International Standardization Council

Date: Thursday, 16th January 2025

Attendees: John DiMaria, Claude Baudoin, Shamun Mahmud (He/him/his), Alex
Kaluza, Michael Roza, Eric Hibbard, Fjrhkw489rnkGe, R Murthy, Mithilesh
Ramaswamy

Meeting Summary

The meeting focused on developing the charter for 2025, emphasizing the need for
input on objectives and the involvement of new members. Concerns were raised
about the granularity of the current objectives and the alignment of CSA
documents with international standards, particularly regarding NIST and ISO
terminologies. The group discussed the implications of referencing
soon-to-be-obsolete standards versus new ones, deciding to prioritize accuracy
in documentation. They also highlighted the importance of aligning contributions
with standards being developed, particularly in relation to IoT and smart city
applications. Active participation in standards organizations was noted, with
concerns about the EU Cybersecurity Act's impact on standards accessibility. The
meeting concluded with plans for future papers on AI monetization and security,
the transformation of a cloud service agreement template into an OMG standard,
and the lengthy process required to convert a white paper into a standard format
for approval.

Next steps
 * The group is tasked with providing comments on the draft charter for 2025,
   which will be posted for review.
 * Participants are encouraged to comment on the objectives and working groups
   to ensure their voices are heard in the standardization efforts.
 * R Murthy suggests that the discussion points should be split into two
   separate bullets: one focusing on contributions to CSA and the other on
   contributions to external standard bodies, indicating a need for clarity in
   future discussions.
 * The next step involves putting together a package to establish a formal
   category A relationship with SC42, which will be spearheaded by the ISC.
 * Hibbard suggests that the organization should consider investigating
   membership in CEN/CENELAC as part of their efforts to engage with European
   standards development.
 * The team will post the discussed items for further review and address them in
   the next meeting, ensuring that all members have access to the information.
 * Alex is tasked with following up with John Yeo regarding the need for the CSA
   Working Group's involvement in the research lifecycle and ensuring that their
   input is considered in future standards discussions.
 * John suggests rewording the responsibilities to ensure that working groups
   are kept informed about the latest standards and activities, indicating a
   potential change in approach.
 * John and Eric agree to write up the liaison reports for SC 27 and SC 38 and
   share them with the group before the next meeting.
 * There are plans to work on a paper about AI monetization, which will address
   the integration of AI services in the cloud and related security issues.
 * A paper titled 'Security in Cloud Computing, 10 Steps to Ensure Success' is
   expected to be developed, leveraging existing CSA material.
 * The team will work on transforming the Cloud Service Agreement template into
   an OMG standard and will collect feedback through a request for comments
   process.
 * Claude invites all participants to review the white paper once it is
   converted into a standard format, indicating a collaborative approach to the
   standardization process.