Track - WBEM Infrastructure
OpenWBEM
Dan Nuffer, Quest Software
A presentation of the software in the OpenWBEM project, including the server owcimomd, WBEM client libraries, other libraries, and WBEM tools.
OpenPegasus
Karl Schopmeyer, Inova Development
This session will present an overview of the current status and functionality of the OpenPegasus CIMServer implementation and the planned future of this open source project. This session is intended to introduce new potential users to OpenPegasus and to bring existing users up to date with changes that are occurring and are planned.
OpenSLP - Due Process for the Service Location Protocol
John Calcote, Novell
OpenSLP is a widely distributed, open source implementation of the IETF RFC 2608, “Service Advertising Protocol, Version 2” specification. Through mismanagement, misapplication, misunderstanding, and shear circumstances, SLP has undeservedly obtained a bad reputation as being difficult to understand, difficult to deploy, and just plain not worth the effort. Due to lack of good documentation and adoption by potential implementers, SLP has been bypassed for hand-configured service advertising through DNS and other less-than-optimal solutions for years now. During this discussion, we will attempt to set the record straight once and for all regarding the utility, functionality, and configuration of this great advertising service. Well designed, bandwidth efficient, and full-featured, SLP is quite frankly the only advertising service in its class.
OpenXDAS - An Open Source Distributed Auditing Service
John Calcote, Novell
Eight years ago, the Open Group formed a security division working group whose goal was to design a distributed auditing service that met industry security needs. The result of that one-year working group effort was a document entitled, "The Open Group Distributed Auditing Service (XDAS) Preliminary Specification, Version 0.9". During preliminary research into identity software standards, members of the Novell Bandit Project team discovered the XDAS specification, and began work on an open source implementation of XDAS in July of 2006. The primary goal of the Bandit Project is simple - to provide the best implementations of standards-based identity infrastructure available to the open source world, so the software industry and the open source world will have a solid foundation on which to build identity-based applications and solutions. Fundamental to identity services infrastructure, quality system auditing and audit trail management tools are nothing less than required components, and OpenXDAS will undoubtedly have a prominent place in providing the basis for safe, secure enterprise computing environments for years to come.
WBEM Solutions J WBEM Server
Jim Davis, WBEM Solutions
SFCB - A Small Footprint CIM Broker
Viktor Mihajlovski, IBM
Small Footprint CIM Broker (sfcb) is a CIM server suitable for resource-constrained environments. It is highly configurable in terms of size and functionality and supports CIM providers written to the CMPI standard. The sfcb package is part of the SBLIM Open Source project. The presentation deals with the architecture and current features of sfcb and also provides an outlook for the next year.
WBEM Server Panel
Moderator: TBA
This session is a panel discussion that will have representatives from commercial and open source WBEM Server implementations. This is an opportunity for attendees to ask questions and compare implementations.
Security Profiles
George Ericson, EMC
Khachatur Papanyan, Dell
This session will first present an overview of two security related profiles designed to represent and manage identities and authorized roles covering basic security use cases. These profiles are the DMTF DSP1034, Simple Identity Management Profile and the DMTF DSP1039, Role Based Management Profile.
Next, this session will present the plans of the DMTF for a set of composable security management profiles that will enable the general purpose management of security across a wide range of servers. The presentation will discuss the overall set of use cases and how each profile is used to cover them. The participants of this presentation will be asked to provide feedback with respect to the prioritization and coverage of the proposed set of profiles.
WBEM Security
Dan Nuffer, Quest Software
Bart Whiteley, Novell
A presentation of threat models to a WBEM infrastructure and effective mitigation strategies. Threats treated include data tampering, spoofing identity, privilege escalation, information disclosure, repudiation and denial of service. Servers, clients and listeners will all be discussed.