Minutes
Attending: Joanne Boomer, Matt Brookover, Eric Goodman, Judith Bush, Matthew X. Economou, Heather Flanagan, Matt Porter, Steven Premeau, Mark Rank
With (Also Starring): David St. Pierre Bantz (CTAB), Les LaCroix (CACTI),, Johnny Lasker (I2), Kevin Morooney, David Walker, Albert Wu, Steve Zoppi
Regrets: Keith Wessel, Ann West
Agenda Bash + request for notable working and advisory group updates
- Fed Test
- This is currenlty framed as a formal InCommon working group; that carries some formality. So far, minimal community interest. Some outcome is still required in order for InCommon to have requirements to work against and to develop tools.
- Suggestion: rather than have it as a formal WG, scale it down to a TAC subgroup. Could develop a template for people to say “I would adopt this requirement” where they could document what they think would need to be done to test that requirement.
- The suggestion was approved by overwhelming consensus. Albert, Judith, and Matthew E and Matthew B will work on the template.
- Two docs headed for the repository, TAC accomplishments for 2021 and TAC's recommendations to Steering for IdP discovery, will be submitted this week.
Status Updates - Q&A
- Federation manager releases are still focusing on eduroam parity. Also took away the legacy MFA login (staff-specific and not external facing) so we could consolidate on one way to login.
- Kevin M reminds TAC to register for TNC if there’s interest in attending. (https://tnc22.geant.org)
TAC on CAMP Program Committee
- Invitation has been issued for someone from TAC to participate on the planning committee. Joanne is checking to see if she has bandwidth for it.
- Intention is for the meeting to be in person.
IdPaaS Program Updates
- TAC chartered a WG in 2020 to develop a recommendation for an IdPaaS program. I2 is at the point where they have a plan. The program needs to be launched quickly to tackle issues such as ones introduced by the requirements of OARNET, interest in the NIH’s call to action by schools that are not currently in InCommon, and even interest in R1 institutions that are interested in shifting to commercial IAM solutions.
- Next step: engage the community to answer some of the open questions, mostly non-technical. How does the program measure success? How are disputes handled? How can we make the program easy to adopt? How do we make this sustainable?
- Have started by engaging with Catalyst partners, and also looking to TAC and others for feedback. If you’re interested, please reach out to Albert.
- https://docs.google.com/presentation/d/1dvKjEE4NV_GNWljKlVxpSBzngzKEUR2IV682yZzoQB4/edit#slide=id.g117074ad015_0_ has the type of questions I2 is trying to answer.
- is the end goal to certify IdP commercial/hosted services? A trustmark may be a component, but the end goal is that organizations that want to participate in InCommon can do so easily. And whatever is done must be sustainable, both financially and conceptually, adapting to meet the needs as necessary.
Subject Identifier and Deployment Profile Rollout - what happens next?
- Mark, Matthew W, and Albert met to discuss what path to take forward. In terms of the subject identifier work, we are proposing an informal subgroup of the TAC meet to start working on short term, actionable deliverables to jumpstart the process and build momentum. Specifically: a concise value statement, an actionable call to IdP operators to start asserting subjectID, and a discussion opener for SPs to consider ways they could start support identification by ePPN _and_ subjectID. An important part of the work will be advocacy
- Steven and Les will reach out to CACTI to see if anyone in that group would like to participate
- The group that put the standard together was very IdP centric; it would be helpful to find the SPs that would actually be interested and also willing to advocate for this work. Note that one of the new REFEDS attribute sharing entity categories requires subjectID; that will be a driver.
- If we can leverage connections with the Shib Consortium and the TAP group, we can help drive this towards being the default configuration.
Deployment Profile
- The proposal put forward to steering was approved, so the next steps are to socialize that and figure out any other actions to keep it going.
EMail Updates
International, SeamlessAccess, and Browser update
| Subject: | [TAC-InC] International, SeamlessAccess, and Browser update - for the 24 Feb TAC call |
|---|---|
| Date: | Thu, 24 Feb 2022 06:57:10 -0800 |
| From: | Heather Flanagan |
International Update
REFEDS
- REFEDS is kicking off a REFEDS Community Chat meeting series where we will hold a v/c session on topics of interest to the REFEDS community. These sessions will include 30-minutes of presentation and 30-minutes of informal discussion, and will be recorded so that people in other timezones can hold viewing parties and learn about the project, too. The first of these calls is scheduled for Thursday, 3 March @ 17:00 UTC and will feature Alan Buxey and Pål Axelsson talking about REFEDS Identity Federation Baseline Expectations.
SeamlessAccess
The product roadmap is always available to the public: https://seamlessaccess.org/services/
The Contract Language Working Group has completed its Model Contract and expects it to be published in March 2022.
The WAYF Entry Disambiguation Working Group has a rough draft of logo and MDUI-usage guidelines to help resolve the issue of ambiguous IdPs in discovery services. The group continues to meet every two weeks to work. See also the problem description published late last year: https://seamlessaccess.org/learning-center/challenges-federated-wayf/
Browser Interactions
Reminder: Atypon, a publishing platform vendor, is hosting a webinar, "Tectonic Shifts Webinar: Preparing for major changes on the web that will impact scholarly publishers" on March 1. Registration is free: https://atypon.zoom.us/webinar/register/WN_q1fELOyPRBKSjR451wG8MA
There will be an active set of sessions on the proposed browser changes at the upcoming Internet Identity Workshop, being held in person April 26-28 in Mountain View, CA.
Fed2.0 FedTest
| Subject: | [TAC-InC] Fed2.0 FedTest |
|---|---|
| Date: | Thu, 24 Feb 2022 16:56:23 +0000 |
| From: | Bush,Judith |
Fed2.0
I’m a little confused about the state of the report: I thought it would be submitted before the REFEDS steering meeting, but it was still having references in the appendices edited on Tuesday.
FedTest
I believe we are going to discuss making it a TAC sub committee.
CACTI Updates from 15-Feb meeting
| Subject: | [TAC-InC] CACTI Updates from 15-Feb meeting |
|---|---|
| Date: | Thu, 24 Feb 2022 12:17:45 -0500 |
| From: | Steven Premeau |
- Licia Florio presented some history and the current state of identity activities at GÉANT. (Her slides should be part of the minutes when they are published.)
- Approved the Charter for SSO System Linking Working Group, the process to spin up the new WG will start shortly.
- Discussed the “Wallets and Federation” Working Group charter.
- No major new feedback, but CACTI approval was held over for the next meeting to make sure that there was not anything remaining prior to final feedback.
Steve.
CTAB Update
| Subject: | [TAC-InC] CTAB Update |
|---|---|
| Date: | Thu, 24 Feb 2022 18:02:57 +0000 |
| From: | Eric Goodman |
Lively discussion of the status of several of the workgroups. In particular:
- REFEDS Assurance
- MFA Subgroup
- R&S v2
- NIH
Much of the discussion was similar on each topic (though the context was of course different) around how much each of these items will have momentum going forward. E.g., should each of these be part of “Baseline Expectations 3”? why or why not. Discussion of how BE3 should (a) not come out for a while and (b) should reflect more “desired/expected current state” rather than aspirational work.
Lots of good discussion, that I may not be capturing well here.
Also work on the 2022 workplan.