Attendees:
Scott Shorter
Richard Wilsher
Nathan Faut
Ben Wilson
Myisha Myisha
Linda Goettler
Bill Braithwaite
Rich Furr
Apologies:
Patrick Curry
Staff:
Anna Ticktin
NOTES:
1. ADMINISTRATIVE:
- Roll Call — quorum not achieved
- Motion for minutes approval: 22 Feb 2012
2. IAF V 2.0* – Richard Wilsher
(Documents sent via list on 03/06/2012)
Presentation can be found here:
Current structure of the SAC:
- CO-SAC
- ID-SAC at 4 LOAs
- CM-SAC A at 4 LOAs, B at 4 LOAs, C at 4 LOAs, and D at 4 LOAs
- Proposed v3.0 accommodates components: CO SAC Stays the same whilst OP SAC consolidates assurance levels
Elements of the IAF:
- SAC — Criteria to be met (versioned to 3)
- AAS — Process to be applied (must be updated now with version 3). Full service must ensure components address 100% of the OP SAC.
- RAA — Rules to be observed (point vs period of time audit rules may live here)
- Application
- SSSA — (not yet created) Specification of a Service Subject to Assessment
- SoC — Statement of Conformity (not a proforma, but rather a requirement that could be embedded somewhere in another doc...)
3. F2F MEETING
- The IAWG and P3 will entertain a joint session at the Munich F2F on Friday, April 13, to discuss the Privacy Assessment Criteria doc currently being drafted by P3WG.
4. AOB