OASIS Key Management Interoperability Protocol (KMIP) TC

Hello,
   The Storage Networking 
Industry Association (SNIA) has an activity within its Security Technical Work 
Group (TWG) that actively tracks standards and specifications that are 
potentially relevant to storage security. Approximately three times a year, the 
Security TWG produces an internal report for the SNIA membership, which provides 
a list of the identified documents as well as the state of drafts under 
development. In the case of drafts, the Security TWG is careful to not disclose 
privileged information about activities that have not been disclosed to the public (e.g., early drafts 
being developed by the Trusted Computing Group). KMIP is clearly an activity of 
interest, so guidance is being requested from the KMIP TC on the level of detail 
that can/should be disclosed in the SNIA internal report. Clearly, any public 
information will be leveraged, but if the KMIP TC permits additional info to be 
included it may be possible to identify the latest drafts as well as identifying 
other relevant documents (like compliance 
documents).

Hi Larry -

Certainly glad to have KMIP information included in the SNIA TWG report.
The link you include below is indeed the best one for KMIP info.

As the documents and email archive are publicly visible, I don't think
we have any additional non-public information that the SNIA folks might
need. It's probably a good idea if at least Tony and I can review the
SNIA TWG report before it's made public, if that's possible?

Regards,

Bob




                                                

					
                                                    

        
                                                
				
                                                

                                                    
                                                        
                                                        Original Message
                                                
                                                Original Message-----
From: Larry.Hofer@Emulex.Com [mailto:Larry.Hofer@Emulex.Com] 
Sent: Thursday, May 28, 2009 10:39 AM
To: kmip@lists.oasis-open.org
Cc: Larry.Hofer@Emulex.Com
Subject: [kmip] SNIA standards document would like to reference KMIP
draft

Hello,

   The Storage Networking Industry Association (SNIA) has an activity
within its Security Technical Work Group (TWG) that actively tracks
standards and specifications that are potentially relevant to storage
security. Approximately three times a year, the Security TWG produces an
internal report for the SNIA membership, which provides a list of the
identified documents as well as the state of drafts under development.
In the case of drafts, the Security TWG is careful to not disclose
privileged information about activities that have not been disclosed to
the public (e.g., early drafts being developed by the Trusted Computing
Group). KMIP is clearly an activity of interest, so guidance is being
requested from the KMIP TC on the level of detail that can/should be
disclosed in the SNIA internal report. Clearly, any public information
will be leveraged, but if the KMIP TC permits additional info to be
included it may be possible to identify the latest drafts as well as
identifying other relevant documents (like compliance documents).

   As the SNIA Security TWG liaison, I was asked to query the KMIP TC,
on what version of KMIP draft specification is the best to reference.
Basicly I would like to know if there is any information that is not
public, that the OASIS TC would want/allow the SNIA Security TWG to use
to track OASIS activities.  I'm assuming right now that there will be
regular updates made publicly available to the KMIP draft and other
deliverable docs. If that is the case, is this link the best location
for an outside group, like SNIA, to track OASIS KMIP draft activities? 

http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=kmip