Minutes

Attending: Matthew Brookover, Judith Bush, Janemarie Duh, Matthew Economou, Heather Flanagan, Eric Goodman, Mary McKee, Steven Premeau, Mark Rank, Keith Wessel

With (Also Starring): IJ Kim, Johnny Lasker, Kevin Morooney,, Nicole Roy, David Walker, Ann West, Albert Wu, Steve Zoppi

Regrets: David Bantz

Status Updates - Q&A

  • T&I and Ops Updates (Ann/Nic/Albert/Shannon/Dave/Johnny)

Deployment Profile Recommendations - next steps

The discussion focused on short-term things we need to nail down.

  • We no longer need to deal with items that have already been required of participants via Baseline Expectations.
  • Need to be clear on which items are not / will not be part of Baseline
    • Public messaging can emphasize that we’re already well on the way, already requiring a number of the items.
  • The closest we have to a reference architecture is the set of Shib defaults we package for the IdP. SP side is a different challenge.
    • Albert and David Walker have been working on an SP onboarding guide, targeting particularly commercial service providers.
  • We need to establish timeline (date ranges and/or sequence of events) but don’t want to overwhelm people.
  • We need to be clear about which items will be “required."
    • Do we create badges for things that are not required? For example:
      • “InCommon Service Provider” badge?
      • Target Net+ vendors for badges?
      • This could help campuses making acquisition decisions for SaaS services
      • Ask vendors complete a template, analogous to HECVAT, that presents their federation-related capabilities?
        • [As an aside, a question was asked about the current status of our partnership with the HECVAT team to update federation-related items. The HECVAT Lite recommendations are “largely accepted” and being incorporated, and work has started for the full HECVAT]
  • We will use CAMP to announce this initiative.
    • A session has been scheduled that will include high-level information. We can also suggest an ACAMP session for detailed discussion.
      • We'll also want to cover other things coming up, like SeamlessAccess.
    • We should point to wiki information as part of presentation
  • Testing
    • Is CAMP a good place to recruit people for the working group, or will it overwhelm people?
      • Janemarie suggested sending a communication ahead of time to say we’re looking for people, then try to start the working group up after CAMP, avoiding start of semester, COVID issues, etcI.
    • Janemarie, Keith, and Albert will be working on revising the charter. Will pass by TAC for review.

Initial CAMP/ACAMP planning

  • What messages do we want to get out?
    • We may not have more on discovery by that time.
      • Perhaps a schedule a BoF? (not much reaction from the group)
    • We should communicate about the Catalyst program.
    • IdPaaS? It’ll be part of Catalyst (which Ann is working on).
    • If people have more ideas, speak up on email.

EMail Updates

REFEDS, SeamlessAccess, and Browser Interaction updates


Subject:[TAC-InC] REFEDS, SeamlessAccess, and Browser Interaction updates for the 26 August 2021 TAC call
Date:Wed, 25 Aug 2021 12:13:23 -0700
From:Heather Flanagan


REFEDS 
43rd REFEDS meeting - Registration is open (https://refeds.org/meetings/43rd), scheduled for 30 September 2021. Current plans are to focus exclusively on REFEDS Strategic Planning and R&S 2.0

R&S 2.0
The Working Group is almost ready to release the Personalized Entity Cateogry for consultation. The group is finishing up the section on guidance for Service Providers. The goal is to have a consensus call on our next working group call, and if that is positive, then it will go out for consultation during a time period that overlaps the REFEDS, CAMP, and ACAMP meetings, thus allowing for some additional discussion regarding the spec.

While the consultation is underway, the working group will turn its attention to the other entity categories in this family, Anonymous Authorization and Pseudonymous Authorization, to harmonize the language between the three entity categories.

SeamlessAccess
SeamlessAccess has been focused over the last few weeks on bringing some new publishers online as integrators. Emerald.com will be posting a press release soon about the integration, and others are still sorting out their go-live dates.

Two active community groups within SeamlessAccess are the Contract Language group and the WAYF Disambiguation group.

Browser Interactions
The new W3C community group, Fed-ID, is available for registration: https://www.w3.org/community/fed-id/. The group is currently sorting out their problem statement, to make it very clear what developers should focus on that is in scope for this community group. Notes are publicly available in the GitHub repository: https://github.com/fedidcg/meetings

Of particular interest in this space, Apple has posted some workarounds that campuses can take in handling Apple's IP address obfuscation plans (properly called the iCloud Privacy Relay). This should be shared as broadly as possible: https://developer.apple.com/support/prepare-your-network-for-icloud-private-relay/ 

CTAB Update


Subject:[TAC-InC] CTAB Update
Date:Thu, 26 Aug 2021 16:16:27 +0000
From:Eric Goodman


Hi all,

Update on CTAB activities. David, please feel free to correct, add, clarify, etc. :)

  • Administrivia
    • Discussion of recruiting for new members for the upcoming terms
    • CAMP/ACAMP presentation discussions
  • BE2 progress review
    • As reported before, BE2 adoption curves started faster than what was seen for BE1 adoption.
    • Seeing some definite plateauing (much less recent progress) going on for the remaining entities
    • Discussion of endpoint encryption requirement and status
      • Working on a document to provide guidance for common “we can’t disable TLS 1.1” arguments/use cases
    • Other updates
      • There are always updates related to NIH work, REFEDS Assurance, etc.
      • There was also some discussion of SA Entity Categories (“anonymous”, “pseudonymous”) and R&S 2.0
      • Other than focus on the need for better identifiers (possible deployment profile overlap) most of what I recall was high level status info.



Subject:Re: [TAC-InC] CTAB Update
Date:Thu, 26 Aug 2021 11:29:02 -0500
From:IAM David Bantz


Thanks Eric!  Just add that CTAB is hosting monthly Office Hours

Fed Test WG Update


Subject:[TAC-InC] Fed Test WG Update
Date:Thu, 26 Aug 2021 12:57:12 -0400
From:Janemarie Duh


Howdy do,

Keith reached out to me with a directional update on the Fed Test WG. The scope will be limited to the testable items from the Deployment Profile work.

I suggested we:

  • Modify the existing charter to reflect the new scope
  • Email Participants announcing the new scope, ask for chairs, and give the timeframe for kick-off
  • Email the Fed Test list same

We do need to pin down a timeframe and I'm thinking kick-off right before or after CAMP Week. That avoids the semester ramp-up.

    Janemarie

  • No labels