, Author at OASIS Open - Page 9 of 115

Borderless Cyber USA 2018 Assembles Cybersecurity Experts to Explore Latest Innovations and Strategies

Washington, DC, USA; 3 October 2018,—Borderless Cyber USA 2018 is a two-day cybersecurity conference taking place at The World Bank in Washington, DC, Oct. 3-4, 2018.

The event features a diverse set of keynote speakers from both government and private industry—leaders who are implementing the latest technologies to protect organizations and their users against cybersecurity threats. The event also includes sessions lead by global experts who share their real-world experience and recommendations.

The conference will be followed by a one-day training session on the STIX 2 and TAXII 2 standards for threat intelligence sharing.

Borderless Cyber is organized by The World Bank, the OASIS open source and standards consortium, Georgetown University, and the Institute for Critical Infrastructure Technology.

Keynote Speakers:

– Melissa Hathaway, President of Hathaway Global Strategies, served under two U.S. presidents where she ran the Comprehensive National Cybersecurity Initiative (CNCI) and spearheaded the Cyberspace Policy Review.

– Gupta, Director of Security at Facebook, has spent the past 20 years developing secure, scalable security software that has protected billions of users.

– William Evanina, Director of the National Counterintelligence and Security Center, is the principal security advisor for the U.S. Director of National Intelligence.

– Melanie Ensign, Security and Privacy Communications Lead at Uber, specializes in reputation management, media engagement, and incident response.

– Ursula Owusu-Ekuful, a member of the Ghanaian Parliament, previously served as Ghana’s Minister of Communications.

– Tony Scott, Managing Partner at Ridge-Lane Limited Partners, served as the U.S. Federal Chief Information Officer from 2015 through 2017.

Support for Borderless Cyber

EclecticIQ
“Borderless Cyber USA, with its focus on STIX-TAXII training, help the cybersecurity community to strategically align in the fight against adversaries. We are proud to be a platinum sponsor.”
— Dane Coyer, General Manager EclecticIQ North America

Fujitsu
“Fujitsu will demonstrate S-TIP (Seamless – Threat Intelligence Platform) proto-type at Borderless Cyber. This platform merges human (SNS, email) and system (STIX/TAXII) CTI sharing seamlessly to help reveal 5Ws1H of cyber-attacks (such as threat actors, time periods, objectives, attack targets, intrusion paths, methods) with its capabilities like CTI graph analytics engine. Fujitsu has been a CTI TC member since the OASIS CTI Technical Committee’s establishment.
–Hitoshi Habe, Director of Marketing & Sales (Cyber Systems), Defense Systems Unit, Fujitsu

IBM Security
“At IBM Security, we’re constantly innovating to find new and better ways to protect your data and the people it belongs to — your customers. But your customers are also our family, our friends, and our neighbors — people we care about. That’s why our 8,000 IBM Security global employees exist to protect the world, freeing you to thrive in the face of cyber uncertainty. As the market leader in enterprise security, we hold more then 3,700 security-related patents and monitor over 60B+ security events per day.”
–Jason Keirstead, Lead Architect, IBM.Security

NC4
“Cybersecurity is one of the biggest challenges facing organizations all over the world. NC4 is excited to participate in Borderless Cyber USA to be part of conversations around best practices in turning cyber intelligence into defensive action to make all of our communities safer.”
— George Johnson, VP of Cyber Solutions and Chief Security Officer, NC4

NormShield
“In a world where the weakest link in a corporate cyber security system is a trusted supplier connected to the company’s network. NormShield’s non-intrusive cloud-based external cyber risk assessment can scan suppliers’ networks and cloud/web applications, in 60 seconds, and provide corporate supply chain risk managers with a comprehensive Cyber Risk Scorecard based on industry standards that will assess the suppliers’ cyber risk posture and provide visibility to what hackers are able to discover as well as immediate remediation recommendations.”
— Mohamoud Jibrell, Co-Founder & CEO, NormShield

ThreatQuotient
“ThreatQuotient is looking forward to the opportunity to share a stage with our industry peers at Borderless Cyber in DC. We all share a common goal to bring order to the chaos of security operations, and ThreatQuotient views the chance to share diverse insight with the organizations on the frontlines as a great responsibility. Threat intelligence programs can take on a lot of forms, but the role threat intelligence remains critical.”
— Ryan Trost, Co-Founder and CTO, ThreatQuotient

Additional Information
Visit us18.borderlesscyber.org to view the full program and speaker list or to learn more about the STIX/TAXII 2.0 Training that follows the event.

###

About OASIS:
OASIS is one of the most respected, member-driven standards bodies in the world. It offers standards and open source projects a path to recognition in international policy and procurement. OASIS has a broad technical agenda encompassing cybersecurity, privacy, cryptography, cloud computing, IoT, legal, emergency management, augmented reality, and more. Any initiative for developing code, APIs, specifications, or reference implementations can find a home at OASIS. Each project operates independently under industry-approved process and IPR policies. Some of the most widely adopted OASIS Standards include AMQP, CAP, CMIS, DITA, DocBook, KMIP, MQTT, OpenC2, OpenDocument, PKCS, SAML, STIX, TAXII, TOSCA, UBL, and XLIFF. Many of these have gone on to be published as ISO, IEC, or ITU standards. New work is encouraged, and all are welcome to participate. OASIS members can be found in 100+ countries on virtually every continent. Major multinational companies, SMEs, government agencies, universities, research institutions, consulting groups, and individuals are represented. http://www.oasis-open.org http://www.oasis-open-projects.org

Press Contact: communications@oasis-open.org +1.941.284.0403

Invitation to comment on The DocBook Schema v5.0.1 – ends Oct. 20th

OASIS and the OASIS DocBook TC are pleased to announce that The DocBook Schema Version 5.0.1 is now available for public review and comment.

DocBook is widely used in computer hardware and software documentation in both commercial and Open Source environments. Broadly, this includes both print and online tutorial and reference documentation as well as online help, user guides, exercises and other ancillary forms of documentation.

The DocBook Version 5.0 schema was delivered in 2009 using the RelaxNG schema language with additional constraints specified in Schematron. The Schematron rules changed after DocBook 5.0 was released, so some Schematron tools do not work with DocBook 5.0. The DocBook 5.0.1 specification is updated with the new Schematron rules so users can continue using DocBook 5.0 if they need to use newer Schematron tools.

The documents and related files are available here:

The DocBook Schema Version 5.0.1
Committee Specification Draft 01 / Public Review Draft 01
12 September 2018

For your convenience, OASIS provides a complete package of the specification document and any related files in ZIP distribution files. You can download the ZIP file at:
http://docs.oasis-open.org/docbook/docbook/v5.0.1/csprd01/docbook-v5.0.1-csprd01.zip

How to Provide Feedback

OASIS and the OASIS DocBook TC value your feedback. We solicit input from developers, users and others, whether OASIS members or not, for the sake of improving the interoperability and quality of its technical work.

The public review starts September 21 at 00:00 UTC and ends October 20 at 23:59 UTC.

Comments may be submitted to the TC by any person through the use of the OASIS TC Comment Facility which can be used by following the instructions on the TC’s “Send A Comment” page (https://www.oasis-open.org/committees/comments/index.php?wg_abbrev=docbook).

Comments submitted by TC non-members for this work and for other work of this TC are publicly archived and can be viewed at:
https://lists.oasis-open.org/archives/docbook-comment/

All comments submitted to OASIS are subject to the OASIS Feedback License, which ensures that the feedback you provide carries the same obligations at least as the obligations of the TC members. In connection with this public review, we call your attention to the OASIS IPR Policy [1] applicable especially [2] to the work of this technical committee. All members of the TC should be familiar with this document, which may create obligations regarding the disclosure and availability of a member’s patent, copyright, trademark and license rights that read on an approved OASIS specification.

OASIS invites any persons who know of any such claims to disclose these if they may be essential to the implementation of the above specification, so that notice of them may be posted to the notice page for this TC’s work.

Additional information about the specification and the DocBook TC can be found at the TC’s public home page:

https://www.oasis-open.org/committees/docbook/

========== Additional references:

[1] http://www.oasis-open.org/who/intellectualproperty.php

[2] http://www.oasis-open.org/committees/docbook/ipr.php
https://www.oasis-open.org/policies-guidelines/ipr#RF-on-Limited-Mode
RF on Limited Terms Mode

Invitation to comment on XACML REST Profile v1.1 and JSON Profile of XACML 3.0 v1.1 – ends Oct. 20th

OASIS and the OASIS eXtensible Access Control Markup Language (XACML) TC are pleased to announce that XACML REST Profile Version 1.1 and JSON Profile of XACML 3.0 Version 1.1 are now available for public review and comment.

The REST Profile specification defines a profile for the use of XACML in a RESTful architecture.

The JSON profile proposes a standardized interface between a policy enforcement point and a policy decision point using JSON, leveraging the decision request and response structure specified in the core XACML standard.

The documents and related files are available here:

XACML REST Profile Version 1.1
Committee Specification Draft 01 / Public Review Draft 01
24 August 2018

Editable source: (Authoritative)
http://docs.oasis-open.org/xacml/xacml-rest/v1.1/csprd01/xacml-rest-v1.1-csprd01.doc
HTML:
http://docs.oasis-open.org/xacml/xacml-rest/v1.1/csprd01/xacml-rest-v1.1-csprd01.html
PDF:
http://docs.oasis-open.org/xacml/xacml-rest/v1.1/csprd01/xacml-rest-v1.1-csprd01.pdf
ZIP: (complete package of the specification documents and any related files)
http://docs.oasis-open.org/xacml/xacml-rest/v1.1/csprd01/xacml-rest-v1.1-csprd01.zip

JSON Profile of XACML 3.0 Version 1.1
Committee Specification Draft 01 / Public Review Draft 01
24 August 2018

Editable source: (Authoritative)
http://docs.oasis-open.org/xacml/xacml-json-http/v1.1/csprd01/xacml-json-http-v1.1-csprd01.doc
HTML:
http://docs.oasis-open.org/xacml/xacml-json-http/v1.1/csprd01/xacml-json-http-v1.1-csprd01.html
PDF:
http://docs.oasis-open.org/xacml/xacml-json-http/v1.1/csprd01/xacml-json-http-v1.1-csprd01.pdf
ZIP: (complete package of the specification documents and any related files)
http://docs.oasis-open.org/xacml/xacml-json-http/v1.1/csprd01/xacml-json-http-v1.1-csprd01.zip

How to Provide Feedback

OASIS and the OASIS eXtensible Access Control Markup Language (XACML) TC value your feedback. We solicit input from developers, users and others, whether OASIS members or not, for the sake of improving the interoperability and quality of its technical work.

The public reviews start September 21 at 00:00 UTC and ends October 20 at 23:59 UTC.

Comments submitted by TC non-members for these works and for other work of this TC are publicly archived and can be viewed at:
https://lists.oasis-open.org/archives/xacml-comment/

All comments submitted to OASIS are subject to the OASIS Feedback License, which ensures that the feedback you provide carries the same obligations at least as the obligations of the TC members. In connection with this public review, we call your attention to the OASIS IPR Policy [1] applicable especially [2] to the work of this Technical Committee. All members of the TC should be familiar with this document, which may create obligations regarding the disclosure and availability of a member’s patent, copyright, trademark and license rights that read on an approved OASIS specification.

Additional information about the specification and the XACML TC can be found at the TC’s public home page:
https://www.oasis-open.org/committees/xacml/

========== Additional references:

[1] http://www.oasis-open.org/who/intellectualproperty.php

[2] http://www.oasis-open.org/committees/xacml/ipr.php
https://www.oasis-open.org/policies-guidelines/ipr#RF-on-Limited-Mode
RF on Limited Terms Mode

Akoma Ntoso V1.0 (#AKN) OASIS Standard published

OASIS is pleased to announce the publication of its newest OASIS Standard, approved by the members on 28 August 2018:

Akoma Ntoso Version 1.0. Part 1: XML Vocabulary
OASIS Standard
29 August 2018

Akoma Ntoso means “linked hearts” in the Akan language of West Africa where the original work was done. For legal publishers and makers of legal information systems, Akoma Ntoso provides a framework for creating machine-readable parliamentary, legislative and judiciary documents such as legislation, debate records, minutes, judgments, etc. In doing so, it helps build a strong foundation for “open access” to government information.

The specification is in two parts:

Part 1: XML Vocabulary presents the main motivations, design principles, and benefits of the Akoma Ntoso vocabulary and approach. The document is non-normative material that presents the main pillars of Akoma Ntoso to the stakeholders that need to make decisions about how to manage legal sources in a digital manner in a Semantic Web society.

Part 2: Specifications provides a detailed data dictionary for standard.

Akoma Ntoso received 8 Statements of Use from the Parliamentary Counsel Office of the Scottish Government, the Biblioteca del Congreso Nacional de Chile, Xcential Corporation, Aubay s.a., the ICT Conception and Development Unit of the Directorate General of Innovation and Technological Support of the European Parliament, Information Systems Development of the Italian Senate, The Meeting Programming and Documentation Service of the Food and Agriculture Organization of the United Nations (FAO), and CIRSFID, University of Bologna.

For more information, see the TC’s web page at http://www.oasis-open.org/committees/legaldocml/.

URIs:

The prose specifications and related files are available here:

– Part 1: XML Vocabulary

HTML (Authoritative):
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/os/part1-vocabulary/akn-core-v1.0-os-part1-vocabulary.html

Editable source:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/os/part1-vocabulary/akn-core-v1.0-os-part1-vocabulary.doc

PDF:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/os/part1-vocabulary/akn-core-v1.0-os-part1-vocabulary.pdf

– Part 2: Specifications

HTML (Authoritative):
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/os/part2-specs/akn-core-v1.0-os-part2-specs.html

PDF:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/os/part2-specs/akn-core-v1.0-os-part2-specs.pdf

Distribution ZIP files

For your convenience, OASIS provides a complete package of the prose specification and related files in a ZIP distribution file. You can download the ZIP file here:

http://docs.oasis-open.org/legaldocml/akn-core/v1.0/os/akn-core-v1.0-os.zip

Our congratulations to the members of the LegalDocML TC on achieving this milestone.

#OSLC Change Management v3.0 and OSLC Requirements Management v2.1 approved as Committee Specifications

OASIS is pleased to announce that OSLC Change Management Version 3.0 and OSLC Requirements Management Version 2.1 from the OASIS OSLC Lifecycle Integration Domains TC [1] have been approved as OASIS Committee Specifications.

For anyone developing complex systems and software, managing change and configurations throughout the development lifecycle can be difficult. This is especially true in heterogeneous environments that include homegrown tools, open source projects, and commercial tools from different vendors. Organizations that need to design, develop, deliver, and evolve a portfolio of products can benefit from an open technical architecture that is minimalist, loosely coupled, and standardized.

The OSLC (Open Services for Lifecycle Collaboration) initiative applies Linked Data principles, such as those defined in the W3C Linked Data Platform (LDP), to create a cohesive set of specifications that can enable products, services, and other distributed network resources to interoperate successfully.

OSLC Change Management v3.0 defines a RESTful web services interface for managing product change requests, activities, tasks and relationships as well as related resources such as requirements, test cases, or architectural resources.

OSLC Requirements Management v2.1 builds on OSLC’s Core Specification to define the resources, properties and operations to be supported by an OSLC Requirements Definition and Management (OSLC-RM) server. Requirements Management resources include Requirements, Requirements Collections and supporting resources defined in the OSLC Core specification. The properties defined describe these resources and the relationships between resources. Operations are defined in terms of HTTP methods and MIME type handling. The resources, properties and operations defined target specific integration use cases documented by the OSLC Domains TC.

These Committee Specifications are OASIS deliverables, completed and approved by the TC and fully ready for testing and implementation.

The prose specifications and related files are available here:

OSLC Change Management Version 3.0
Committee Specification 02
24 August 2018

Part 1: Specification
HTML/Editable source (Authoritative):
http://docs.oasis-open.org/oslc-domains/cm/v3.0/cs02/part1-change-mgt/cm-v3.0-cs02-part1-change-mgt.html
PDF:
http://docs.oasis-open.org/oslc-domains/cm/v3.0/cs02/part1-change-mgt/cm-v3.0-cs02-part1-change-mgt.pdf

Part 2: Vocabulary
HTML/Editable source (Authoritative):
http://docs.oasis-open.org/oslc-domains/cm/v3.0/cs02/part2-change-mgt-vocab/cm-v3.0-cs02-part2-change-mgt-vocab.html
PDF:
http://docs.oasis-open.org/oslc-domains/cm/v3.0/cs02/part2-change-mgt-vocab/cm-v3.0-cs02-part2-change-mgt-vocab.pdf

OSLC Requirements Management Version 2.1
Committee Specification 01
24 August 2018

Part 1: Specification
HTML/Editable source (Authoritative):
http://docs.oasis-open.org/oslc-domains/oslc-rm/v2.1/cs01/part1-requirements-management-spec/oslc-rm-v2.1-cs01-part1-requirements-management-spec.html
PDF:
http://docs.oasis-open.org/oslc-domains/oslc-rm/v2.1/cs01/part1-requirements-management-spec/oslc-rm-v2.1-cs01-part1-requirements-management-spec.pdf

Part 2: Vocabulary
HTML/Editable source (Authoritative):
http://docs.oasis-open.org/oslc-domains/oslc-rm/v2.1/cs01/part2-requirements-management-vocab/oslc-rm-v2.1-cs01-part2-requirements-management-vocab.html
PDF:
http://docs.oasis-open.org/oslc-domains/oslc-rm/v2.1/cs01/part2-requirements-management-vocab/oslc-rm-v2.1-cs01-part2-requirements-management-vocab.pdf

Distribution ZIP files
For your convenience, OASIS provides a complete package of the prose specifications and related files in ZIP distribution files. You can download the ZIP files here:
OSLC Change Management Version 3.0 ZIP file:
http://docs.oasis-open.org/oslc-domains/cm/v3.0/cs02/cm-v3.0-cs02.zip
OSLC Requirements Management Version 2.1 ZIP file:
http://docs.oasis-open.org/oslc-domains/oslc-rm/v2.1/cs01/oslc-rm-v2.1-cs01.zip

Members of the OSLC Domains TC [1] approved these specifications by Special Majority Vote. The specifications had been released for public review as required by the TC Process [2]. The votes to approve them as Committee Specifications passed [3], and the documents are now available online in the OASIS Library as referenced above.

Our congratulations to the TC on achieving this milestone and our thanks to the reviewers who provided feedback on the specification drafts to help improve the quality of the work.

========== Additional references:

[1] OASIS OSLC Lifecycle Integration Domains TC
https://www.oasis-open.org/committees/oslc-domains/

[2] Public reviews:
OSLC Change Management Version 3.0
* 30-day public review, 09 November 2017:
https://lists.oasis-open.org/archives/members/201711/msg00003.html
– Comment resolution log:
http://docs.oasis-open.org/oslc-domains/cm/v3.0/csprd01/cm-v3.0-csprd01-comment-resolution-log.txt

OSLC Requirements Management Version 2.1
* 30-day public review, 04 July 2018:
https://lists.oasis-open.org/archives/members/201807/msg00003.html
– Comment resolution log:
http://docs.oasis-open.org/oslc-domains/oslc-rm/v2.1/csprd01/oslc-rm-v2.1-csprd01-comment-resolution-log.txt

[3] Approval ballots:
OSLC Change Management Version 3.0
https://www.oasis-open.org/committees/ballot.php?id=3235
OSLC Requirements Management Version 2.1
https://www.oasis-open.org/committees/ballot.php?id=3234

Invitation to comment on Digital Signature Service Core Protocols, Elements, and Bindings Version 2.0 – ends September 28th

OASIS and the OASIS Digital Signature Services eXtended (DSS-X) TC are pleased to announce that Digital Signature Service Core Protocols, Elements, and Bindings Version 2.0 is now available for public review and comment.

The Digital Signature Services (DSS) specification defines JSON and XML based request/response protocols – a signing protocol and a verifying protocol. Through these protocols a client can send documents or other data to a server and receive back a signature on the documents; or send documents and a signature to a server, and receive back an answer on whether the signature verifies the documents. The DSS Core specifications provide the basic protocols and elements which are adapted to support specific use cases in the DSS profiles. It also defines a timestamp format, and a signature property for use with these protocols. Finally, it defines transport and security bindings for the protocols.

The documents and related files are available here:

Digital Signature Service Core Protocols, Elements, and Bindings Version 2.0
Committee Specification Draft 01 / Public Review Draft 01
29 August 2018

Editable source: (Authoritative)
http://docs.oasis-open.org/dss-x/dss-core/v2.0/csprd01/dss-core-v2.0-csprd01.docx

HTML:
http://docs.oasis-open.org/dss-x/dss-core/v2.0/csprd01/dss-core-v2.0-csprd01.html

PDF:
http://docs.oasis-open.org/dss-x/dss-core/v2.0/csprd01/dss-core-v2.0-csprd01.pdf

JSON and XML schemas:
http://docs.oasis-open.org/dss-x/dss-core/v2.0/csprd01/schema/

For your convenience, OASIS provides a complete package of the specification document and any related files in ZIP distribution files. You can download the ZIP file at:

http://docs.oasis-open.org/dss-x/dss-core/v2.0/csprd01/dss-core-v2.0-csprd01.zip

How to Provide Feedback

OASIS and the OASIS Digital Signature Services eXtended (DSS-X) TC value your feedback. We solicit input from developers, users and others, whether OASIS members or not, for the sake of improving the interoperability and quality of its technical work.

The public review starts August 30, 2018 at 00:00 UTC and ends September 28 at 23:59 UTC.

Comments submitted by TC non-members for this work and for other work of this TC are publicly archived and can be viewed at:

https://lists.oasis-open.org/archives/dss-x-comment/

Additional information about the specification and the DSS-X TC can be found at the TC’s public home page:

https://www.oasis-open.org/committees/dss-x/

========== Additional references:

[1] http://www.oasis-open.org/who/intellectualproperty.php

[2] http://www.oasis-open.org/committees/dss-x/ipr.php
https://www.oasis-open.org/policies-guidelines/ipr#RF-on-Limited-Mode
RF on Limited Terms Mode

OASIS Names Rex Brooks and Robin Cover as Distinguished Contributors

23 August 2018 – Rex Brooks and Robin Cover were honored by the OASIS open standards consortium as Distinguished Contributors in recognition of their accomplishments as leaders, consensus builders, and evangelists the advancement of open standards.

Rex Brooks has been active in OASIS for more than 15 years. He is a founding member of the OASIS Emergency Management Technical Committee and a driving force in its ecosystem. Rex’s experience and education bring an impressive combination of skills to OASIS, enabling him to serve simultaneously as a Systems Architect, Ontology Builder, Emergency Management Specialist, Software Designer, Standards & Open Architecture Educator, Articulate Spokesperson, and Visionary.

“Rex has been a tremendous resource in the development, maintenance, and support of the OASIS Emergency Data Exchange Language (EDXL) suite of standards. These standards, including the Common Alerting Protocol (CAP), are used around the world to help save lives and manage disaster response. Rex has been a key person in our work many years,” said Elysa Jones, chair of the OASIS Emergency Management Technical Committee.

Robin Cover is recognized worldwide as ‘Bibliographer At-Large’ for the SGML/XML industry. An OASIS staff member from 1989-2018, Robin is best known as editor of The Cover Pages, an online library dedicated to open standards-based solutions that protect digital information and enhance the quality of data processing. Robin served as OASIS Director of Information Services and was a recipient of the IDEAlliance XML Cup Award in 2004.

“Few people have had a more positive impact on the standards world than Robin Cover,” said Jon Bosak, leader of the W3C working group that developed XML and former chair of the OASIS Universal Business Language (UBL) Technical Committee. “Robin improved countless specifications with his process guidance and profound understanding of structured information. From his early work in SGML to his many years editing the Cover Pages and his work with OASIS technical committees, Robin has helped us realize that excellence is sometimes attainable and always worth striving for.”

Rex and Robin join their peers in the OASIS Distinguished Contributors hall of fame and are eligible for the benefits of this designation in perpetuity.

“We extend our greatest appreciation to Robin, Rex, and all our Distinguished Contributors for their exemplary service to the mission of OASIS and for reminding us of what is possible,” said Scott McGrath, OASIS Chief Operating Officer.

About OASIS

OASIS is one of the most respected, member-driven standards bodies in the world. It offers standards and open source projects a path to recognition in international policy and procurement. OASIS has a broad technical agenda encompassing cybersecurity, privacy, cryptography, cloud computing, IoT, legal, emergency management, augmented reality, and more. Any initiative for developing code, APIs, specifications, or reference implementations can find a home at OASIS. Each project operates independently under industry-approved process and IPR policies. Some of the most widely adopted OASIS Standards include AMQP, CAP, CMIS, DITA, DocBook, KMIP, MQTT, OpenC2, OpenDocument, PKCS, SAML, STIX, TAXII, TOSCA, UBL, and XLIFF. Many of these have gone on to be published as ISO, IEC, or ITU standards. New work is encouraged, and all are welcome to participate. OASIS members can be found in 100+ countries on virtually every continent. Major multinational companies, SMEs, government agencies, universities, research institutions, consulting groups, and individuals are represented. http://www.oasis-open.org http://www.oasis-open-projects.org

# # #

Media inquiries: communications@oasis-open.org; +1.941.284.0403

Invitation to comment on #OSLC Architecture Management V2.1 – ends Sept. 20th

OASIS and the OASIS OSLC Lifecycle Integration Domains TC are pleased to announce that OSLC Architecture Management Version 2.1 is now available for public review and comment.

The Architecture Management specification defines the OSLC Architecture Management domain, a RESTful web services interface for the management of architectural resources and relationships between those and related resources such as product change requests, activities, tasks, requirements or test cases. To support these scenarios, this specification defines a set of HTTP-based RESTful interfaces in terms of HTTP methods: GET, POST, PUT and DELETE, as well as HTTP response codes, content type handling and resource formats.

The documents and related files are available here:

OSLC Architecture Management Version 2.1
Committee Specification Draft 01 / Public Review Draft 01
16 August 2018

– Part 1: Specification

HTML and Editable source (Authoritative):
http://docs.oasis-open.org/oslc-domains/oslc-am/v2.1/csprd01/part1-architecture-management-spec/oslc-am-v2.1-csprd01-part1-architecture-management-spec.html

PDF:
http://docs.oasis-open.org/oslc-domains/oslc-am/v2.1/csprd01/part1-architecture-management-spec/oslc-am-v2.1-csprd01-part1-architecture-management-spec.pdf

– Part 2: Vocabulary

HTML and Editable source (Authoritative):
http://docs.oasis-open.org/oslc-domains/oslc-am/v2.1/csprd01/part2-architecture-management-vocab/oslc-am-v2.1-csprd01-part2-architecture-management-vocab.html

PDF:
http://docs.oasis-open.org/oslc-domains/oslc-am/v2.1/csprd01/part2-architecture-management-vocab/oslc-am-v2.1-csprd01-part2-architecture-management-vocab.pdf

For your convenience, OASIS provides a complete package of the specification document and any related files in ZIP distribution files. You can download the ZIP file at:

http://docs.oasis-open.org/oslc-domains/oslc-am/v2.1/csprd01/oslc-am-v2.1-csprd01.zip

How to Provide Feedback

OASIS and the OSLC Domains TC value your feedback. We solicit input from developers, users and others, whether OASIS members or not, for the sake of improving the interoperability and quality of its technical work.

The public review starts 22 August 2018 at 00:00 UTC and ends 20 September 2018 at 23:59 UTC.

Comments submitted by TC non-members for this work and for other work of this TC are publicly archived and can be viewed at:

https://lists.oasis-open.org/archives/oslc-domains-comment/

Additional information about the specification and the OSLC Domains TC can be found at the TC’s public home page:

https://www.oasis-open.org/committees/oslc-domains/

========== Additional references:

[1] http://www.oasis-open.org/who/intellectualproperty.php

[2] http://www.oasis-open.org/committees/oslc-domains/ipr.php
https://www.oasis-open.org/policies-guidelines/ipr#RF-on-Limited-Mode
RF on Limited Terms Mode

OASIS Awards 2018 Open Standards Cup to KMIP for Key Management Security and SARIF for Static Analysis Tools

20 August 2018 – The Key Management Interoperability Protocol (KMIP) and the Static Analysis Results Interchange Format (SARIF) were both awarded the 2018 Open Standards Cup by the OASIS international consortium in recognition of exceptional advancements within the IT community.

Named as Outstanding Approved Standard, KMIP version 1.4 defines a single, comprehensive protocol for communication between encryption key management systems and a broad range of new and legacy enterprise applications. Interoperability for the v1.4 specification was demonstrated by several OASIS members at the RSA 2018 Expo. The OASIS KMIP Technical Committee is co-chaired by Tony Cox of Cryptsoft and Judy Furlong of Dell.

“Encryption Key Management continues to evolve, and with the fourth version of KMIP (v1.4) we have completed the initial objectives of the technical committee in addressing fundamental enterprise needs. In KMIP 2.0, the KMIP TC is now embracing a wider set of functionality required to meet modern enterprise security challenges, and we welcome input from security practitioners and users as we continue on our journey,” said KMIP co-chairs, Tony Cox and Judy Furlong.

Named as Outstanding New Initiative, the OASIS SARIF Technical Committee develops an interoperability standard for tools that detect software defects and vulnerabilities. Their goal is to make it easier for software developers to assess the quality and security of their programs by aggregating data from multiple static analysis tools. The OASIS SARIF Technical Committee is chaired by Luke Cartey of Semmle and David Keaton.

“We are honored to accept this award as a reflection of both the hard work by the members of the TC, and the importance of the problem we are working to solve. Each static analysis tool contributes a different perspective on the code being analyzed. Combining the results of multiple tools in a common format provides a more complete understanding of the issues in the code that need to be addressed, like taking a picture of the same object from many angles. This is especially valuable where safety and security are concerned,” said SARIF co-chairs, Luke Cartey and David Keaton.

Finalists in the Approved Standard category include specifications and profiles from the Trust Elevation, Business Document Exchange, TOSCA, UBL, and XLIFF Technical Committees.

Finalists in the New Initiative category include the LegalXML Litigant Portal and OpenC2 Command and Control Technical Committees.

More information
KMIP Technical Committee
SARIF Technical Committee

About OASIS
OASIS is one of the most respected, member-driven standards bodies in the world. It offers projects—including open source projects–a path to standardization and de jure approval for reference in international policy and procurement. OASIS has a broad technical agenda encompassing cybersecurity, privacy, cryptography, cloud computing, IoT, legal, emergency management, augmented reality, and more. Any initiative for developing code, APIs, specifications, or reference implementations can find a home at OASIS. Each project operates independently under industry-approved process and IPR policies. Some of the most widely adopted OASIS Standards include AMQP, CAP, CMIS, DITA, DocBook, KMIP, MQTT, OpenC2, OpenDocument, PKCS, SAML, STIX, TAXII, TOSCA, UBL, and XLIFF. Many of these have gone on to be published as ISO, IEC, or ITU standards. New work is encouraged, and all are welcome to participate. OASIS members can be found in 100+ countries on virtually every continent. Major multinational companies, SMEs, government agencies, universities, research institutions, consulting groups, and individuals are represented.

Media inquiries: communications@oasis-open.org; +1.941.284.0403

Invitation to comment on Emergency Data Exchange Language (#EDXL) Tracking of Emergency Patients (TEP) Version 1.1 – ends August 31st

We are pleased to announce that the OASIS Emergency Management TC members have recently approved a Committee Specification Draft (CSD) and submitted it for a 15-day public review:

Emergency Data Exchange Language (EDXL) Tracking of Emergency Patients (TEP) Version 1.1
Committee Specification Draft 02 / Public Review Draft 02
07 August 2018

Overview:

EDXL-TEP is an XML messaging standard primarily for exchange of emergency patient and tracking information from the point of patient encounter through definitive care admission or field release. TEP supports patient tracking across the Emergency Medical Services (EMS) care continuum, as well as hospital evacuations and patient transfers, providing real-time information to responders, Emergency Management, coordinating organizations and care facilities in the chain of care and transport.

Public Review Period:

The public review starts 17 August 2018 at 00:00 UTC and ends 31 August 2018 at 23:59 UTC.

This is an open invitation to comment. OASIS solicits feedback from potential users, developers and others, whether OASIS members or not, for the sake of improving the interoperability and quality of its technical work.

Note that you must be subscribed to the comment mailing list before sending feedback. Instructions on how to subscribe can be found at https://www.oasis-open.org/committees/comments/index.php?wg_abbrev=emergency.

URIs:

The prose specification document and related files are available here:

Editable source (Authoritative):
http://docs.oasis-open.org/emergency/edxl-tep/v1.1/csprd02/edxl-tep-v1.1-csprd02.doc

HTML:
http://docs.oasis-open.org/emergency/edxl-tep/v1.1/csprd02/edxl-tep-v1.1-csprd02.html

PDF:
http://docs.oasis-open.org/emergency/edxl-tep/v1.1/csprd02/edxl-tep-v1.1-csprd02.pdf

XML schemas:
http://docs.oasis-open.org/emergency/edxl-tep/v1.1/csprd02/schema/

For your convenience, OASIS provides a complete package of the prose document and related files in a ZIP distribution file. You can download the ZIP file here:

http://docs.oasis-open.org/emergency/edxl-tep/v1.1/csprd02/edxl-tep-v1.1-csprd02.zip

Additional information about the specification and the Emergency Management TC can be found at the TC’s public home page:

https://www.oasis-open.org/committees/emergency/

Comments may be submitted to the TC by any person through the use of the OASIS TC Comment Facility which can be used by following the instructions on the TC’s “Send A Comment” page, or directly at:

https://www.oasis-open.org/committees/comments/index.php?wg_abbrev=emergency

Comments submitted by TC non-members for this work and for other work of this TC are publicly archived and can be viewed at:

https://lists.oasis-open.org/archives/emergency-comment/

All comments submitted to OASIS are subject to the OASIS Feedback License, which ensures that the feedback you provide carries the same obligations at least as the obligations of the TC members. In connection with this public review of “Emergency Data Exchange Language (EDXL) Tracking of Emergency Patients (TEP) Version 1.1”, we call your attention to the OASIS IPR Policy [1] applicable especially [2] to the work of this Technical Committee. All members of the TC should be familiar with this document, which may create obligations regarding the disclosure and availability of a member’s patent, copyright, trademark and license rights that read on an approved OASIS specification.

========== Additional references:

[1] http://www.oasis-open.org/who/intellectualproperty.php

[2] http://www.oasis-open.org/committees/emergency/ipr.php
https://www.oasis-open.org/policies-guidelines/ipr#s10.2.2
RF on RAND Mode

Invitation to comment on Emergency Data Exchange Language (EDXL) Hospital AVailability Exchange (HAVE) v2.0 – ends August 31st

We are pleased to announce that the OASIS Emergency Management TC members have recently approved a Committee Specification Draft (CSD) and submitted it for a 15-day public review:

Emergency Data Exchange Language (EDXL) Hospital AVailability Exchange (HAVE) Version 2.0
Committee Specification Draft 03 / Public Review Draft 03
14 August 2018

Overview:

EDXL-HAVE (HAVE) is an XML messaging standard primarily for exchange of information related to health facilities in the context of emergency management. HAVE supports sharing information about facility services, bed counts, operations, capacities, and resource needs so first responders, emergency managers, coordinating organizations, hospitals, care facilities, and the health community can provide each other with a coherent view of the health system. The Emergency Management TC approved this draft on 14 August 2018.

Public Review Period:

The public review starts 17 August 2018 at 00:00 UTC and ends 31 August 2018 at 23:59 UTC.

URIs:

The prose specification document and related files are available here:

Editable source (Authoritative):
http://docs.oasis-open.org/emergency/edxl-have/v2.0/csprd03/edxl-have-v2.0-csprd03.doc

HTML:
http://docs.oasis-open.org/emergency/edxl-have/v2.0/csprd03/edxl-have-v2.0-csprd03.html

PDF:
http://docs.oasis-open.org/emergency/edxl-have/v2.0/csprd03/edxl-have-v2.0-csprd03.pdf

XML schemas:
http://docs.oasis-open.org/emergency/edxl-have/v2.0/csprd03/schema/

For your convenience, OASIS provides a complete package of the prose document and related files in a ZIP distribution file. You can download the ZIP file here:

http://docs.oasis-open.org/emergency/edxl-have/v2.0/csprd03/edxl-have-v2.0-csprd03.zip

Additional information about the specification and the Emergency Management TC can be found at the TC’s public home page:

https://www.oasis-open.org/committees/emergency/

https://www.oasis-open.org/committees/comments/index.php?wg_abbrev=emergency

Comments submitted by TC non-members for this work and for other work of this TC are publicly archived and can be viewed at:

https://lists.oasis-open.org/archives/emergency-comment/

Please note: This draft reflects the TC’s request also to permit HL7 International to accept and approve the specification, once finalized, as an HL7 Informative Document, jointly branded in the manner illustrated in the draft.

All comments submitted to OASIS are subject to the OASIS Feedback License, which ensures that the feedback you provide carries the same obligations at least as the obligations of the TC members. In connection with this public review of “Emergency Data Exchange Language (EDXL) Hospital AVailability Exchange (HAVE) Version 2.0”, we call your attention to the OASIS IPR Policy [1] applicable especially [2] to the work of this Technical Committee. All members of the TC should be familiar with this document, which may create obligations regarding the disclosure and availability of a member’s patent, copyright, trademark and license rights that read on an approved OASIS specification.

========== Additional references:

[1] http://www.oasis-open.org/who/intellectualproperty.php

[2] http://www.oasis-open.org/committees/emergency/ipr.php
https://www.oasis-open.org/policies-guidelines/ipr#s10.2.2
RF on RAND Mode

Call for Consent for Akoma Ntoso Version 1.0 as OASIS Standard (#LegalXML)

The OASIS LegalDocumentML (LegalDocML) TC members [1] have approved submitting the following Candidate OASIS Standard to the OASIS Membership in a call for consent for OASIS Standard:

Akoma Ntoso Version 1.0
Candidate OASIS Standard 01
08 May 2018

This Call for Consent is taking place under the revised TC Process rules effective 01 July 2017 [2]. This is a call to the primary or alternate representatives of OASIS Organizational Members to consent or object to this approval. You are welcome to register your consent explicitly on the ballot; however, your consent is assumed unless you register an objection. To register an objection, you must:

1. Indicate your objection on this ballot, and

2. Provide a reason for your objection and/or a proposed remedy to the TC.

You may provide the reason in the comment box or by email to the Technical Committee on its comment mailing list or, if you are a member of the TC, to the TC’s mailing list [3]. If you provide your reason by email, please indicate in the subject line that this is in regard to the Call for Consent.

This Committee Specification was approved by the Technical Committee and was submitted for the required 60-day public review [4]. All requirements of the OASIS TC Process having been met [5][6], the Candidate OASIS Standard is now submitted to the voting representatives of OASIS Organizational Members.

— Details —

The Call for Consent opens on 15 August 2018 00:00 UTC and closes on 29 August 2018 23:59 pm UTC. You can access the ballot at:

Internal link for voting members: https://www.oasis-open.org/apps/org/workgroup/voting/ballot.php?id=3233

Publicly visible link: https://www.oasis-open.org/committees/ballot.php?id=3233

OASIS members should ensure that their organization’s voting representative responds according to the organization’s wishes. If you do not know the name of your organization’s voting representative is, go to the My Account page at

http://www.oasis-open.org/members/user_tools

then click the link for your Company (at the top of the page) and review the list of users for the name designated as “Primary”.

— Information about the Candidate OASIS Standard and the LegalDocML TC —

The OASIS LegalDocML TC works to advance worldwide best practices for the use of XML within a Parliaments’, Assembly’s or Congress’ document management processes, within courts’ and tribunals’ judgment management systems, and generally in legal documents including contracts. The work is based on the Akoma Ntoso, a project sponsored by the United Nations.

Akoma Ntoso means “linked hearts” in the Akan language of West Africa. For legal publishers and makers of legal information systems, Akoma Ntoso provides a framework for creating “machine-readable” parliamentary, legislative and judiciary documents such as legislation, debate records, minutes, judgments, etc. In doing so, it helps build a strong foundation for “open access” to government information.

The specification is in two parts:

Part 2: Specifications documents the Akoma Ntoso XSD and DTD standard, including the graphic representation using Oxygen library.

This is a call to the Organizational Members of OASIS to consent or object to this approval. You are welcome to register your consent explicitly on the ballot; however, your consent is assumed unless you register an objection [3]. To register an objection, you must:

1. Indicate your objection on this ballot, and

2. Provide a reason for your objection and/or a proposed remedy to the TC.

You may provide the reason in the comment box or by email to the Technical Committee on its comment mailing list or, if you are a member of the TC, to the TC’s mailing list [4]. If you provide your reason by email, please indicate in the subject line that this is in regard to the Call for Consent.

URIs:

The prose specification document and related files are available here:

Akoma Ntoso Version 1.0
Candidate OASIS Standard 01
08 May 2018

– Part 1: XML Vocabulary

HTML (Authoritative):
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/cos01/part1-vocabulary/akn-core-v1.0-cos01-part1-vocabulary.html

Editable source:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/cos01/part1-vocabulary/akn-core-v1.0-cos01-part1-vocabulary.doc

PDF:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/cos01/part1-vocabulary/akn-core-v1.0-cos01-part1-vocabulary.pdf

– Part 2: Specifications

HTML (Authoritative):
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/cos01/part2-specs/akn-core-v1.0-cos01-part2-specs.html

PDF:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/cos01/part2-specs/akn-core-v1.0-cos01-part2-specs.pdf

XML schemas:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/cos01/part2-specs/schemas/

XML examples:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/cos01/part2-specs/examples/

ZIP distribution file (complete):

For your convenience, OASIS provides a complete package of the prose specification and related files in a ZIP distribution file. You can download the ZIP file here:

http://docs.oasis-open.org/legaldocml/akn-core/v1.0/cos01/akn-core-v1.0-cos01.zip

— Additional information —

[1] OASIS LegalDocumentML (LegalDocML) TC
https://www.oasis-open.org/committees/legaldocml/

TC IPR page
https://www.oasis-open.org/committees/legaldocml/ipr.php

[2] https://www.oasis-open.org/policies-guidelines/tc-process-2017-05-26#OScallForConsent

[3] OASIS LegalDocumentML(LegalDocML) TC comment mailing list: legaldocml-comment@lists.oasis-open.org
(You must be subscribed to send to this list. For instructions on subscribing, see https://www.oasis-open.org/committees/comments/index.php?wg_abbrev=legaldocml.)

OASIS LegalDocumentML(LegalDocML) TC main mailing list: legaldocml@lists.oasis-open.org
(You must be a member of the TC to send email to this list.)

[4] Candidate OASIS Standard Special Majority Vote:
https://www.oasis-open.org/committees/ballot.php?id=3205

[5] Public reviews:
– Previous public reviews of Akoma Ntoso Version 1.0

60-day public review, 14 June 2018:
http://lists.oasis-open.org/archives/legaldocml-comment/201806/msg00000.html
– No comments received

15-day public review, 25 April 2017:
https://lists.oasis-open.org/archives/legaldocml/201704/msg00011.html
– Comment resolution log:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/csprd03/akn-core-v1.0-csprd03-comment-resolution-log.xls

15-day public review, 07 June 2016:
https://lists.oasis-open.org/archives/legaldocml/201606/msg00000.html
– Comment resolution log:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/csprd02/akn-v1.0-csprd02-comment-resolution-log.xls

30-day public review, 07 May 2015:
https://lists.oasis-open.org/archives/legaldocml/201505/msg00004.html
– Comment resolution logs:
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/csprd01/akn-v1.0-csprd01-comment-resolution-log.xls
http://docs.oasis-open.org/legaldocml/akn-core/v1.0/csprd01/akn-v1.0-csprd01-TAB-comment-resolution-log.xlsx

[6] Statements of Use:

Parliamentary Counsel Office of the Scottish Government: https://www.oasis-open.org/committees/download.php/63011/8.AKN%20letter.pdf

Biblioteca del Congreso Nacional de Chile: https://www.oasis-open.org/committees/download.php/63010

XCential Corporation: https://www.oasis-open.org/committees/download.php/62423/statementOfUse.zip

Aubay s.a.: https://www.oasis-open.org/committees/download.php/62423/statementOfUse.zip

The ICT Conception and Development Unit of the Directorate General of Innovation and Technological Support of the European Parliament: https://www.oasis-open.org/committees/download.php/62423/statementOfUse.zip

Information Systems Development of the Italian Senate:https://www.oasis-open.org/committees/download.php/62423/statementOfUse.zip

The Meeting Programming and Documentation Service of the Food and Agriculture Organization of the United Nations (FAO): https://www.oasis-open.org/committees/download.php/62423/statementOfUse.zip

CIRSFID, University of Bologna: https://www.oasis-open.org/committees/download.php/62423/statementOfUse.zip

No results with the selected filters

Borderless Cyber USA 2018 Assembles Cybersecurity Experts to Explore Latest Innovations and Strategies

Invitation to comment on The DocBook Schema v5.0.1 – ends Oct. 20th

Invitation to comment on XACML REST Profile v1.1 and JSON Profile of XACML 3.0 v1.1 – ends Oct. 20th

Akoma Ntoso V1.0 (#AKN) OASIS Standard published

#OSLC Change Management v3.0 and OSLC Requirements Management v2.1 approved as Committee Specifications

Invitation to comment on Digital Signature Service Core Protocols, Elements, and Bindings Version 2.0 – ends September 28th

OASIS Names Rex Brooks and Robin Cover as Distinguished Contributors

Invitation to comment on #OSLC Architecture Management V2.1 – ends Sept. 20th

OASIS Awards 2018 Open Standards Cup to KMIP for Key Management Security and SARIF for Static Analysis Tools

Invitation to comment on Emergency Data Exchange Language (#EDXL) Tracking of Emergency Patients (TEP) Version 1.1 – ends August 31st

Invitation to comment on Emergency Data Exchange Language (EDXL) Hospital AVailability Exchange (HAVE) v2.0 – ends August 31st

Call for Consent for Akoma Ntoso Version 1.0 as OASIS Standard (#LegalXML)

The work of OASIS is supported by organizations from around the world. Members include: