InCommon TAC Meeting Minutes - October 1, 2015

Attending: Tom Barton, Keith Hazelton, Steve Carmody, Ian Young, Scott Cantor, Jim Jokl, Chris Misra, Mike LaHaye, Jim Basney, Steve Olshansky

With: Dean Woodbeck, Tom Scavo, IJ Kim, Nick Roy, Steve Zoppi, Ann West (lurking)

(AI) Jim Jokl will send email to TAC with more details about ECC certs, including a link to the ECC cert.

Minutes from Sept. 17 - OK as corrected

Ops Updates

Overloading the PAOS Binding - This is in response to a Clemson request for an endpoint location that is non-HTTPS. The Federation Manager enforces a requirement that an endpoint location to be of the type “anyURI.” On September 30, Ops relaxed the validation code in the FM, which allowed Clemson to submit the metadata. No issues were reported as a result of this change. Details at https://spaces.at.internet2.edu/display/inctac/Overloading+the+PAOS+Binding

The FeduShare GitHub project at https://github.com/fedushare/mech_saml_ec will be implementing updates from https://tools.ietf.org/html/draft-ietf-kitten-sasl-saml-ec-13. More information, including a live demo, at TechEx in the session “FeduShare: A User Managed Collaboration Framework” http://meetings.internet2.edu/2015-technology-exchange/detail/10003961/

Minor changes to the SSL CPS in order to accommodate ECC certs - The CPS needs to change to 2048-bit RSA key or 256-bit key for ECC. This requires a relatively modern version of OpenSSL to work. There is an ECC cert on incommontest.org for people to experiment with. (AI) Jim Jokl will send email to TAC with more details, including a link to the ECC cert. There will be some profile changes, too, but those don’t change the CPS, so do not require Steering action.

Federation Interoperability Working Group - The group is currently working on protocol flows, bindings, and identifiers. There is a working group meeting during TechEx. Once the WG has completed a draft, it has been suggested to run it by the TAC for feedback, and share it with the REFEDS list. The group will also likely post the draft on a public wiki page.

Packaging for Ease of Deployment WG - Proposal

Jim Jokl will chair this group - anyone interested in joining should email him. The proposed  charter is on the TAC wiki: https://spaces.at.internet2.edu/display/inctac/Packaging+for+Ease-of-Deployment+Working+Group

Jim plans to announce this effort at TechEx then do some recruiting via InCommon and TIER lists. The WG plans to complete its work before the TIER release date of April 2016.

Draft TAC Charter

Based on the discussion from the last TAC meeting, and the numerous comments in the Google doc, the charter has been revised and simplified. The new version is here:
https://docs.google.com/document/d/1vrorNJXwY1dxF53hOlKg8viBw0FcAqesxxzCGyd2adk/edit

Next Meeting

Wednesday, Oct. 7 - 11:20 am - 1:20 pm ET @ TechEx

 

 

 

  • No labels