Date: Fri, 29 Mar 2024 15:56:22 +0000 (UTC) Message-ID: <2087557007.8220.1711727782847@ip-10-10-7-29.ec2.internal> Subject: Exported From Confluence MIME-Version: 1.0 Content-Type: multipart/related; boundary="----=_Part_8219_435718383.1711727782845" ------=_Part_8219_435718383.1711727782845 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Content-Location: file:///C:/exported.html
Attendi= ng: Dave Vernon, Ann West, Dennis Cromwell, Sean Reynolds, Michael Gettes, Mi= chele Norin, Marty Ringle, Klara Jelinkova, Dee Childs = p>
With: Dea= n Woodbeck, Steve Zoppi, Kevin Morooney, Mark Scheible, Brett Bieber, Von W= elch
=
Minu= tes from April 23 approved via the wiki.
(AI) - Steer= ing members should read and comment on the Attribute Release working group charter<= /span>
(AI) - Ann w= ill follow up with AACRAO on names of registrars who would be potential mem= bers of the Attribute Release working group
Ann pr= ovided an overview of the slides. Reviewed the five priorities - some funde= d by dues increase and some accomplished prior to the increase
Sustaining Shibboleth Software
Shib Consortium did webinars outlining the = need for funding
Kevin, Justin Knight and Scott Cantor did a= n IAM Online on the Shib Consortium finances and on plans for future featur= es and updates. It was well-attended.
The Consortium has attracted new membership= s since the webinars, which improved the financial position.
The Consortium board will be discussing sus= tainability. The lack of resources makes the rate and pace of the developme= nt team slower than what the community demands.
Hardening/Sustaining Federation Operations
Upgrading Federation Manager code and inter= face (through use of consultants) and streamlining processes in the FM
Containerizing the Federation Manager backe= nd to match the TIER approach
Working with the UK and Canadian federation= s to share metadata hosting (initially for emergency purposes)
= li>January 2017 - rolled out security incident= response program
April 2017 - documented a disaster recovery= plan for the federation
Scaling Federation Operations and Infrastructur= e
Significant challenges as to signing metada= ta and how metadata is managed - need to containerize and streamline effort= s
Signing metadata currently done by hand (an= d must be done on-site in Ann Arbor). Will work with the new security lead = on changing that
By mid-July, should have an offer out to a = DevOps manager (maintenance of all of all this and to take ownership of the= production process)
Maturing Federation Service Delivery
=Deployed ticketing system
Hired a new service management employee for= onboarding and help desk
Standards and Community Adherence
Baseline Expectations for Trust in Federati= on - AAC has developed these. They include a dispute resolution process
SIRTIFI - Security Incident Response Trust = Framework for Federated Identity - International standard. InCommon has dep= loyed this in pilot (and plan to move to production later this year). Move = the self-attested SIRTFI tag into the Federation Manager (a box to click to= self attest)
Putting Baseline into Production - AAC disc= ussing detailed process for members holding one-another accountable for mee= ting expectations.
Thou= ghts and ideas from Steering:
develop value proposition around these items to he= lp participants understand what is involved in running the federation.
Can we expose the workload involved in implementin= g tags, profiles, and the like; and perhaps employing a method for the comm= unity to help prioritize.
Another idea - perhaps Internet2 could develop a = =E2=80=9Cbehind the scenes=E2=80=9D series to introduce community members t= o the various initiatives and value.
Perhaps present a version of today=E2=80=99s prese= ntation to participants/members.
Want to make sure we aren=E2=80=99t ahead of the f= inances
How = does this outreach fit with TIER? Ann - One thing we=E2=80=99ve di= scussed is merging the TIER and InC communications so people start to recog= nize the relationship. The intent is to gradually move the communications t= o =E2=80=9CTrust and Identity=E2=80=9D overall.
2017= Phased Hiring Plan
Have hired a project manager.
Have hired a Research Business Relationship Manage= r (partial FTE - Tom Barton - working 40% time on Internet2 programs)
In final stages of hiring a DevOps Manager and Sec= urity Lead
Q - = are we in a better place than a year ago? Ann - yes. Talented new = staff members coming on board. Rolling out revised Federation Manager in Ju= ly, which is much needed. Have talented contractors that have helped with t= his and it will be ready for staff to take over. Also, will work with PAG t= o start aligning InCommon, TIER, Trust/Identity funding. A next step will b= e education, outreach, and engagement for the community. Need to work with = participants on changing local behaviors and practices. Will also likely of= fer services to help with that.
Was an Attribute Release roadmap update distribute= d with the agenda
Aligning AAC, TAC, and Steering efforts and concer= ns - Mark Scheible has been developing a draft for a working group charter.= WG will be charged to
recommend an attribute release policy for particip= ants
develop and implement a roadmap for adoption
Drive discussions on expectations of IdPs for attr= ibute release
WG would consist of reps from Steering, AAC, TAC, =
PAG, a couple of registrars, I2/TIER, research SP, CIO at large, auditor/ri=
sk mgr
Is a draft charter to be discussed by Steering, TAC, AAC. Is a tight timeli=
ne
Looking for names of individuals to fill these slo= ts.
Suggest connecting with AACRAO for names of regist= rar(s) (AI - Ann)
Dennis and Ann on the program for AACRAO Tech conf= erence in July. Session with a registrar to discuss attribute release - imp= roving privacy/security while still releasing appropriate information. Comi= ng out of that, hope to have some people interested in developing a white p= aper.
(AI) - Steering comment on the working group chart= er
Klara - PAG drafting a member endorsing Kevin=E2= =80=99s work and priorities
Content to discuss why trust/identity matters. Nee= d for sustainability for this work
Kevin had first one-on-one with Howard last week. = His experience in trust/identity space at Time Warner should help him come = up to speed quickly
Ran short of time today
Place on next month=E2=80=99s agenda
July 10, 201= 7 - Monthly Steering call
July 17, 201= 7 - First Trust/Identity PAG call