InCommon TAC Meeting Minutes - September 9, 2015

Attending: Keith Hazelton, Jim Basney, Steve Carmody, Ian Young, Michael Gettes, Chris Misra, Jim Jokl, Tom Barton, Steve Olshansky, Scott Cantor

With: Tom Scavo, Dean Woodbeck, IJ Kim, Paul Caskey, Nick Roy, David Walker, Walter Hoehn, Nate Klingenstein, Steve Zoppi

Action Items

(AI) Tom Scavo will ensure that “per-entity metadata” is in the 2016 TAC work plan.

(AI) Tom Barton will develop a recommendation as to whether the TAC working group chartering process would be a useful process for developing a containerization working group in conjunction with TIER.

(AI) Tom Barton will talk with Chris Hyzer about potentially participating in a containerization working group.

(AI) Steve Carmody will talk with those who brought the containerization WG concept to TAC and seek a tighter scoping of the concept.

Minutes

The minutes from August 20 were approved. Slated for future discussion: a community comment regarding thoroughness of the TAC minutes.

Ops Update

Per-entity metadata pilot - Ian’s contract has been extended for a year. Other details are at Per-Entity Metadata Pilot Update on the wiki. The pilot and server will continue to run for at least  six more months. (AI) Tom Scavo will ensure that “per-entity metadata” is in the 2016 TAC work plan.

Operations review - An extensive operations review took place Aug 25-26 in Ann Arbor, resulting in 36 pages of notes. Nick Roy is working on developing an assessment matrix out of those notes. Two of the key outcomes are the need for additional resources dedicated to development and infrastructure and a ticketing system.

Steering Update

eduGAIN - InCommon Steering formed a legal advisory group to review the proposed changes to the Participation Agreement and expects to have a report at the next Steering meeting (Sept. 28, 2015). Until then, the communications and implementation plans are on hold

Identity Provider of Last Resort - Steering accepted the IdPoLR working group report and passed a resolution directing the staff and TAC propose a set of IdPoLR options for Steering to review in 2016. Keith provided a link to the evaluation of IDPOPEN, another candidate for an IdPoLR.

PKI Update

An evaluation of the certificate service is pending and there are plans to survey the community about their experience and developing recommendations for the next generation of the service. The working group will be formed after the survey is complete and the evaluation is underway.

Comodo is planning new profiles for ECC certs, which will require a new version of the CPS. Paul Caskey is actively looking at alternatives to the current manual domain activation process, which is a heavy drag on support.

A new version of the certificate manager is planned to roll out on September 14. It will offer untrusted certs for use in private and .local domains. We continue to push Comodo to federate the CM.

Making the Shibboleth IdP Easier to Install

There was a discussion about ways to approach this. One easy path forward would be to customize the CANARIE installer tool (which may be available at TechEx).

Federation Interop Working Group

Walter Hoehn joined the call to discuss the status of the Federation Interop Working Group. The group is fully ramped up and the email list is very active. The group has brainstormed a list of interop problems and created a matrix of those issues.

The WG has divided its tasks into three categories: 1) SAML implementation profile, 2) helping to drive revisions to SAML2-int spec (Kantara), and 3) documenting InCommon-specific best practices and recommendations for deployment and operational issues. The group is working on the implementation profile first and hopes to have an initial draft in about a month. One aspect is exploring an automated testing process, which is also of interest to the Kantara initiative and eGov implementation profile. The working group’s profile may contribute to the Kantara work at a later date, if appropriate

New Working Group on Containerization

TIER has suggested a working group on containerization, perhaps in conjunction with TAC. (AI) Tom Barton will develop a recommendation as to whether the TAC working group chartering process would be a useful process for developing such a group.

The proposed working group would explore packaging and containerization practices and procedures that could be supported and implemented in all TIER components. The overriding aim is to make things easier for deployers.

(AI) Tom Barton will talk with Chris Hyzer about potentially participating in a containerization working group.

(AI) Steve Carmody will talk with those who brought the containerization WG concept to TAC and seek a tighter scoping of the concept.

F2F at TechEx

Steve Carmody has proposed three items for the agenda for the face-to-face meeting at TechEx: 1) review of TAC Charter, perhaps aligning with the AAC charter; 2) discussion of standardizing TAC processes. (AI) Nick, Jim Basney, and Steve Zoppi volunteered to formulate a strawman for this discussion;  - would like to formulate a strawman; 3) discussion and development of a 2016 work plan, based on a review of the 2015 plan.

(AI) Dean will create an agenda-building space for the F2F agenda and the 2016 work plan.

(AI) Tom Barton will chair the next two calls, as Steve will be on vacation.

Next Meeting - Thursday, September 17, 2015 - 1 pm ET

 

 

 

  • No labels