Minutes
Attending: Judith Bush, Janemarie Duh, Matthew Brookover, Heather Flanagan Eric Goodman, Mary McKee, Mark Rank, Matthew Economou, Keith Wessel, Eric Kool-Brown
...
Public Content Notice - TAC minutes are public documents. Please let the TAC and note taker know if you plan to discuss something of a sensitive nature.
Baseline Expectations 2 update
- Community Consultation is now open, access consultation page at https://spaces.at.internet2.edu/display/BE/Consultation+on+Baseline+Expectations+2.0
TechExtra
- Kickoff October 6, 7 - interesting keynote announcement next week.: https://www.internet2.edu/news-events/events/techextra-2020/
- CAMP/ACAMP November 16-20, first two days are CAMP, last three are ACAMP
- Proposals due by 9/23
TAC nominations reminder
- Members of TAC with terms ending in 2020
- Matt Brookover
- Judith Bush
- Heather Flanagan - happy to be re-nominated
- Eric Kool-Brown
- Edits to this year’s Announcement for InCommon Advisory Committee Nominations. Due by September 28. Please feel free to edit this.
- Add to the plans for distribution of communication of the common nomination announcement. Due by September 28.
- Review the Annual Member Cycle for Committees
- Will work to discuss & finalize at the 9/24 TAC meeting
IdPaaS WG update
- Have started a report. Resources are listed here: https://spaces.at.internet2.edu/display/IDPAAS/IdPaaS+Home
- Looking for TAC feedback on the report
- There are four common integration models
- Want to be sure to make recommendations that there is a third party that is thinking about this stuff all of the time.
- There are some who feel that the group ended up in a place they didn’t expect. One takeaway is that federation is not front-of-mind for those looking for an IdP as a Service. There is some hesitation to include federation as part of their plan. The report will address these concerns.
- Two big conclusions
- Recommend that InCommon consider creating an InC-ready IdP program - identify valid IdPaaS providers
- For those who are not looking to change the campus SSO process or software, but are interested in a federation adapter model, recommend that InCommon prioritize development of the Federation Adapter space/market rather than (necessarily) tools. There are a number of existing tools in this space that could be evaluated and recognized as an easy entry point to federation participation.
- TAC will do a review of the charter at the next meeting
- Federation as “big and scary” is something that the Seamless Access project has also encountered. One idea is to put together some relevant contract language for campuses to use.
- Charter was to look at “basic” and “plus” services - but there aren’t really levels - more may not be better - campuses may want a lightweight solution. Features that go beyond federation are not InCommon's expertise and there aren’t common needs among campuses.
Wrapping up Subject Identifier comparison and transition strategy
- Albert discussed a couple of questions he posted in the comparison document
- Strategies for working with identifiers
- Albert outlined main questions for IdPs to address: reuse, implementing persistent identifiers, migration of new identifiers, asserting multiple identifiers. Judith suggested addressing how to choose the right identifier to release.
- Eric G. - use of “persistent” may not be right, given the formal definition in the SAML NameID specs. Judith - the harder problem is non-reassignability.
- Albert will work on revising the Strategies document, engaging Judith, Scott Cantor, and others for information/feedback.