AuthZInterop Feedback to Globus - Feb19-2008 - Minutes

- We can start using temporary name spaces using the syntax "X-URL". Once we converge on a registered namespace, we can from "X-"

- We will add support for condor in the interoperability profile document, by introducing the new subject attribute CondorCanonicalName. This will be used to get a mapping to a username or UID/GID, therefore we already have the appropriate obligations.

- How should we add the new condor subject attribute? XACML seems to require a subject-id attribute in the subject context. How do we distinguish between condor and x509 dn? Is using a different namespace sufficient?

Authorization Interoperability held on 19 Feb 2008
