Attendees
Mark
Andrew
Richard W.
Nathan
Scott
Ken
Key discussion items
- It was discussed what we are trying to produce in the sub-group.
- Andrew shared a straw man on 63B (Section 5.1.7) and asked the group if this was the right direction of the work.
Kantara Initiative Mail - [SG-800-63-3] Sample analysis of 63-3B requirements.pdf
5.1.7 analysis ACH.docx - There was a general consensus that the straw man was not what the group is trying to achieve and produce.
- It was commented that the outcome of the group, should enable an assessor to assess that a CSP meets 800-63-3.
- Andrew said that if our objective is to strict evaluate conformity to the requirements stated in -63, we should produce an assessment guide and instructions to some extent in order to have assessors assess in a similar ways and come to similar conclusions.
- Richard W. stressed that it is not only set of criteria which defines what is required, but make discrete statements and evaluate if they need clarification.
- It was asked what the assessors need into this process. RW Determine making a claim that meet the requirements conformity or not. We are Concern Reading the statement with SHALLs and determine that the provide to the service meets the requirements, there might be a policy or practice statement
- Mark commented that it would be good to structure the claims in a useful way.
RW Break this down. Requirements text making a number of discrete statement.
5.1.7.1 4 discrete requirements. CSP are aware on what you Need t show compliance to.
SSh criteria clearly identified list of what are the sets of requirements, get them all clearly articulated that can be evaluated or assessed. There is a tree structure, there is more structure plain list, whatever it takes to formally express the content that can be evaluated in a rigorous way.
63-3 specific we are going 62-3 OP SAC as the ongoing international -3 approval process
focus on 63-3. Beyond just ficam circle.
Should not
mArk A document and create a directed graph with optional and required edges on it that describes the spec.
Mark Happner: Create a directed graph that describes spec (with JSON-LD)
- Andrew Hughes: Break down 63A
- Scott Shorter: Break down 63C
identigy and document the requirements.
AUDIO/VIDEO FILE: