEFACT Joint Marketing Team published version 1.0 of the ebXML Adoption Update, a listing of ebXML implementations, projects, products, and industry initiatives from around the world. The ebXML Adoption Update is posted at http://www.ebxml.org/ebxml_jmt/index.htm#documents. Industry Support for ebXML CPPA “Negotiating partner agreements are critical for large scale deployment of open business connections. ebXML CPPA takes a significant step forward in simplifying and automating that process,” observed Dave Bennett, CTO of Cyclone Commerce. “Sterling Commerce has leveraged its long history in building electronic trading communities in contributing significantly to the development of the ebXML CPPA specification. This specification addresses a major issue with the rapid deployment of Internet B2B e-commerce–the absence of a standard definition of technical parameters for communication and security that business partners need to agree upon. Representing these configuration parameters in the standard format of the ebXML CPPA specification will greatly accelerate users’ integration processes. In addition to this immediate value, version 2.0 of the specification sets the stage for the standardized CPA negotiation process to come. Sterling Commerce remains committed to the ebXML CPPA development effort as it expands to address these even more difficult issues,” said Brian Gibb, Director of Standards and Applied Technology, Sterling Commerce. “SAP is excited to see the ebXML standards portfolio growing and evolving in the space of collaboration and trading partner agreements. ebXML CPPA 2.0 is a significant step forward and represents an important piece of work in the business applications domain,” said Sinisa Zimek, Director Technology Architecture & Standards from SAP. “Specifications like ebXML CPPA will eventually enrich the Web and enhance its potential of being the intrinsic place for doing electronic business in the future.” “We are pleased to have participated in the development of ebXML CPPA 2.0, and welcome its use as a standard to assist in the automated establishment of electronic business transactions,” said Alan Davies, Vice President of Standards and Product Strategy for SeeBeyond. “Sun Microsystems is very pleased to see that ebXML CPPA V2.0 has been approved as an OASIS standard. This will help further efforts to implement an approved specification into products so that the mission of ebXML to enable global business interoperatbility can be truly realized,” said Mark Herring, senior director of Sun™ ONE Java Web services and tools at Sun. “Sun believes in open and royalty free standards and this latest development with the Collaboration Partner Profile further underscores that philosophy.” “With version 2.0 of the ebXML CPPA, OASIS continues to provide the next generation of complex Web services, and Sybase has further enriched our end-to-end ebXML solution by fully incorporating support for ebXML CPPA in our Web Services Integrator product,” said Billy Ho, senior vice president and general manager, e-Business Division of Sybase. “We are seeing interest from the ebXML community and feel that this continues to demonstrate Sybase’s commitment to delivering open, standards based, vendor interoperable e-Business solutions.” “TIBCO is pleased to working with OASIS and supports making ebXML CPPA an open standard as we strongly believe that CPPA will simplify Global electronic business collaboration,” said TIBCO Software Director of Products and Solutions, Ramin Sayar. “TIBCO has a history of helping companies improve productivity through standards-based integration for its Global 2000 customers.” “ebXML CPPA is a very important component of the ebXML architecture as it acts as a technical agreement/configuration document format as well as providing a common vocabulary for partners to use when designing B2B processes,” stated Matthew MacKenzie, Chief Software Architect for XML Global Technologies. “XML Global has implemented CPPA version 2.0 and is using it within its ebXML Messaging and Registry products and will continue to support future iterations of the OASIS ebXML CPPA Technical Committee’s work.” About OASIS (http://www.oasis-open.org) OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 600 corporate and individual members in 100 countries around the world. For more information: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 20 November 2002 — Members of the OASIS standards consortium have formed a technical committee to advance an open, XML-based file format specification for office applications. The new OASIS Open Office XML Format Technical Committee brings together representatives throughout the industry committed to establishing standard data interoperability for office applications. Their work will be suitable for documents containing text, spreadsheets, charts, and graphs and will retain high-level information for editing. Although the initial work of the technical committee will focus on standardizing data for content creation and management applications, subsequent phases will address simplifying the exchange of data between any application that utilizes XML, which may include business processes, Web services, databases, search engines, and other applications. “Our goal is to achieve consensus on an open standard that will protect content–whether it is a 800-page airplane specification or a legal contract–from being locked into a proprietary file format,” explained Michael Brauer of Sun Microsystems, chair of the OASIS Open Office XML Format Technical Committee. “A standard method for processing and interchanging office documents will enable companies to own their data and freely choose tools to view and edit information long after originating applications have come and gone.” Sun Microsystems intends to contribute the XML file format specification utilized in the OpenOffice.org 1.0 project to the new OASIS Technical Committee under reciprocal Royalty Free terms. OpenOffice.org is an Open Source full-featured office productivity suite that works transparently with a variety of file formats to enable users of varying office suites to exchange documents freely with one another. Participation in the OASIS Open Office XML Format Technical Committee remains open to all organizations and individuals. In keeping with the OASIS intellectual property policy that allows both Royalty-Free (RF) and Reasonable and Non-Discriminatory (RAND) licensing, the OASIS Open Office XML Format Technical Committee will accept contributions only if they are granted to all under perpetual, royalty free, non-discriminatory terms. OASIS will host an open mail list for public comment, and completed work will be freely available to the public without licensing or other fees. Information on joining OASIS can be found on http://www.oasis-open.org/join. Industry Support for OASIS Open Office XML Format Technical Committee “Arbortext is pleased to participate in the OASIS Open Office XML Format Technical Committee to advance the acceptance of open source development tools. When complete, this specification will provide writers and programmers the ability to share office documents containing text, spreadsheets and graphics for processing and interchange. Arbortext intends to support the OASIS process of defining specifications as well as to incorporate support for those specifications in our product suite,” said Paul Grosso, Vice President of Research at Arbortext. “Boeing strongly supports the creation and adoption of open data formats in order to preserve the long-term integrity of our data. This committee focuses on the creation of such a specification for common office applications, which is generally the greatest source of content creation and sharing in any organization,” said Doug Alberg, Sr. Manager, Advanced Authoring & Publishing System Development, The Boeing Company. “Office documents are an essential tool for maintaining and leveraging corporate knowledge. When based on XML, the power and reach of these documents is greatly enhanced,” said Dr. Bruce Sharpe, executive vice president of XML content solutions for Corel Corporation. “Corel is pleased to be working with other software vendors to design an open standard XML format for office documents that will bring enhanced compatibility and longevity to customers’ intellectual property.” “By leading the initiative to help advance office productivity using open, XML formats, Sun further underscores its commitment to open standards, open source technology and open file formats,” said Curtis Sasaki, vice president, Sun Microsystems, Desktop Solutions. “As an active member of the open source community, Sun continuously contributes to the OpenOffice.org project, most notably through the donation of StarOffice source code and most recently the XML file format specification, which is used in Sun’s StarOffice 6.0 product.” About OASIS (http://www.oasis-open.org) OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 500 corporate and individual members in 100 countries around the world. For more information: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 6 November 2002 — The OASIS interoperability consortium today announced that its members have approved the Security Assertion Markup Language (SAML) v1.0 as an OASIS Open Standard, a status that signifies the highest level of ratification. SAML is an XML-based framework for Web services that allows the exchange of authentication and authorization information among business partners. SAML enables Web-based security interoperability functions, such as single sign-on, across sites hosted by multiple companies. “SAML 1.0 is an important industry standard for federating diverse security domains across Web services environments,” said James Kobielus, senior analyst at Burton Group. “SAML 1.0 supports secure interchange of authentication and authorization information by leveraging the core Web services standards of Extensible Markup Language (XML), Simple Object Access Protocol (SOAP), and Transport Layer Security (TLS). Most vendors of Web access management solutions have committed to SAML 1.0 and are currently implementing the specification in their products.” “SAML lets companies implement single sign-on solutions that allow users to visit various Web sites without being repeatedly challenged for credentials,” explained Joe Pato of HP, co-chair of the OASIS Security Services Technical Committee. “In addition, SAML makes it possible to include security information in documents used in business transactions. This is particularly relevant for Web services, where security is critical.” SAML incorporates industry-standard protocols and messaging frameworks, such as XML Signature, XML Encryption, and SOAP. The specification can be easily integrated in standard environments such as HTTP and standard Web browsers. Likewise, other security environments can use SAML as an authentication and authorization layer. SAML complements Web services standards, such as SOAP, which lack inherent security features. The OASIS Web Services Security Technical Committee, for example, is profiling SAML as one of its set of security tokens. “SAML allows vendors to interoperate for the benefit of their customers,” said Jeff Hodges, Sun Microsystems, co-chair of the OASIS Security Services Technical Committee. “The standard is easily implemented by companies in existing environments, and SAML-aware security applications are already being introduced. Related security initiatives, such as Liberty Alliance’s Version One Specification, are leveraging SAML in order to more quickly realize their goals.” The SAML OASIS Open Standard was developed by Baltimore Technologies, BEA Systems, Computer Associates, Entrust, Hewlett-Packard Company, Hitachi, IBM, Netegrity, Oblix, OpenNetwork, Quadrasis, RSA Security, Sun Microsystems, Verisign, and other members of the OASIS Security Services Technical Committee. “Ratification as an OASIS Open Standard means that developers can deploy SAML with confidence,” said Karl Best, vice president of OASIS. “To attain this level of acceptance, SAML first completed an extensive public review, was approved by the OASIS Security Services Technical Committee, and demonstrated its readiness through multiple implementations. Finally, SAML was reviewed and approved by the OASIS membership as a whole. We congratulate and thank the members of the OASIS Security Services Technical Committee for all their outstanding efforts in advancing SAML as the newest OASIS Open Standard.” “SAML depends on the availability of authentication frameworks such as PKI digital certificates,” said Terry Leahy of Wells Fargo, chair of the newly formed OASIS PKI Member Section. “We look forward to advancing PKI for end-entity authentication and for supporting persistent digital signatures conveyed through SAML assertions. Through SAML, PKI will provide a foundation for secure Web services.” Support for SAML “SAML represents a significant step forward in helping organizations to strengthen their online business relationships by making it easier to share authentication and authorization information across corporate boundaries and security domains” commented Peter Doyle, Vice-President Marketing with Baltimore Technologies. “Baltimore SelectAccess was first-to-market with SAML support earlier this year and Baltimore remains fully committed to driving standards which can enhance online security while delivering cost savings for organizations and a better experience for their users.” “By both simplifying and strengthening online authentication and authorization, SAML will become a significant enabler of secure eBusiness in an increasingly complex and interdependent online environment,” said Ron Moritz, senior vice president for eTrust security solutions at Computer Associates. “As the leader in eBusiness security software, CA will play a key role in promoting the SAML standard as we incorporate it into our entire line of our eTrust identity management and access control products.” “DataPower Technology sees open, easy to implement standards as one of the major building blocks to the foundation and success of ebusiness. As a member of OASIS, DataPower fully supports the advancement of SAML as an XML-based standard for exchanging authentication and authorization information to ensure that transmitted communications are secure,” said Steve Kelly, CEO at DataPower Technology, Inc. “As one of the early founding members of the OASIS Technical Committee on SAML, and a ongoing contributor to the specification’s development, we are gratified to see SAML ratified as an industry standard,” said Ian Curry, vice-president, chief marketing officer, Entrust, Inc. “We are committed to continuing our support for SAML by incorporating the standard into the Entrust Secure Web Portal Solution as well as our growing Web Services portfolio.” “The standardization of security technology is essential for the widespread adoption of Web services. Fujitsu is pleased with the announcement that SAML has become an OASIS Open Standard,” said Seigo Hirosue, General Manager, Project-A XML, Fujitsu Limited. “As a leading provider of Internet-focused information technology solutions for the global marketplace, Fujitsu has been committed to facilitating standard technologies. The future version of the Interstage software product – Fujitsu’s eBusiness infrastructure – will support the new SAML Standard.” “Hitachi Ltd. sincerely welcomes SAML as an OASIS Open Standard,” said Kiyoshi Kozuka, General Manager, Software Division, Hitachi Ltd. “We believe that SAML is a core technology leading to the implementation of secure and interoperable Web services, and it encourages growth of the Web services market. We will adopt SAML 1.0 to implement our Web services products and will actively take part in further OASIS standardization efforts.” “SAML and other security standards such as WS-Security allow customers to expand Web services beyond the firewall and integrate business processes securely with suppliers, partners and customers, which ultimately allows our customers to tap into new markets and revenue chains,” said Arvind Krishna, vice president of security products, Tivoli Software, IBM. “Through the federated identity interfaces currently available in our software and upcoming SAML support, IBM provides a way for Web services and enterprise applications to share identity information across multiple networks.” “Netegrity, in cooperation with its partners, has been working on SAML for over two years, and we are very excited that it is now officially an OASIS Open Standard,” said Deepak Taneja, chief technology officer at Netegrity. “Netegrity was one of the first vendors to provide SAML support within its products, SiteMinder and TransactionMinder, enabling customers to quickly and cost effectively securely exchange user information across partner sites and within Web services.” “The final acceptance of the SAML standard by OASIS is a huge step towards accelerating the interoperability of security systems for enterprises around the world”, said Nand Mulchandani, co-founder and CTO, Oblix. “Oblix has many customers who are on the forefront of implementing SAML in their organization because they have a need to access and transport security information between disparate systems. Oblix NetPoint, our Web access and enterprise identity management solution, is fully SAML-ready and available to support customers today.” “Quadrasis is pleased to sponsor and support the OASIS SAML Technical Committee”, said Don Flinn, Quadrasis Chief Security Architect. “This XML-based security standard for exchanging authentication and authorization information is core to our Quadrasis EASI Security UnifierTM, a visionary solution to solve Enterprise Application Security Integration (EASI) across the multiple tiers, platforms, and security components of the enterprise. We look forward to continuing our efforts to advance the WS-Security and SAML specifications.” “RSA Security strongly embraces industry standards as a means of delivering better value and investment security to our customer base,” said John Worrall, vice president of worldwide marketing at RSA Security. “As an early and active participant in the SAML effort, we’re pleased to see it reach OASIS Open Standard status and are already supporting it in our products and in live production environments. SAML is a core element of our vision for enabling Trusted Identity and Access Management–a vision that is helping organizations better utilize identity information for greater productivity and higher security.” “Since customers are recognizing security more and more as a vital and high priority issue for professional e-business software, SAP has been supporting the development of SAML as an Internet standard for the exchange of authentication and authorization policies across platforms and enterprise boundaries. SAML contributes a significant piece to the standards stack in the evolving Web services space,” said Sinisa Zimek, Director Technology Architecture & Standards for SAP. “As one of the leading developers of Web services-enabled integration solutions and an active supporter of OASIS, Sybase is excited to learn that SAML has been approved by this standards body,” said Billy Ho, senior vice president and general manager of Sybase’s e-Business Division. “By ensuring the security of XML-based transactions and interactions, SAML will help make Web services usable to all enterprises. Sybase will use SAML extensively to support next-generation security framework in our current and future service oriented architecture (SOA) offerings.” “By serving as the ‘lingua franca’ for myriad authentication approaches, we expect the SAML standard to have a major impact on the broader Web services security arena,” said Don Adams, Principal Architect, Office of the CTO, TIBCO Software Inc. About OASIS (http://www.oasis-open.org) OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 500 corporate and individual members in 100 countries around the world. For more information: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Dallas, TX, USA, 4 November 2002 — OASIS, the global standards consortium, today announced that it will expand its organization to include the security advocacy group, PKI Forum. As the newest OASIS Member Section, PKI Forum will continue to advance the use of the Public-Key Infrastructure (PKI) as a foundation for secure transactions in e-business and Web services applications. “Since much new standards and application development activity is in the world of XML-related standards, and since it is vital for PKI to become integrated into applications, this move makes sense. The synergies among the groups within OASIS should help PKI move to the next phase as an unseen but foundational part of the infrastructure,” said Victor S. Wheatman, Vice President and Research Area Director for Gartner, Inc. The OASIS PKI Member Section joins a growing list of OASIS activities that address Web services and security including WS-Security, the Security Assertion Markup Language (SAML), the XML Access Control Markup Language (XACML), the Rights Language, the Service Provisioning Markup Language (SPML) and XML Common Biometric Format (XCBF) and the Digital Signature Services (DSS) protocol. “OASIS advances the adoption of today’s most important Web services security standards. PKI is an important foundation for those standards, and it makes perfect sense for PKI Forum to be part of the consortium,” noted Terry Leahy of Wells Fargo, who served as chair of the PKI Forum Executive Board and now leads the OASIS PKI Member Section Steering Committee. Leahy added that moving PKI Forum’s activities within OASIS will benefit members from both organizations as well as increase market awareness of all the e-business enabling tehnologies. “Coordination and interoperability between the various security standards are key factors for the success of Web services,” said Patrick Gannon, president and CEO of OASIS. “Advancing the adoption of PKI alongside other Web services and e-business security standards at OASIS makes it easier for every company with a serious stake in the security agenda to be represented and involved in this work.” Under the new organizational structure, members of PKI Forum will join OASIS and be eligible to contribute to all OASIS technical work. Existing OASIS members will have the option to participate in PKI committee activities without additional membership dues. PKI committees will be formed and operate under the OASIS technical process. The PKI Forum Executive Board will continue to guide the alliance as the OASIS PKI Member Section Steering Committee. Members include Derek Brink of RSA Security, Peter Doyle of Baltimore Technologies, John Sabo of Computer Associates, Mitch Arnone of Schlumberger Network Solutions, Patrick Gen Kanaishi of Neucom, Terry Leahy of Wells Fargo, and Jeff Stapleton of KPMG. OASIS will host open mail lists for public comment on PKI Forum activities, and completed work will be freely available to the public without licensing or other fees. About PKI Forum (www.oasis-pki.org) PKI Forum brings technology and service providers, integrators and end-users together to accelerate the adoption and use of PKI applications, digital certificates and other real world solutions, as well as to facilitate interoperability through multi-vendor testing of industry standards and educational outreach. Established in 1999, PKI Forum serves as a global information resource for PKI and advocates cooperation and market awareness enabling organizations to understand and exploit the value of PKI in applications relevant to their businesses. About OASIS (http://www.oasis-open.org) OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 500 corporate and individual members in 100 countries around the world. For more information: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 24 October 2002 – Members of the OASIS standards consortium have formed a technical committee to develop open XML protocols for digital signature and cryptographic timestamping services operating in a Web services context. The work of the new OASIS Digital Signature Services Technical Committee will enable Web services to produce and verify digital signatures and provide techniques for proving that a given signature was created within its private key validity period. “Digital signatures and timestamping provide the long-term integrity and accountability that’s necessary for online business transactions,” said Robert Zuccherato of Entrust, chair of the OASIS Digital Signature Services Technical Committee. “Our work at OASIS will allow organizations to determine the parties involved in a transaction and the specific moment in time when a transaction occurred, with the assurance that the transaction has not been altered since it was digitally signed. These are all essential attributes of important business transactions.” Industry analyst, Phil Schacter, VP of Directory and Security Strategies for the Burton Group, agrees, “Commerce between companies and supply chains requires timestamping and signing services from trusted sources to support non-repudiation for high value business transactions. OASIS provides an open standards forum to advance this important aspect of securing Web services.” The work of the OASIS Digital Signature Services Technical Committee complements several Web services security standards currently being developed within OASIS including XACML for access control, SAML for authentication and authorization, and WS-Security for secure Web services. Specifications developed within the World Wide Web Consortium (W3C), including XML Signature and XML Key Management, are also related to this new effort. “This new OASIS technical committee will build on the foundational work that the W3C has accomplished in the area of digital signatures,” explained Karl Best, director of technical operations for OASIS. “Maintaining active liaisons with other initiatives–both internal and external to OASIS–will ensure that the output of this committee will fit well within the ‘big picture’ of security standards.” Participation in the OASIS Digital Signature Services Technical Committee remains open to all organizations and individuals. OASIS will host an open mail list for public comment, and completed work will be freely available to the public without licensing or other fees. Information on joining OASIS can be found on http://www.oasis-open.org/join. Industry Support for OASIS Digital Signature Services “As a sponsor member of OASIS, we are excited about this new technical work, which we feel is essential to the development of Web services security,” said Bill Conner, chairman, president and CEO of Entrust. “We view open, interoperable digital signature and timestamping services as critical components of our recently announced Entrust Secure Transaction Platform.” “Security is one of the major remaining obstacles to the wide-spread adoption of Web services for enterprise integration.” said Eric Newcomer, CTO at IONA. “We are always pleased to see open standards activities make progress on key aspects such as the document confidentiality protection that digital signature services will provide, and are looking forward to working with our fellow members to improve Web services security and promote interoperability.” “This proposal underscores the industry’s efforts to build trust and security into the fabric of Web services infrastructure, which VeriSign considers to be a key hurdle on the road to widespread adoption,” said Dr. Phillip Hallam-Baker, principal scientist and Web Services Security Architect for VeriSign, Inc. “Digital signature technology will play a critical role in helping enterprises deploy trusted Web Services, and VeriSign is fully behind this latest effort by OASIS.” “Web services have become an important component in many companies’ integration strategies, and as Web services proliferate, security must not be ignored,” said Jeremy Epstein, director of product security for webMethods. “We believe the standards emanating from the work of the OASIS Digital Signature Services Technical Committee will play an important role in providing companies with the comfort level they need to promote the mass adoption of Web services.” About OASIS (http://www.oasis-open.org) OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 500 corporate and individual members in 100 countries around the world. For more information: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Geneva, Switzerland and Boston, MA, USA; 1 October 2002 — A new survey to determine the impact of multi-lingual technologies on global e-business is the latest product of cooperation between two international organizations developing complementary standards for localization. The Organization for the Advancement of Structured Information Standards (OASIS), together with the Localization Industry Standards Association (LISA), have produced a Global eBusiness Survey http://www.lisa.org/interact/2002/ebizsurvey.html designed to investigate the amount of activity and resources devoted to using or developing localization products. “The survey will provide insight into the needs and implementation plans of users of Web services and language processing standards,” explained Michael Anobile, Managing Director of LISA. The survey is structured in two parts: The Business Process section is for managers responsible for international product, services, sales or support operations; the Localization Expert section is designed for product, web services, development and standards professionals. “The information we collect will be very significant for managers, planners, information architects, and executives who are interested in the trends and standards that will enable them to more easily conduct global e-Business–including Web services,” said Patrick Gannon, president and CEO of OASIS. Preliminary results of the survey will be presented by Gannon on 5 November at the 2002 LISA Forum Europe in Heidelberg, Germany. This survey is part of a recent series developed by LISA to measure the impact of language in business, multi-lingual content creation and the related technologies and standards. Future surveys in process by OASIS and LISA will focus on the governmental policies impacting e-Business and cross-border trading along with the evolution and adoption of global standards to meet the cultural requirements of each market. About LISA (http://www.lisa.unige.ch/) Formed in 1990, today LISA members comprise 210 companies employing over 400,000 people in 65 countries. LISA’s mission is to promote the importance of communicating correctly to other cultures and learning how to operate successfully in the global marketplace. It accomplishes this by creating an environment whereby companies can exchange information on the development of the processes, tools, technologies and business models that facilitate international business. LISA has grown into the leading association of the (Globalization, Internationalization, Localization and Translation) GILT industry, offering regular forums, seminars and training events, establishing best practices, developing language processing standards and promoting the industry. Its blend of formal and informal contacts and the representation of all key industry groups make it unique. About OASIS (http://www.oasis-open.org) OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 500 corporate and individual members in 100 countries around the world. For more information: Alison Rowles Managing Director SMP Marketing Sarl Alison@smp-m.com Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 25 September 2002 — Legal and technical communities unite as OASIS, the XML interoperability consortium, forms six new LegalXML committees to create standards for the electronic exchange of legal data. Backed by government agencies, lawyers, and vendors, the new working groups include: * OASIS LegalXML Integrated Justice Technical Committee, which will design XML specifications for exchanging data among justice system branches and agencies; * OASIS LegalXML eNotarization Technical Committee, which will develop an agreed set of technical requirements to govern self-proving electronic legal information; * OASIS LegalXML eContracts Technical Committee, which will advance XML standards to enable the efficient creation, maintenance, management, exchange and publication of contract documents and terms; * OASIS LegalXML Electronic Court Filing Technical Committee, which will develop specifications for the use of XML to create legal documents and to transmit legal documents between attorneys, litigants, courts, and other users of legal documents; * OASIS LegalXML Legislative Documents, Citations, and Messaging Technical Committee, which will further develop open XML standards for the markup of legislative documents to allow the public to more easily participate in the democratic process by creating open, accessible legislative documents; * OASIS LegalXML Transcripts Technical Committee, which will design an XML-compliant syntax for representing legal transcript documents. “As part of OASIS, LegalXML has increased the rate of creation of requirements and specification drafts that will become OASIS LegalXML Standards. The Court Filing standard is undergoing interoperability testing, which has lead to the refinement of the interoperabity definition and standardization of the process,” said Don Bergeron of LexisNexis, chair of the OASIS LegalXML Steering Committee. “LegalXML technical committees are developing the requirements, specifications, data models, data dictionaries, and proposed standards that are necessary for the electronic exchange of legal information. OASIS LegalXML will continue to listen to the needs and concerns of the legal community to ensure our standards remain both efficient and effective.” “These new OASIS LegalXML technical committees are a testament to the energy and momentum that is building for LegalXML,” said Patrick Gannon, president and CEO of OASIS. “It is significant to note that although the OASIS intellectual property policy allows both Royalty-Free (RF) and Reasonable and Non-Discriminatory (RAND) licensing, LegalXML technical committees have all decided to provide their work to the public on an RF basis.” Participation in the LegalXML remains open to all organizations and individuals. OASIS hosts open mail lists for comment on the work of each technical committee, and completed specifications will be freely available to the public without licensing or other fees. Information on joining OASIS can be found on http://www.oasis-open.org/join. About LegalXML LegalXML brings legal and technical experts together to create standards for the electronic exchange of legal data. LegalXML operates as a member section within OASIS, the not-for-profit, global consortium that drives the development, convergence and adoption of e-business standards. Members themselves set the LegalXML agenda, using the open OASIS technical process expressly designed to promote industry consensus and unite disparate efforts. LegalXML produces standards for electronic court filing, court documents, legal citations, transcripts, criminal justice intelligence systems, and others. http://www.legalxml.org/ For more information: Carol Geyer Director of Communications OASIS carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 10 September 2002 – Members of the OASIS standards consortium have formed a technical committee to facilitate distributed systems management over the Internet. The work of the new OASIS Management Protocol Technical Committee will enable businesses to manage their own Web services and oversee their interaction with services offered by other companies. The OASIS Management Protocol will be designed to manage desktops, services, and networks across an enterprise or Internet environment. “The widespread need for the integration of systems and network management tools is causing the industry to take a more holistic approach to the management of networks–and Web services provide the ideal vehicle for making that happen,” explained Winston Bumpus of Novell, chair of the OASIS Management Protocol Technical Committee. “Our work at OASIS will help level the playing field and allow companies to manage systems regardless of the platform they use.” OASIS is reviewing a number of Web services standards and operations for potential use in the Management Protocol, including XML, SOAP, Open Model Interface (OMI), and the Distributed Management Task Force’s Common Information Model (CIM). The Management Protocol joins several Web services standards currently being developed within OASIS. Other specifications include UDDI for discovery, ebXML for electronic business commerce, WS-Security for secure Web services, WSIA for interactive Web applications, WSRP for remote portals, and others. Participation in the OASIS Management Protocol Technical Committee remains open to all organizations and individuals. OASIS will host an open mail list for public comment, and completed work will be freely available to the public without licensing or other fees. Information on joining OASIS can be found on http://www.oasis-open.org/join. About OASIS OASIS (http://www.oasis-open.org) is a not-for-profit, global consortium that drives the development, convergence and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 500 corporate and individual members in 100 countries around the world. For more information: Carol Geyer OASIS Director of Communications carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 5 September 2002 — ebXML Messaging Service Specification version 2.0 has become the newest OASIS Standard, successfully completing a recent election by the consortium’s membership at-large. The ebXML Messaging Service standard, which provides a secure method for exchanging electronic business transactions using the Internet, carries forward work initiated by OASIS and the United Nations Centre for Trade Facilitation and Electronic Business (UN/CEFACT). “We applaud the outstanding efforts of the members of the OASIS ebXML Messaging Service Technical Committee in collaborating on this important standard for electronic business,” said Patrick Gannon, president and CEO of OASIS. “Its overwhelming approval is a testament to the OASIS technical process, which fosters open development of standards at a pace that meets the needs of industry.” To attain status as an OASIS Standard, ebXML Messaging Service v2 was first approved by its development team as an OASIS Committee Specification. After being implemented by a minimum of three organizations, it then underwent a 90-day open review, before the final balloting of OASIS members. “OASIS members enhanced the ebXML Messaging specification by simplifying, clarifying and modularizing the functionality for easier implementation,” said Ian Jones, chair of the OASIS ebXML Messaging Services Technical Committee. “We look forward to continuing to build on this solid foundation and invite others to join us and put forth requests for future enhancements. We will be working closely with related groups at OASIS and W3C to ensure a synergy of our collective efforts.” ebXML Messaging is one of a suite of specifications that enables enterprises of any size and in any geographical location to conduct business over the Internet. ebXML Messaging Service v2 joins two other ebXML specifications that were recently approved as OASIS Standards, ebXML Registry Service (RS) v2 and ebXML Registry Information Model (RIM) v2. The ebXML Collaboration Protocol Profile and Agreement (CPPA) has completed the first-level of OASIS approval process as an OASIS Committee Specification. Development of ebXML specifications for Business Process and Core Component work continue with the UN/CEFACT process. ebXML Messaging Service v2 was developed by Commerce One, Cyclone Commerce, eXcelon, Fujitsu, GE Global Exchange, IBM, Intel, Mercator, SAP, SeeBeyond, Sonic Software, Sterling Commerce, Sun Microsystems, Sybase, webMethods, and other OASIS Contributor and Individual members. Industry Support for OASIS Standard: ebXML Messaging “As an active member of the OASIS ebXML Messaging Service Technical Committee, Fujitsu is very pleased that the ebXML Messaging Service V2.0 was approved as an OASIS Standard,” said Masahiko Fujita, Group Senior Vice President, Software Group, Fujitsu Limited. “Fujitsu has been a leading contributor to the ebXML Message Service specification, in particular by submitting reliable messaging functions. Interstage, Fujitsu’s eBusiness infrastructure software product, supports the ebXML Message Service. We believe that the standardization of an open and reliable messaging specification is a major step toward achieving large scale interoperability among eBusiness systems on the Internet.” “The integration of business processes and technology systems with customers, channels and suppliers is essential for helping companies reap the rewards of Collaborative Commerce,” said Chris Casgar, Senior Architect at NerveWire, Inc. “Now that the ebXML messaging service has evolved into a second generation standard, we will recommend it to our Fortune 500 high tech and financial services clients as an attractive option for driving standards into their external trading partner integration infrastructure. This will help them reduce their total cost of ownership of integration infrastructure, as well as provide high quality of service capabilities necessary for effective B2B integration and overcoming some shortcomings associated with current Web Services standards.” “SAA is a member of leading e-Business and XML associations, ensuring that organizations can benefit from the latest initiatives and ratified standards. Our expertise and experience in application integration and B2B data exchange has enabled the development of the REIMS product range. REIMS has extensive support for ebXML and other XML frameworks to facilitate the exchange of transactions within a community of business partners,” said Alex Lochhead, Managing Director of SAA Consultants. “It is our goal to deliver true business interoperability and support e-business initiatives through our REIMS solutions and our involvement with OASIS and ebXML.” “The ebMS 2.0 specification extends the current state of the art in secure and reliable Internet data exchange for collaborative B2B electronic commerce, most notably EDI over the Internet and business quality Web services. With attention to B2B security, reliability and extensibility, it effectively bridges legacy EDI with emerging Web services-based infrastructure, technologies, interaction patterns and XML documents — which is relevant and attractive for next generation B2B. This second release demonstrates an industry and vendor commitment to drive the standard forward,” said Brian Gibb, Vice Chair of the OASIS ebXML Messaging Services TC and Director, Standards and Applied Technology for Sterling Commerce. “The current ebMS 2.0 implementation in our Sterling Integrator product is a first step in a long-term commitment to support and drive ebXML framework adoption among the Sterling Commerce customer base.” “ebXML messaging is designed to meet the practical requirements of electronic commerce in a way that fits existing legal and commercial frameworks” said Ed Julson, Sun’s Group Marketing Mgr, XML & Web Services. “ebXML messaging is destined to play an important role in the transition of large-scale electronic commerce from private networks to the Internet. Sun has supported and contributed to the ebXML effort from day one, and believes ebXML is a key component in providing open, royalty-free standards for the development of global commerce.” “Sybase is pleased to see approval of version 2.0 of the ebXML Messaging Service Specification, and is proud to say that we have incorporated full support for ebXML Messaging 2.0 in our Web Services Integrator product, further augmenting our comprehensive, end-to-end ebXML solution,” said Billy Ho, Senior VP and General Manager, e-Business Division of Sybase. “As one of four vendors to pass the Drummond interoperability testing earlier this year, we have demonstrated our commitment to delivering open, standards based, vendor interoperable e-Business solutions. ebXML Messaging 2.0 is a standard that can help the industry get one step closer to achieving this on a larger scale.” “TIBCO Software is committed to driving and supporting industry standards,” said Ramin Sayar, director of products and solutions at TIBCO Software. “TIBCO is proud to be among the companies helping to advance the ebXML Messaging Service Specification v2.0 to various customers and industries. ebXML is the first comprehensive integration standard with a framework that provides companies a defined way to develop and deploy secure and reliable Web services.” “XML Global believes that ebXML Messaging is a key milestone for ensuring a secure, reliable and open e-Business infrastructure and we are committed to continuing our work in this critical area,” said Matthew MacKenzie, Chief Software Architect for XML Global Technologies, Inc. About OASIS (http://www.oasis-open.org) OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 500 corporate and individual members in 100 countries around the world. For more information: Carol Geyer OASIS Director of Communications carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 29 August 2002 — Boston, MA, USA; 29 August 2002 — Data standards organizations representing health care, banking, prescription eyewear, and supply chain management have become the latest industry groups to appoint representatives to the OASIS Universal Business Language (UBL) Technical Committee. HL7, SWIFT, VCA, and e.centre join liaisons from a broad group of industry standards organizations in the subcommittee that provides guidance to UBL, the initiative to define standard XML business forms for electronic commerce. “HL7 is not looking to UBL to replace our already existing XML schemas for medical records,” said Wes Rishel, chair of HL7. “But health care companies such as hospitals and clinics are major consumers of supplies from a wide variety of vendors. Using the UBL supply chain documents for these ordinary procurement transactions makes practical sense — we can concentrate on the data standards that require our knowledge of health care without reinventing basic business schemas for supply chain management.” “One of the great challenges SWIFT is actively involved in, as a standardisation body, is the convergence of the different XML standardisation initiatives within the finance industry, and the further alignment across industries,” said Jean-Marie Eloy, Head of Standards for SWIFT. “We see UBL as a great opportunity to assist us in ensuring that this convergence will actually happen.” “Prescription eyewear is produced and distributed by a highly specialized web of businesses” said Bill Thomas, CEO of VCA. “Each pair of eyeglasses must be custom made to exacting standards to meet the wide range of prescriptions and the many product options. Prescription eyewear is a regulated medical device and is often covered by health insurance plans. All of this results in a vast quantity of very detailed and often vision-specific business transactions. We believe that UBL can help us improve the industry’s efficiency in handling these transactions.” “e.centre, on behalf of EAN.UCC, welcomes the opportunity to work with UBL and hopes that this effort will further the cause of convergent XML data transfer standards based upon the principles of ebXML,” said James Whittle, Consulting Services Executive for e.centre. “As EAN.UCC move to implement ebXML based solutions, it is vital, on behalf of our one million users worldwide, that we promote a spirit of co-operation and openness to facilitate effective and efficient standards development.” Organizations that have already appointed liaisons to UBL include: ACORD, representing the insurance industry; ARTS, representing retail sales; ASC X12 and the UN/EDIFACT Working Group, representing U.S. and international EDI standards; EIDX, representing the electronics industry; NACS, representing convenience stores; RosettaNet, the information technology consortium; and XBRL, the accounting industry standards organization. UBL liaisons provide input to UBL and coordinate the review of standard XML business schemas as they become publicly available. Information about the UBL Liaison Subcommittee and its members can be found on the LSC web page at http://oasis-open.org/committees/ubl/lsc/. “Input from industry data exchange organizations ensures that UBL reflects the needs of the marketplace,” said Jon Bosak of Sun Microsystems, chair of the OASIS UBL Technical Committee and organizer of the working group that created XML. “Our goal of defining a common XML library for basic business documents like purchase orders, invoices, and shipping notices crosses all industries. Contributing to the development of our library of UBL schemas allows industry groups to pool their resources in the design of common business documents and to focus their special expertise on the development of XML schemas for the documents that are specific to their own domain.” About UBL (http://www.swift.com/) SWIFT is the industry-owned cooperative supplying secure messaging services and interface software to 7,000 financial institutions in 197 countries. SWIFT carried over 1.5 billion messages in 2001. The average daily value of payment messages on SWIFT is estimated to be above USD 6 trillion. SWIFT provides messaging services to banks, broker/dealers and investment managers, as well as to market infrastructures in payments, treasury, securities and trade. These services help customers reduce costs, improve automation and manage risk. SWIFT is also leading convergence initiatives in the finance industry, collaborating with over 30 different organisations involved in financial standards. About VCA (http://www.visionsite.org) Vision Council of America is the U.S. prescription eyewear trade association representing 2,000 supplier companies and 80 leading manufacturers. VCA member companies do business in more than 40 countries around the world. The U.S. eyewear industry, with over 30,000 stores across the country, posted sales of $15 billion for 2001. About e.centre (http://www.e-centre.org.uk) e.centre is an independent, not-for-profit association providing guidance and support for its 16,000+ members on supply chain efficiency through the use of the EAN.UCC System for bar coding and business-to-business communications such as EDI (electronic data interchange). e.centre is the UK authority for the EAN.UCC System, which is used in 129 countries worldwide and forms the basis of interoperable solutions such as asset tracking, traceability and collaborative planning. About OASIS (http://www.oasis-open.org) OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 500 corporate and individual members in 100 countries around the world. For more information: Carol Geyer Director of Communications OASIS carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 28 August 2002 — The OASIS standards consortium has organized a new technical committee to advance the Universal Description, Discovery, and Integration (UDDI) specification for Web services. UDDI enables companies and applications to dynamically find and use Web services using preferred applications. The OASIS UDDI Specification Technical Committee is the first committee created within the OASIS UDDI Member Section, a group formed as a result of the recent UDDI.org transition to OASIS. Simon Yates, Director of Web Services Research for the Hurwitz Group commented, “The formation of the OASIS UDDI technical committee ensures that vendors and users alike will benefit from a consistent and unified approach to the development and implementation of UDDI. Under the umbrella of OASIS, UDDI and other foundation web service standards like WS-Security and ebXML are assured of an independent and reliable treatment.” “UDDI provides a foundation for the infrastructure needed to drive the success of Web services,” said Tom Bellwood of IBM, co-chair of the OASIS UDDI Specification Technical Committee. “We are excited to begin work on standardizing the UDDI specification at OASIS, as well as developing and organizing the best practices that relate to its use.” Members of the OASIS UDDI Specification Technical Committee include BEA Systems, Cincom, Computer Associates, E2open, Entrust, Fujitsu, Hewlett-Packard, IBM, Intel, IONA, Microsoft, MSI Business Solutions, NerveWire, Novell, Oracle, Perficient, SAP, SeeBeyond, Sun Microsystems, TIBCO, Verisign, webMethods, XML Global, and others. “Advancing UDDI within OASIS will help accelerate adoption and benefit the entire industry,” added Luc Clement of Microsoft, also serving as co-chair of the OASIS UDDI Specification Technical Committee. “Interest from OASIS member organizations in moving UDDI forward is high, and we look forward to input from a wide variety of companies.” UDDI joins several Web services standards currently being developed within OASIS. Other specifications include ebXML for electronic business commerce, WS-Security for secure Web services, WSIA for interactive Web applications, WSRP for remote portals, and others. Participation in the OASIS UDDI Specification Technical Committee remains open to all organizations and individuals. OASIS will host an open mail list for public comment, and completed work will be freely available to the public without licensing or other fees. Information on joining OASIS can be found on http://www.oasis-open.org/join. Industry Support for UDDI at OASIS “BEA has been a strong supporter of open standards since our founding, and we are pleased that the work of the UDDI consortium is continuing within OASIS,” said Ed Cobb, VP of Architecture and Standards, BEA Systems, and member of the OASIS Board of Directors. “BEA believes that the benefits of open standards will further the widespread acceptance of Web services.” “UDDI is a critical standard for ensuring the easy accessibility and full interoperability of Web Services inside and outside of the enterprise,” said Toby Weiss, senior vice president of eTrust Development at Computer Associates. “As the provider of a secure and scalable UDDI compliant eTrust Directory to enterprises around the globe, CA is excited to participate in the OASIS UDDI Specification Technical Committee to refine and guide this standard forward.” “We believe security for Web services will provide dramatic benefits for governments and enterprises extending their business processes over the Internet,” said Al DeLorenzi, vice-president, New Product Portfolio, Entrust, Inc. “Fully unlocking the power of the Web to enable new business models will require mechanisms to establish trust within the Web services context. UDDI within OASIS, is an important initiative indefining a solution and we intend to continue to support its efforts.” “Intel sees UDDI as a key piece in enabling Web services, and we are committed to help ensure the evolution of UDDI as a key standard,” said Sandip Mandera, Intel Staff Technical Marketing Engineer. “Bringing UDDI under the OASIS umbrella is a natural fit,” says Andy Sweet, CTO at Perficient. “With the improved security, subscription capability, and Web Services Description Language (WSDL) support in Version 3 of UDDI, it is now critical to focus on the widespread adoption of this core component of Web services. Perficient looks forward to contributing to this important effort.” “OASIS is the right body to promote UDDI because of its continuously growing confidence and strong membership from various industry sectors such as vendors, solution providers, end-users, individuals, and research groups,” said Ram Kumar, Chief Technologist and Architect of MSI Business Solutions. “As the chair of the OASIS CIQ Technical Committee and with my experience working with OASIS for the past three years, I am confident that UDDI will evolve into a true open standard and will become successful because of the sound open technical process of OASIS. By overseeing UDDI, along with other Web services standards, OASIS is now the central body for Web services standards, and this is great news.” “The standardization of UDDI will be one of the most important steps to reaching the Web services world we all envision, where businesses collaborate dynamically over the Internet and enterprise systems seamlessly integrate,” said Winston Bumpus, director of standards for Novell. “Novell has always been outspoken about the need to develop industry protocols within the forum of an open standards body; so we were extremely supportive of the decision to move the UDDI specification to OASIS. Now, as a member of the OASIS UDDI Specification Technical Committee, Novell will add a unique perspective to the development and adoption of UDDI. A UDDI registry is simply a directory of Web services, and no one understands directories better than Novell, having spent more than a decade developing and deploying them.” “Today’s collaborative processes build on reliable and seamless publication and discovery of Web services. UDDI provides necessary building blocks to deploy Web services in a standardized manner,” said Franz-Josef Fritz, VP of Technology Product Management and Architecture, SAP AG. “To facilitate rapid adoption at the business side, SAP will continue to contribute its customers’ requirements and long standing industry experience to further drive and enhance UDDI as an OASIS standard. ” “TIBCO is proud to lend its expertise and experience to the UDDI Specification Technical Committee’s goal of refining and changing specifications for Web services,” said Ramin Sayar, director of products and solutions at TIBCO Software. “Searching, aggregating, and managing Web services will become critical as these services are deployed. UDDI is well positioned to address these vital issues.” About OASIS OASIS (http://www.oasis-open.org) is a not-for-profit, global consortium that drives the development, convergence and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, XML conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. OASIS has more than 500 corporate and individual members in 100 countries around the world. For more information: Carol Geyer Director of Communications OASIS carol.geyer@oasis-open.org +1.978.667.5115 x209