Minutes

Attendees: Keith Wessel, Steven Premeau, Eric Goodman, Derek Eiler, Matthew Economou, Joanne Boomer, Mark Rank, Judith Bush

Reps from other groups: Les LaCroix (CACTI), David St Pierre Bantz

Regrets: 

Staff / SME: David Walker

Scribes: Joanne Boomer, Matthew Economou

Notes

  • Agenda Bash + request for notable working and advisory group updates
    • n/a
  • T&I/Operations updates
    • n/a
  • CTAB
    • n/a
  • CACTI
    • No public agenda for 2023-12-06 meeting
    • Wallets report still in draft, to be submitted to CACTI tomorrow
  • Federation Testing
    • Editing the federation standards and practices reference work and plan to release the final draft next week; will send it out to interested parties for review.
    • Will draft a charter for the next iteration of the Federation Testing Working Group, expanding on the proposed 2024 TAC work plan
    • Matthew Economou and Albert Wu need to meet and capture the test federation goals and objectives
  • SIRTFI Testing
    • Nice job!  Good show!
    • Completed a couple weeks ago, 16 institutions participated
    • Mixed results on finding Security contacts on metadata 
    • Cirrus is revising guidance on clients’ organizational contact info to publish their own contacts rather than Cirrus contacts
  • Accomplishments Report wrap-up
    • Removing reference to 2022 SP Middlethings
    • 2023 TAC Accomplishments Report
    • Resolve any comments - comments primarily grammar, fixing References
    • Discuss any other comments
    • Group agrees to approve document as finalized to be published and get in front of steering.
  • (Remainder) Open agenda and other work plan thoughts
    • Addition to Deployment or Implementation Profile (Kantara)
    • There is not an active working group that could take this on
    • How is the larger IT community acting/reacting?
    • How could this be evangelized beyond R&E?
    • In terms of scope, there's more than just SAML involved here.  What about recommendations to users of the InCommon certificate service, eduroam, etc.?
    • If TAC takes something on next year, maybe focus on practical scope and immediate needs as this could be a long and drawn out set of changes.
    • Possible collaboration with IDPro?  That could be an avenue through which we could build a community of concerned practitioners.
    • Might be an end goal from the Government side, required to meet certain cryptographic minimums driven by NIST, cf. Keylength - NIST Report on Cryptographic Key Length and Cryptoperiod (2020).
    • David will add to the Work Plan list
    • Other items on the work plan that have interest from the Federation Testing side, i.e. SAML2Int, proxy
    • Next year consider addressing Quantum-resistant cryptography
    • Federation Change Management and Protocol Change Management problem
    • Federation Testing

Next Meeting @ December 14, 2023



  • No labels