Tokyo, Japan and Boston, MA, USA; 17 November 2003–Members of the international standards consortium, OASIS, have organized to advance an XML-based standard for collaborative planning and scheduling in manufacturing. The new OASIS Production Planning and Scheduling (PPS) Technical Committee will develop common object models and corresponding XML schemas which can communicate to establish intra- and inter-enterprise planning and scheduling. The Technical Committee plans to conduct its work in Japanese and provide English translations of its documents and deliverables.

"Shop floor management must collaborate with enterprise management, so that manufacturers can react to dynamic changes in the market," said Yasuyuki Nishioka of the PSLX Consortium, convenor of the OASIS PPS Technical Committee. "Our goal is to develop a standard that will enable manufacturers to implement decision support systems that provide bi-directional communication between planning and scheduling software."

The PPS specification will address data handling for production planning orders, inventory levels, resource capacity, and scheduled or in-progress operations. PPS will be designed to reduce the expense and increase the speed and flexibility of developing new planning and scheduling systems, particularly for applications that include multi-vendor products or legacy systems.

OASIS PPS Technical Committee members include Fujitsu, Hitachi, Ricoh, and others. Participation remains open to all organizations and individuals. Representation from a wide variety of manufacturing industries is key; system integrators, software vendors, database designers, industrial specialists, and planning/scheduling application engineers are especially welcome.

"This is the first OASIS Technical Committee to conduct its work in Japanese," noted Karl Best, vice president of OASIS, in a keynote address at the OASIS Open Standards Days held today in Tokyo. "Clearly, Asian companies are moving beyond adopting and adapting e-business standards created in Europe and North America. It is exciting to see the active role OASIS members in Japan are taking to drive the international standards that affect their markets."

PPS expands the growing body of supply chain standardization efforts at OASIS, which includes technical committees for Electronic Procurement Standardization (EPS), Materials Markup Language (MML), and Product Life Cycle Support (PLCS). OASIS currently has more than 60 active technical committees.

About OASIS

OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,500 participants representing over 600 organizations and individual members in 100 countries. http://www.oasis-open.org

Additional information:

OASIS PPS Technical Committee

Cover Pages Technology Report: Planning and Scheduling in the Manufacturing Environment

Press contacts:

Keizo Okabe Japan Representative
OASIS (www.oasis-open.org) keizo.okabe@oasis-open.org

Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Tokyo, Japan, 11 November 2003 — Electronic business standards from the international consortium, OASIS, will be the focus of a new event to be held in Tokyo, 20-21 November. OASIS Open Standards Days Tokyo 2003 will be the first conference in Japan where both management and technical professionals from business and government sectors gather to share information and implementation experiences on key OASIS standards. The event will feature expert speakers on ebXML, Universal Business Language (UBL), WS-Reliability, the Web Services Business Process Execution Language (WSBPEL) and other OASIS specifications.

OASIS Open Standards Days Tokyo is sponsored by Computer Associates Japan, IBM, Infoteria, Fujitsu, Hitachi, Microsoft, NEC, Oracle Japan, and Synergy Incubate in cooperation with the East Asia Electronic Commerce Association (EA-ECA), Electronic Commerce Promotion Council of Japan (ECOM), PSLX Consortium, RosettaNet Japan, and XML Consortium. The event is supported by the Japanese Ministry of Economy, Trade and Industry, and the Ministry of Public Management, Home Affairs, Posts and Telecommunications. The conference is managed and operated by Sunbridge Group and the Renaissance Center of Tama University.

Event information and registration is available at (Japanese) and (English).

To enhance support for its growing membership in Asia, OASIS has appointed Keizo Okabe as its Japan Representative. The Consortium, which is based in North America and has representation in Europe, is expanding its Japanese presence in response to heightened levels of Asian activity in standards development. Okabe will aid in supporting OASIS members and technical committees in Japan as well as directing local promotional events, such as organizing the OASIS Open Standards Days Tokyo.

"OASIS is enjoying heightened participation from the Asian community," noted Okabe. "OASIS sponsorship includes many of Asia’s largest technology companies, such as Fujitsu, Hitachi, NEC, and Sony, as well as Japan-based staff of international companies including IBM, Microsoft, and Oracle. These members are actively involved in advancing OASIS projects that include Web services, ebXML and security."

According to Okabe, Japanese organizations are drawn to OASIS because the Consortium encourages open collaboration on interoperability issues critical to Asian companies. The international focus of the Consortium facilitates global participation. Each OASIS Technical Committee selects the language they will use to conduct their work, and most discussions are held via email or conference calls to accommodate participants from multiple continents. When face-to-face meetings are held, OASIS Technical Committees choose locations convenient to their own members.

"We are honored to have a representative in Tokyo of Keizo Okabe’s stature, who will enable the Consortium to enhance the service our Japanese members have enjoyed since OASIS was founded," commented Patrick Gannon, president and CEO of OASIS. "With his extensive background in XML and Web services, Okabe will be a great asset to the growth of the Consortium."

Okabe also serves as XML Evangelist and Chairman of Web Services Promotion Committee for XML Consortium Japan and is a member of the RosettaNet Japan Steering Committee, the ebXML standard working group in Electronic Commerce Promotion Council of Japan (ECOM), and many other XML-related industrial consortia.

About OASIS

OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,500 participants representing over 600 organizations and individual members in 100 countries. http://www.oasis-open.org

Press contacts:

Keizo Okabe Japan Representative OASIS (www.oasis-open.org) keizo.okabe@oasis-open.org

Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 10 November 2003 — Members of the OASIS international standards consortium have begun work on a specification to enable the control and monitoring of asynchronous or long-running Web services. The OASIS Asynchronous Service Access Protocol (ASAP) Technical Committee is developing an extension of the World Wide Web Consortium’s Simple Object Access Protocol (SOAP) that will accommodate latency between the request for a resource or service and its actual return. ASAP is applicable for areas as diverse as workflow, business process management, e-commerce, data mining, and mobile wireless devices.

"Not all services are instantaneous — especially when transactions involve human intervention or approval," observed Jeffrey Ricker, chair of the OASIS ASAP Technical Committee. "Probably the biggest breakthrough ASAP can offer is the ability to treat manual processes as Web services. Mass integration need no longer be held hostage by the weakest link. Mass integration can proceed without waiting for full automation of every process in every organization."

OASIS ASAP Technical Committee members include representatives of Computer Associates, DataPower, Fujitsu, and others. Participation remains open to all organizations and individuals, and OASIS provides mechanisms for public review and comment.

"ASAP represents a simple but critical component of Web services," noted Karl Best, vice president of OASIS. "Technical Committee members intend to incorporate full compatibility between ASAP and both the ebXML Message Services OASIS Standard and the OASIS Web Services Reliable Messaging specification to ensure the accurate delivery of transactions."

Industry Support for ASAP

"Asynchronous communication among Web services is critical to both the simplification of enterprise application integration and the facilitation of next-generation business models," said Gavenraj Sodhi, eTrust product manager at Computer Associates. "CA is actively participating in the enablement of this asynchronous communication by supporting standards efforts and incorporating those standards into our industry-leading Web services management, security, and provisioning solutions."

"The ultimate killer app of the Internet is email, and it is not an accident that it is completely asynchronous. Pervasive enterprise-grade XML web services will require protocols to work the same way that enterprise apps do — asynchronously, reliably and securely. We believe the OASIS ASAP effort can deliver a simple, pragmatic solution for DataPower customers deploying XML-aware networks," said Eugene Kuznetsov, chairman and CTO, DataPower.

"Fujitsu Software is proud to be a part of the OASIS Asynchronous Service Access Protocol (ASAP) Technical Committee. We are dedicated to helping develop and promote open standards for system interoperability," said Keith Swenson, Chief Architect Fujitsu Software. "ASAP will be a key ingredient for linking Busness Process Management servers and Enterprise Application Integration servers to each other and to legacy systems. Openly developed standards in this area should make it much easier to link different process technologies together, lowering the overall cost of system integration and allowing for more effective automation of business processes."

About OASIS OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,500 participants representing over 600 organizations and individual members in 100 countries. http://www.oasis-open.org

Additional information:

OASIS ASAP Technical Committee

Cover Pages Technology Report: Asynchronous Transactions and Web Services

Press contact:

Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 20 October 2003 — Developers of the ebXML Business Process Specification Schema (BPSS) have decided to advance their work under the technical process of the OASIS international standards consortium. The newly formed OASIS ebXML Business Process (BP) Technical Committee will further define the royalty-free ebXML BPSS model for binary and multiparty business collaborations both within and between enterprises. ebXML BP will support the exchange of standards-based business process definitions, such as those developed by industry-specific organizations, enabling standard, interoperable process configurations that effectively meet business collaboration requirements for analysis, design, and production use.

ebXML BP is part of the modular suite of specifications that enable enterprises of any size, in any global region to conduct business using the Internet. ebXML comprises open, royalty-free standards for business process collaboration, core data components, collaboration protocol agreements, messaging, and registries and repositories. ebXML implementers span the globe and include General Motors, the US Center for Disease Control, the Pan Asia e-Trade Alliance, and TransCanada Pipelines. RosettaNet has formally adopted ebXML BPSS as a mechanism for expressing business collaborations involving RosettaNet PIPs®, and government agencies around the world recommend the use of ebXML.

"ebXML is the only framework that is at the same time generic and flexible and can be used for inter-administrations relations," concluded the European Commission’s Interchange of Data between Administrations (IDA) in its study, "Business to Business Frameworks for IDA Networks." "Moreover, ebXML is clearly the only trend for organised business communities. The general recommendation is to follow ebXML standards as much as possible."

"ebXML BP will enable legally enforceable, easily manageable, and fully traceable collaborations," said Dale Moberg of Cyclone Commerce, convenor and proposed co-chair of the OASIS ebXML BP Technical Committee. "Industry standards organizations will be able to use ebXML BP schemas and formats to specify business process definitions for their own collaboration communities."

The OASIS ebXML BP TC will base its work on ebXML BPSS version 1.01 (http://www.ebxml.org/specs/index.htm), jointly developed by OASIS and the United Nations Centre for Trade Facilitation and Electronic Business (CEFACT) and on derivative work expected to be donated by a range of participants.

"We’re excited to continue this work within the OASIS technical process," noted Monica J. Martin of Sun Microsystems, proposed co-chair of the OASIS ebXML BP Technical Committee. "OASIS provides an environment for us to adhere to the ebXML principles of a loosely coupled, highly aligned specification set, while enabling support for other emerging Web service technologies, OASIS specifications, and products from industry standards organizations."

The OASIS ebXML BP Technical Committee plans to collaborate with other relevant OASIS committees, such as those developing the Web Services Business Process Execution Language (WSBPEL), the ebXML Message Service Standard, the ebXML Collaboration Protocol Profile and Agreement (CPP/A) Standard and the OASIS e-Government Technical Committee. Members of the new committee will also work to align with relevant efforts of other organizations, such as the World Wide Web Consortium (W3C) Web Service Architecture Working Group and Web Services Choreography Working Group, RosettaNet, the Open Applications Group Inc. (OAGI), and CEFACT.

OASIS ebXML BP Technical Committee members include Cyclone Commerce, Fujitsu, Sterling Commerce, Sun Microsystems, and others. Participation remains open to all organizations and individuals, and OASIS will host a mail list for public comment.

"We encourage business analysts, enterprise developers, and business process users to become actively involved in this work," said Karl Best, vice president of OASIS. "Trade groups, industry standards bodies, and end-users are welcome to contribute feature requests to make the sequencing constructs valuable for their specialized business needs and issues. Technology vendors wishing to contribute to ebXML BP under royalty-free terms also are urged to join."

Industry Support for ebXML BP

"Sterling Commerce is proud to continue its involvement with business processes standards under the new OASIS ebXML BP Technical Committee. Sterling believes strongly in the importance of business process standards and has been a leader in supporting business process languages, such as ebXML Business Process Specification Schema, in its products," said Neelakantan Kartha, Ph.D, Senior Software Architect, Standards and Strategic Technology, Sterling Commerce.

"Sun supports ebXML and its continued development at OASIS as an answer to customer demand for a simple framework for conducting electronic business using cheap, widely deployed and dependable technologies," noted Mark Bauhaus, VP, Java Web Services, Sun Microsystems. "The ebXML framework is not a vision: it is a reality, a solution available and in deployment today. We believe the ebXML BP work at OASIS will enable continued delivery on ebXML’s promise of an interoperable suite of modular specifications that are useful today, while incorporating new technology developments — such as Web services — as appropriate to keep ebXML useful for the long-term future."

About ebXML ebXML (Electronic Business using eXtensible Markup Language) was initiated in 1999 as a joint effort of OASIS and CEFACT. Since the publication of the full suite in 2001, customer deployments and vendor adoption of ebXML have grown worldwide, along with open source projects. To date, four ebXML specifications have been ratified as OASIS Standards. http://www.ebxml.org

About OASIS OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,000 participants representing over 600 organizations and individual members in 100 countries. http://www.oasis-open.org

Additional information:

OASIS ebXML BP Technical Committee http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=ebxml-bp

Cover Pages Technology Report: Standards for Business Process Modeling, Collaboration, and Choreography

European Commission’s Interchange of Data between Administrations Study: "Business to Business Frameworks for IDA Networks"

Press contact:

Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 7 October 2003 — Members of the OASIS international standards consortium announced plans to collaborate on a generic, open framework for applications composed of Web services used in combination. The OASIS Web Services Composite Application Framework (WS-CAF) Technical Committee will define a set of royalty-free, interoperable, modular specifications that will enable the development of composite applications, ranging from simple to complex combinations of Web services and encompassing a useful range of transaction and coordination requirements.

"A serious problem remaining in Web services standardization is transactional coordination," explained Mark Little of Arjuna Technologies, convener of the OASIS WS-CAF Technical Committee. "Web services combined in composite applications require interoperable mechanisms to set the boundaries of an activity (such as start/end, or success/failure), to create, access, and manage context information and to inform participants of changes to an activity."

"We expect WS-CAF specifications will become the building blocks for other Web services standards," said Martin Chapman of Oracle Corporation, proposed co-chair of the OASIS WS-CAF Technical Committee. "That’s why we’re taking an incremental, multi-protocol approach, creating a modular stack of specifications. Instead of mandating a single protocol, we want to offer users the option to implement portions of WS-CAF based on their needs."

The OASIS WS-CAF Technical Committee intends to accept as input the WS-Context, WS-Coordination Framework, and WS-Transaction Management specifications published by Arjuna, Fujitsu, IONA, Oracle, and Sun Microsystems. Other contributions are welcome on an equal basis.

"Composability is a critical aspect of Web services," added Eric Newcomer of IONA, proposed co-chair of the OASIS WS-CAF Technical Committee. "That’s why WS-CAF will be designed to be non-overlapping and interoperable with other open Web Service specifications. We plan to invest in gathering requirements input and defining relationships between related specifications and WS-CAF. Above all, we want to promote convergence, consistent use, and a coherent architecture."

WS-CAF specifications will provide WSDL definitions for context, coordination, and transactions. Message formats will be specified as SOAP headers and/or body content. The new group will collaborate with other OASIS Technical Committees, such as the OASIS Business Transaction Technical Committee, the OASIS Asynchronous Service Access Protocol (ASAP) Technical Committee and the OASIS Web Service Business Process Execution Language (WSBPEL) Technical Committee. WS-CAF developers also plan to liaise with efforts of the World Wide Web Consortium (W3C), including the XML Protocol, Web Service Architecture, Web Service Description, and Web Service Choreography Working Groups.

"It is important that the industry agrees on a standard, interoperable way to demarcate and coordinate Web services activities," noted Karl Best, vice president of OASIS. "In parallel with the development of the framework, OASIS Technical Committee members will design and sponsor a testing/interoperability program for WS-CAF. This should go a long way toward ensuring widespread adoption."

OASIS WS-CAF Technical Committee members include representatives of Arjuna Technologies, Booz Allen Hamilton, Cyclone Commerce, Fujitsu, IONA, Oracle, SeeBeyond, Sun Microsystems, Yellow Dragon, and other OASIS members. Participation remains open to all organizations and individuals, and OASIS will host a mail list for public comment.

Industry Support for WS-CAF

Arjuna Technologies "In Arjuna we spent a lot of time and effort listening to the requirements of our customers when working on the original submissions," said Mark Little of Arjuna Technologies Ltd. "It’s important that WS-CAF takes into account work from other specifications and use cases that have real-world requirements for context, coordination, and transactions. This is a great opportunity to unify the current state-of-the-art in this extremely important area. We’re excited to be involved in what should turn out to be critical infrastructural components for the Web services architecture."

Booz Allen Hamilton "Booz Allen is pleased to contribute to the advancement of Web services standards through its participation in the further development of WS-CAF," said Joseph Chiusano, Senior Consultant at Booz Allen Hamilton. "WS-CAF is the latest in an exciting genre of specifications that advance Web services in critical areas such as transaction processing, coordination, and context propagation. We look forward to future applications of these important concepts for our clients."

Oracle "Oracle is committed to promoting interoperability based on open industry standards. WS-CAF provides a common and open foundation to build complex Web services, enabling multiple Web services to function effectively in a coordinated and interoperable manner," said Don Deutsch, Vice President of Standards Strategy and Architecture for Oracle Corporation. "As one of the original authors and major proponent of WS-CAF, Oracle is pleased to be a co-sponsor and co-chair of the OASIS WS-CAF Technical Committee."

Sun Microsystems "Composable Web services represents the leading edge of a new software development model for our industry, with the WS-CAF specification set providing some important enabling technologies" said Mark Bauhaus, VP of Java Web Services for Sun Microsystems. "It is vitally important that the underlying technologies and specifications for Web services be based on open, royalty-free standards, and Sun is pleased to be both a contributor of technology and OASIS supporter in this important effort."

About OASIS: OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,000 participants representing over 600 organizations and individual members in 100 countries. http://www.oasis-open.org

Additional information:

OASIS WS-CAF Technical Committee http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=ws-caf

Cover Pages Technology Report: Messaging and Transaction Coordination

Press contact:

Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Singapore; 29 September 2003 — Members of the OASIS international standards consortium announced plans to collaborate on the development of a global Web services framework that will define a methodology for broad-based, multi-platform, vendor-neutral implementation. The new OASIS Framework for Web Services Implementation (FWSI) Technical Committee plans to design a template for Web services deployment, enabling systems integrators, software vendors, and in-house developers to deliver eCommerce solutions faster and easier.

"FWSI will define the functionality required to help people build robust applications for Web services and Service Oriented Architectures," said Roberto B. Pascual of the Singapore Government’s Infocomm Development Authority (IDA), proposed co-chair of the OASIS FWSI Technical Committee. "It will speed adoption of Web services by tremendously reducing the risk, complexity, and implementation effort involved."

The OASIS FWSI Technical Committee will specify a set of functional elements required for practical implementations of Web Services-based systems. These functional elements provide building blocks for developers to use when deploying Web services architectures, enabling rapid development of eBusiness applications by eliminating the need to re-invent elements for each implementation.

"The work of the OASIS FWSI Technical Committee will be analogous to creating a recipe for baking a cake," explained Dr. Lee Eng Wah, of the Singapore Institute of Manufacturing Technology (SIMTech), proposed co-chair of the OASIS FWSI Technical Committee. "We will first develop a set of implementation methodologies, which will be like cooking instructions. Then we will focus on designing a set of functional elements for Web services–the ingredients for the cake."

Rather than define standards for implementing specific Web services components, FWSI will leverage applicable work within OASIS and other standards groups. Technical Committee members predict that the work of the WS-I Consortium will complement FWSI at OASIS.

"We are very pleased that the OASIS FWSI Technical Committee is being launched in Singapore and has the backing of so many companies and agencies here and around the world," said Patrick Gannon, president and CEO of OASIS, in an address today at the iX2003 conference. "By creating a library of core eCommerce Web services, FWSI will accelerate the deployment of Web services and Service Oriented Architectures into the critical eBusiness marketplace."

Members of the new OASIS FWSI Technical Committee include CommerceNet, IDA, Information Technology Standards Committee of Singapore, RosettaNet, SIMTech, Sun Microsystems, Center for E-Commerce Infrastructure Development (CECID) at the University of Hong Kong, Yellow Dragon, and other OASIS members. Participation remains open to all organizations and individuals, and OASIS will host a mail list for public comment.

About OASIS (http://www.oasis-open.org):
OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,000 participants representing over 600 organizations and individual members in 100 countries.

Additional information:

OASIS FWSI Technical Committee http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=fwsi

Cover Pages Technology Report: Web Services Implementation

Press contact:

Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 22 September 2003 — The OASIS standards consortium today announced that its members have approved the Security Assertion Markup Language (SAML) version 1.1 as an OASIS Standard, a status that signifies the highest level of ratification. SAML provides an XML-based framework for exchanging authentication and authorization information, enabling single sign-on–the ability to use a variety of Internet resources without having to log in repeatedly.

"SAML has gained widespread industry adoption as a basis for federated identity and security environments," said James Kobielus, senior analyst at Burton Group. "Clearly, SAML is a living, evolving standard, and OASIS has, with the new version 1.1, incorporated changes that reflect real-world experience with SAML version 1.0."

According to Prateek Mishra of Netegrity, co-chair of the OASIS Security Services Technical Committee, "Prior to SAML, there was no XML-based standard that enabled exchange of security information between a security system (such as an authentication authority) and an application. SAML provides a way to specify authentication, attribute, and authorization decision statements. It also specifies a Web services-based request/reply protocol for exchanging these statements."

"The SAML 1.1 standard introduces important enhancements that improve its interoperability and utility to other Web services security efforts in the industry. This can be seen through the adoption of SAML 1.1 as a foundation for the Liberty Alliance’s Identity Federation Framework, the implementation of SAML 1.1 by the Internet2/MACE Shibboleth project, and the development of a SAML profile by the OASIS Web Services Security (WSS) Technical Committee for using SAML with WS-Security," added Rob Philpott of RSA Security, co-chair of the OASIS Security Services Technical Committee. "The growing participation of OASIS member companies in SAML’s development and our committee’s increasing collaboration with other security-related standards groups demonstrate the value of OASIS SAML standardization to the industry."

Liberty Alliance Management Board president, Michael Barrett, also vice president of Internet Strategy at American Express, commented, "Collaboration between standards organizations is critical to industry momentum and to ensure new technologies like single sign-on and Web services succeed. Organizations looking to benefit from these new technologies need access to proven, interoperable, and secure standards that they can build on for the next new technology. Open standards like SAML and Liberty’s specifications have been proven to meet that need."

Members of the OASIS Security Services Technical Committee include Baltimore Technologies, BEA Systems, Computer Associates, Entrust, Hewlett-Packard, Netegrity, Oblix, OpenNetwork, Reactivity, RSA Security, SAP, Sun Microsystems, Verisign, and other security software vendors, financial institutions, government agencies, and academia.

Industry Support for SAML 1.1

Baltimore Technologies "Baltimore welcomes the completion of SAML 1.1 as an important building-block of the security services infrastructure that will underpin the emerging service oriented computing landscape," said Patrick McLaughlin, CTO, Baltimore Technologies.

BEA Systems "SAML 1.1 continues the evolution of this key standard for interoperable exchange of security information in federated environments," said Ed Cobb, Vice President, Architecture and Standards, BEA Systems, Inc (NASDAQ: BEAS). "We are pleased at the growing industry support for SAML to secure information access and to enhance user experiences in service-oriented environments."

Computer Associates "Managing the identities of users outside the enterprise has become as integral to business enablement as managing the identities of internal users," said Bilhar Mann, director of eTrust identity and access management solutions at Computer Associates. "The SAML OASIS Standard will play an instrumental role in enabling identity management beyond the enterprise. It will also enable users of CA’s SAML-compliant, eTrust identity and access management solutions to more readily apply corporate management and security policies to systems that touch customers and supply-chain partners."

Confluent Software "The approval of SAML 1.1 as an OASIS Standard is an important step towards broader adoption of standards-based authentication and authorization solutions," said Sekhar Sarukkai, Vice President of Technology & Co-Founder of Confluent Software. "As a Web services management vendor supporting SAML in many customer engagements, we believe that the several important extensions in SAML 1.1 will help accelerate the deployment of secure, standards-compliant Service Oriented Architectures."

DataPower Technology "The release of the 1.1 specification is a testament to the advancement for Web services deployments and the demand for pragmatic, interoperable solutions for Web services security," said Rich Salz, Chief Security Architect at DataPower Technology Inc. "The fact that much of SAML 1.1 is based on feedback from the 1.0 user community shows that SAML is being deployed and is meeting real-world needs. We look forward to increased adoption and evolution."

Entrust "As one of the early founding members of the OASIS Security Services Technical Committee and an ongoing contributor to SAML’s development, we are happy to see its advancement in the industry as a standard for identity federation," said Tim Moses, Director of Advanced Security Technology, Entrust, Inc. "We are seeing increasing interest in the marketplace around SAML and are committed to continuing our support for the OASIS Standard through Entrust’s broad portfolio of security solutions for Web Portals, Identity Management, and Web Services."

Hitachi "Hitachi welcomes the enhancement of the SAML OASIS Standard," said Takao Nakamura, General Manager, Network Software of Hitachi, Ltd., Software Division. "We believe that SAML 1.1 will be an integral part of a secure Web services environment. We plan on adopting this standard for our Web services products in the future.

Oblix "The ratification of SAML 1.1 accelerates broader adoption of federated identity as a way to increase collaboration and effectiveness," said Prakash Ramamurthy, vice president of products and technology, Oblix. "We are pleased by growing industry support for SAML and are very proud of our customers, such as Southwest Airlines and SPAWAR, who report real business value from live SAML deployments."

OpenNetwork "As security technologists and active participants in OASIS, we are excited that SAML 1.1 has become an OASIS Standard," said Bob Worner, vice president of product engineering at OpenNetwork. "We look forward to continued work and standards development and to delivering these technologies to our customers for more secure and cost effective identity management across disparate corporate boundaries."

Netegrity "We are very pleased with the significant traction that SAML has received and the enhancements in the 1.1 release of SAML incorporate what has been learned in those deployments," said Deepak Taneja, CTO at Netegrity. "Utilizing the SAML support within Netegrity’s identity and access management solutions companies are able to realize the benefits of flexible federation models."

Reactivity, Inc. "Reactivity is pleased to support SAML 1.1 as an OASIS Standard. The Reactivity XML Firewall™ incorporates support for the SAML Token Profile for Web Services to provide out customers with interoperable authentication credentials for securing XML and Web Services. SAML 1.1 incorporates feedback from actual production deployments of SAML, which attests to the strength of the standard in solving real-world problems and delivering rapid business results," said John Lilly, VP and CTO, Reactivity, Inc.

RSA Security "RSA Security is firmly committed to industry standards that help our customers to be more productive, enjoy greater interoperability, achieve new business opportunities, and realize a strong return-on-investment across their infrastructure," said Jason Lewis, Vice President of Product Management and Marketing at RSA Security. "We have been involved with SAML from its inception, contributing core intellectual property and technical expertise to guide its development, and we are pleased with the progress that is reflected in version 1.1. We support version 1.1 in the latest release of RSA ClearTrust software and look forward to helping more of our customers capitalize on federated identity management."

SAP "The area of security poses a real concern for companies assessing their web services strategy," said Sachar Paulus, Director of Product Security, SAP. "Now that SAML 1.1 has achieved OASIS ratification as the industry standard for security assertions, e.g., for delegating authentication and authorization decisions to central, federated Identity and Access Management solutions, a major aspect of the security architecture of a Web services-based landscape is addressed. SAP already supports SAML 1.0 with its current NetWeaver release for Single Sign-On purposes and is committed to use SAML 1.1 as a cornerstone for achieving the needed security of SAP’s Enterprise Service Architecture."

Sun Microsystems "Sun continues to be committed to supporting SAML as it provides an essential framework for delivering secure, identity-enabled Web services," said Stephen Pelletier, vice president, Network Identity, Communication and Portal Products. "SAML is a key part of the Liberty Alliance’s federated identity management initiatives, further demonstrating its significant value and market adoption. Sun is committed to supporting SAML version 1.1 in our market-leading, Liberty-enabled Java System Identity Server early next year."

About OASIS (http://www.oasis-open.org): OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,000 participants representing over 600 organizations and individual members in 100 countries.

OASIS Security Services Technical Committee: http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security

Press contact: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 16 September 2003 — The OASIS standards consortium today announced that its members have approved the XML Common Biometric Format (XCBF) version 1.1 as an OASIS Standard, a status that signifies the highest level of ratification. XCBF provides a standard way to describe information that verifies identity based on human characteristics such as DNA, fingerprints, iris scans, and hand geometry. XCBF can be used in applications as varied as homeland security, corporate privacy, law enforcement, and biotechnical research. It will assist in identifying citizenship, measuring attendance, controlling access to documents, facilitating non-repudiation in commerce, and many other functions.

Tyky Aichelen of IBM, chair of the OASIS XCBF Technical Committee, stated, "XCBF bridges the gap between the worlds of biometrics and Web services, making it possible to have a common, standardized, secure way to define, store, manage, and exchange biometric information with greater interoperability between systems."

"Traditional biometric standards are based on binary encoding formats, which severely limit their use in XML-enabled systems and applications," explained John Messing, American Bar Association representative to OASIS. "By providing a standard way for biometric information to be exchanged using XML, XCBF literally redefines biometrics as a practical solution for a Web-based environment."

Members of the OASIS XCBF Technical Committee include Booz Allen Hamilton, IBM, MTG Management Consultants, and others.

"OASIS is pleased to provide a forum where work from other standards bodies can be advanced for the XML environment," noted Karl Best, vice president of OASIS. "XCBF builds on development from Common Biometric Exchange File Format (CBEFF), work of the American National Standards Institute (ANSI), managed and maintained by the U.S. National Institute of Standards Technology (NIST). This commitment to cross-consortia collaboration is essential for interoperability among standards."

XCBF adds to the growing portfolio of OASIS Standards and specifications for security, which also includes SAML for exchanging authentication and authorization information, SPML for provisioning, XACML for access control, WS-Security, and others. OASIS currently has more than 60 active technical committees.

"Life Sciences is a strategic industry in which we place great importance," said Karla Norsworthy, director of Dynamic e-Business Technologies for IBM. "XCBF is extremely important in the development of products that can be more easily integrated and leveraged by our customers that do business in the biometric life sciences industries."

About OASIS (http://www.oasis-open.org): OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,000 participants representing over 600 organizations and individual members in 100 countries.

Press contact: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 11 September 2003 — The OASIS standards consortium today announced that its members have approved Web Services for Remote Portlets (WSRP) version 1.0 as an OASIS Standard, a status that signifies the highest level of ratification. WSRP standardizes the consumption of Web services in portal front ends, as well as the way in which content providers write Web services for portals.

"WSRP defines how Web services plug into portals," explained Delphi president, Thomas Koulopoulos. "Once a WSRP service is published to a public directory, portal administrators are able to locate and dynamically integrate it with just a few mouse clicks. WSRP is a critcal standard enabling distributed portals to share portlets as visual, user-facing Web services for integration with other portals."

WSRP eliminates the need for content aggregators to choose between locally hosting a content source or writing code specific to each remote content source. Instead, WSRP allows content to be hosted in the environment most suitable for its execution while still being easily accessed by content aggregators. The standard enables content producers to maintain control over the code that formats the presentation of their content. By reducing the cost for aggregators to access their content, WSRP increases the rate at which content sources may be easily integrated into pages for end-users.

"The OASIS WSRP Technical Committee was founded in early 2002 with the vision of providing a single interface standard for all interactive, presentation-oriented Web services. WSRP v1.0 succeeds in providing this platform neutral definition of an interface," said Rich Thompson of IBM, chair of the OASIS WSRP Technical Committee. "Early vendor support for WSRP–we’ve tracked eight implementations to date–clearly demonstrates the need for this standardized means of accessing remote content."

"WSRP builds on foundational work from the Worldwide Web Consortium (W3C)," said Patrick Gannon, president and CEO of OASIS. "WSRP uses WSDL to describe interfaces, and requires SOAP bindings for all conformant services. WSRP is an excellent example of how an open, standards-based approach will enable end-user interactive web services to be deployed in a lower cost, faster-to-implement, plug-and-play environment."

WSRP allows remote portlet Web services to be implemented in a variety of ways, including Java/J2EE and Microsoft’s .NET platform.

WSRP is the result of a collaboration of 25 OASIS member companies including BEA Systems, Citrix Systems, Factiva, IBM, Microsoft, Novell, Oracle, Plumtree Software, Reed Elsevier, SAP, Sun Microsystems, TIBCO, and Vignette. It joins a growing portfolio of OASIS Standards and specifications for Web services including Universal Description, Discovery, and Integration of Web Services (UDDI), Web Services Business Process Language (WSBPEL), Web Services for Distributed Management (WSDM), Web Services for Reliable Messaging (WSRM), WS-Security, and others. OASIS currently has more than 60 active technical committees.

Industry Support for WSRP

BEA Systems "WSRP 1.0 is an important step forward in expanding the reach and ubiquity of portal technologies by providing standards that extend customer applications to support federated portals," said Shane Pearson, Group Product Manager, WebLogic Portal, BEA Systems, Inc (NASDAQ: BEAS). "The increase in available content and applications, combined with the ease of deployment and consistent APIs of the Java Portlet Specification, both of which are available to BEA developers today, will increase the return on investment and usefulness of portal solutions."

Computer Associates "By providing a ‘plug-n-play’ standard that enables developers to capture portal content from compliant sources and make that content available to users in readily accessible portlets, WSRP unleashes the full potential power of Web services," said Dmitri Tcherevik, vice president and director of Web services at CA. "CA is committed to supporting WSRP in our CleverPath information delivery solutions, and providing the security and management support necessary to ensure that WSRP-based business solutions are safe, reliable and scalable."

Factiva "WSRP approval is a significant milestone for OASIS and for our customers, especially as their enterprise portal deployments continue to grow," said Mike Menna, associate vice president of Applications and Integration of Products for Factiva. "For Factiva, the approval of WSRP further validates our integration strategy dating back to early 2000. Going forward, we will continue to work with our fellow OASIS WSRP Technical Committee members to provide the best business intelligence content at the point of decision."

IBM "As a co-author and a leader of the WSRP and JSR 168 initiatives, IBM is very glad to see that WSRP has been approved by OASIS as a formal standard. IBM, through WebSphere Portal, will be enabled to integrate WSRP services offered by any WSRP-compliant producer and to publish portlets running on WebSphere Portal as WSRP services," said Larry Bowden, vice president of Portals and Lotus products for IBM. "To push for the quick adoption of the WSRP OASIS Standard by providers of content and application services, IBM provides a free, open source implementation of WSRP based on Tomcat and the Java Portlet API (JSR 168) Reference Implementation at the Apache Software Foundation – WSRP4J (http://ws.apache.org/wsrp4j/), thus enabling third parties to implement WSRP services by implementing JSR 168 portlets and making them available as WSRP services which will plug into all WSRP-compliant portals."

Plumtree "Plumtree was the first vendor to release a WSRP product to customers and one of the only vendors whose WSRP software is built for use on many different application servers. We’ve also demonstrated interoperability with all WSRP test implementations including those offered by BEA, IBM, Oracle, and Citrix," said Plumtree CEO, John Kunze. "Plumtree will continue its role as an active participant in the OASIS WSRP Technical Committee and other standards bodies. We also hope to guide standards beyond just portlets to include other key elements for building rich applications, such as Web services for indexing content, importing user profiles and security, and for federating searches. Creating a world of standardized, interoperable portals is an ambitious vision–the finalization of WSRP is an important first step."

Sun Microsystems "We fully support the WSRP standard as it will be a key driver of Web services adoption in the portal marketplace," said David Bryant, director of marketing for the Sun ONE Portal Server, Sun Microsystems, Inc. "Sun is committed to helping our customers build federated portals that deliver easy access to services for their end-users through standards such as WSRP, Liberty, and JSR 168."

Vignette "The WSRP OASIS Standard and its ‘plug-and-play’ structure for diverse user-facing Web applications, including portals, will help organizations rapidly assimilate information from across the enterprise to provide a better customer experience," said Ed Anuff, vice president of strategy at Vignette. "Vignette continues its long-standing push to define and promote open standards, in turn giving its customers maximum flexibility and the opportunity to reduce complexity while speeding deployment and time to benefit."

WebCollage "As a leader in enabling companies to integrate interactive applications across Web systems, WebCollage is proud to have played a role in the development of the WSRP 1.0 specification, and we are pleased to see the support it has received," said Gil Tayar, Chief Technology Officer at WebCollage, Inc. "WSRP has the potential to do for interactive applications what SOAP did for the programmatic services, by making it easier and cost effective to integrate application functionality across a large number of portals. WebCollage customers benefit from the ability to repurpose existing Web applications as WSRP-enabled remote portlets."

About OASIS (http://www.oasis-open.org): OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,000 participants representing over 600 organizations and individual members in 100 countries.

Press contact: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 29 July 2003 — OASIS, the international standards organization, today announced the election of four members to its Board of Directors. John Borras of the United Kingdom Office of e-Envoy and Eduardo Gutentag of Sun Microsystems were elected and Jim Hughes of Hewlett-Packard and Chris Kurt of Microsoft were re-elected by the OASIS membership to provide business leadership to advance OASIS as a major standards-setting body for Web services, e-business security and other applications.

Borras, Gutentag, Hughes, and Kurt join existing directors whose seats expire in 2004, Edward Cobb of BEA, Colin Evans of Intel, Patrick Gannon of OASIS, and Laura Walker of The Federal Reserve System. Each director serves two-year terms.

The consortium also announced the appointment of four new members to the OASIS Technical Advisory Board (TAB), a group of industry experts who provide guidance on issues related to strategy, process, interoperability, and scope of OASIS technical work. New OASIS TAB representatives include William Cox, Ph.D. of BEA Systems, Christopher Ferris of IBM, Timothy Moses, Ph.D. of Entrust, and Peter Wenzel of SeeBeyond.

"We had an unprecedented number of exceptionally qualified candidates for this year’s Board election; testimony to the fact that OASIS has become one of the most important independent standards development organizations," noted Colin Evans of Intel, chair of the OASIS Board of Directors. "Most often identified with programs such as ebXML and UBL for e-commerce, and UDDI for directories, OASIS and its members are rapidly expanding its scope to Web services standards and vertical community initiatives."

On behalf of the OASIS membership, Patrick Gannon, president and CEO of OASIS, expressed appreciation for departing Board members, Simon Nicholson of Sun Microsystems and Michael Weiner of IBM, for their outstanding leadership and guidance over the past two years.

About OASIS (http://www.oasis-open.org): OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,000 participants representing over 600 organizations and individual members in 100 countries.

Press contact: Carol Geyer Director of Communications OASIS (www.oasis-open.org) carol.geyer@oasis-open.org +1.978.667.5115 x209

Boston, MA, USA; 26 June 2003 — The first public demonstration of the OASIS Service Provisioning Markup Language Specification (SPML) v1.0 will be held on 9 July 2003 at the Catalyst Conference in San Francisco. SPML is an XML-based framework for exchanging and administering user access rights and resource information across heterogeneous environments. Ten members of the OASIS standards consortium will come together at Catalyst to prove the stability of the new specification and demonstrate interoperability between SPML-conformant security software products.

"SPML is the product of an open collaboration process involving identity management vendors committed to the creation of a standard that any application or software product could use to request provisioning services," said Phil Schacter vice president and director, directory and security strategies, Burton Group. "The effort and commitment by these vendors to create SPML demonstrates their recognition of the key role standards play in enabling the virtual enterprise. Provisioning is clearly becoming a key component in the identity management infrastructure for many companies."

SPML lets organizations automate, centralize, and manage the process of provisioning user access to internal and external corporate systems and data. SPML has been designed to work with the World Wide Web Consortium’s SOAP, the OASIS Standard SAML, the OASIS WS-Security specification, and other open standards that allow companies to securely leverage Web services.

"SPML allows cooperating elements of an Identity Management infrastructure to securely exchange provisioning and service subscription requests using an open standards-based protocol," explained Darran Rolls of Waveset, chair of the OASIS Provisioning Services Technical Committee. "This demonstration highlights interoperability between the industry’s leading provisioning and identity management vendors, based on our committee’s specification. As infrastructure becomes more identity-centric and companies start to model and deploy Web services, SPML will be a critical element of an end-to-end standards-based identity management strategy."

"We are very pleased with the work surrounding the development of the SPML specification," said Gavenraj Sodhi of Business Layers, secretary for the OASIS Provisioning Services Technical Committee. "This is a collective effort by industry leaders to take an administrative burden off the customer by creating an open standard that will be applied to Web services strategies moving forward." Sodhi will make an SPML presentation at the Catalyst Conference.

"Clearly, security is essential for the proliferation of Web services. That’s why it’s so significant that these SPML developers are proving interoperability on a major scale, in a public forum," said Karl Best, vice president of OASIS. "The demonstration is a milestone in the development and recognition of SPML 1.0 as an crucial security layer in the Web services stack."

The SPML specification is currently in a public review period which occurs prior to being submitted to the OASIS membership at-large for consideration as an OASIS Standard. SPML is one of several security standards being developed at OASIS. Other standards and specifications include WS-Security for high-level security services, XACML for access control, XCBF for describing biometrics data, and SAML for exchanging authentication and authorization information.

Industry Leaders Support SPML

BMC Software: "BMC Software is proud to be a member of the OASIS SPML Interoperability Demonstration. As the identity management market emerges, addressing the need for integration and interoperability of disparate access control components and business applications becomes a top priority of our customers’ identity management strategy. Provisioning systems can now use a standard language to exchange identity information with business applications and service providers to achieve automated provisioning of users and services. SPML adds a much needed dimension to the open and secure identity management solution market," said Doron Cohen, Chief Architect, Security Business Unit, BMC Software.

Business Layers: "Business Layers is proud to be part of the process in ratifying the SPML specification. This is an important achievement for both customers and vendors that support them. We look forward to continuing our investment and active involvement with OASIS through our commitment to open standards for Identity Management and Provisioning," said Adrian Viego, chief technology officer for Business Layers.

Entrust: "SPML represents a significant step forward in the industry’s collective efforts to help governments and businesses manage user identities across a broad range of applications in a cost-effective and timely manner. As a strong advocate of open standards, Entrust is proud to have played an active role in SPML’s development to date, and we look forward to demonstrating our ongoing commitment to this important specification at the upcoming OASIS SPML Interoperability Demonstration," said Tim Moses, director of advanced security technology at Entrust.

OpenNetwork: "As technologists and active participants in OASIS, we are committed to delivering standards-based solutions that meet our customers’ challenges of securely managing identities across complex enterprises. We are excited about the benefits of the new SPML specification and are pleased to team with our partners and deliver the first prototype of its kind to the market," said Bob Worner, vice president of product engineering at OpenNetwork.

Waveset: "More and more Waveset customers are adopting Web services as a way to build and expand business opportunities. By providing open, SPML-enabled identity management solutions, we can help them protect and maximize current enterprise investments, while also leveraging the latest, most innovative technologies for continued competitive advantage. We are proud of our contribution to OASIS, which underscores a continued commitment to industry standards in the development and deployment of award-winning products," said Kevin Cunningham, vice president of marketing at Waveset.

About OASIS (www.oasis-open.org)

OASIS (Organization for the Advancement of Structured Information Standards) is a not-for-profit, global consortium that drives the development, convergence, and adoption of e-business standards. Members themselves set the OASIS technical agenda, using a lightweight, open process expressly designed to promote industry consensus and unite disparate efforts. OASIS produces worldwide standards for security, Web services, conformance, business transactions, electronic publishing, topic maps and interoperability within and between marketplaces. Founded in 1993, OASIS has more than 2,000 participants representing over 600 organizations and individual members in 100 countries.

Press inquiries:

Carol Geyer OASIS Director of Communications carol.geyer@oasis-open.org +1.941.284.0403

Geneva, Switzerland; 3 June 2003 — International standards bodies, OASIS and UN/CEFACT, today announced that the latest completed versions of ebXML specifications have been endorsed by the 2003 Plenary session of UN/CEFACT meeting in Geneva. The United Nations Centre for Trade Facilitation and Electronic Business endorsed the adoption of ebXML global standards for exchanging business messages, establishing trading relationships, communicating data in common terms and defining and registering business processes.

Seven components of ebXML were reviewed and endorsed by the Plenary including the OASIS Open Standards: ebXML Message Service Specification v2.0; ebXML Registry Information Model v2.0; ebXML Registry Services Specification v2.0; and the ebXML Collaboration Protocol Profile and Agreement v2.0; as well as the ebXML Business Process Specification Schema v1.01 now managed by UN/CEFACT, and the jointly managed ebXML Technical Architecture v1.04 and the ebXML Requirements v1.06.

"We are proud that the UN/CEFACT Plenary has added another level of international endorsement to the four ebXML specifications which are OASIS Open Standards," noted Patrick Gannon, president and CEO of OASIS.

Ray Walker, chair of the UN/CEFACT Steering Group added, "The endorsement of the UN/CEFACT Plenary is another milestone for ebXML. It demonstrates conclusively that ebXML has begun to fulfill its promise to make e-business possible for any company or organization anywhere in the world. It also paves the way for the development of a formal UN recommendation to governments and to inter-governmental and non-governmental organizations on the use of ebXML in their eBusiness exchanges."

About ebXML (www.ebXML.org)

ebXML (Electronic Business using eXtensible Markup Language), jointly sponsored by UN/CEFACT and OASIS, is a modular suite of specifications that enables enterprises of any size and in any geographical location to conduct business over the Internet. Using ebXML, companies now have a standard method to exchange business messages, conduct trading relationships, communicate data in common terms and define and register business processes. UN/CEFACT (www.uncefact.org) is the United Nations body whose mandate covers worldwide policy and technical development in the area of trade facilitation and electronic business. OASIS (http://www.oasis-open.org) is a not-for-profit, global consortium that drives the development, convergence and adoption of e-business standards.

Press information:

Carol Geyer Director of Communications OASIS carol.geyer@oasis-open.org +1.941.284.0403