Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.

InCommon Steering Committee Meeting - June 2, 2014

Dial-in Information

(734) 615-7474, or
(866) 411-0013

PIN: 0139418#


  1. Approve
    1. Minutes from May 5, 2014
    2. Extending Virginia Tech Certification (Bronze and Silver) by one year to Sept. 9, 2016
    3. Alternative Means for Bronze and Silver: Allowing SHA-1 through Jan. 15, 2015 (Word Doc)
  2. Information
    1. Communications with FICAM (John Krienke)
    2. Ramping up Inter-federation Policy and Legal modifications (John Krienke)
    3. NSF-funded VOs (Ken)
  3. TIER Charter Subcommittee Update (Klara Jelinkova)
  4. Identity Week sessions (Oct. 26-30)
    1. Interest in a Steering Face to Face?
    2. Steering session concerning 2014 and 2015 goals?
  5. Program Subcommittee Update (Michael Gettes and John O'Keefe)
  6. External Relations and Governance Subcommittee Update (Joel Cooper and Chris Homes)


Attending: Jack Suess, John O’Keefe, Chris Holmes, Susan Kelley, Ken Klingenstein, Jack Suess, Steve Carmody, Mark Crase, Melissa Woo, Bill Yock, Joel Cooper, Dennis Cromwell, Klara Jelinkova

With: John Krienke, Jacob Farmer, Ann West, Steve Zoppi

Action Items

(AI) Dean will add an agenda item for August 2014 to revisit the progress of the move to SHA-2.


(AI) Steve Zoppi will share a summary of the submitted budget.


The minutes from the May 2014 meeting were approved.

Extending Virginia Tech Certification

Jacob Farmer, vice chair of the Assurance Advisory Committee, reviewed an AAC recommendation to extend Virginia Tech’s assurance certification for an addition year (expiring Sept. 9, 2016). Virginia Tech’s compliance currently expires on Sept. 9, 2015 and must queue up now with the auditor in order to meet that date. The AAC will use this additional year to review potential methods for re-certification that may not require a re-audit.

The recommendation was approved unanimously.

Alternative Means for Bronze and Silver: Allowing SHA-1 Through Jan. 15, 2015

The AAC also recommends adoption of an alternative means for Bronze and Silver that would allow the use of the SHA-1 algorithm through January 15, 2015. This will allow the support for this legacy protocol as IdPs and SPs move to SHA-2. Currently, Shibboleth will not allow for support of both protocols.


(AI) Dean will add an agenda item for August 2014 to revisit the progress of the move to SHA-2.

FICAM Issues

John Krienke reviewed issues related to FICAM, which has made changes to the Trust Framework Provider criteria (InCommon is such a provider) with a six-month compliance window. InCommon is working to determine how the new compliance standards will affect the federation and its participants.

In addition, FICAM, without notice, downgraded the two FICAM compliant InCommon IdPs, Virginia Tech and the University of Nebraska Medical Center, to “token managers.” This affects other TFPs, as well, including Kantara, Safe BioPharma, and OIX. The downgrade could affect the ability to attract certain federal grants. InCommon has opted not to participate in a joint letter with the other TFPs, but to send a letter under Shel’s signature objecting to the downgrade without first communicating to the TFP and IdPs.


Interfederation (e.g. operating within eduGAIN) will require legal, policy and technical modifications for InCommon. Work is in progress both on technical changes needed and proposed legal and policy changes. As policy authority for InCommon, Steering will approve any proposed changes to the InCommon Participation Agreement and the Federation Operating Policies and Practices (FOPP). The policy changes are being discussed with Internet2 legal, then will be provided to Steering for comments. John Krienke and Ann West will also be recommending a process to use for these changes.

NSF-Funded VOs

Ken Klingenstein reported on issues being confronted with the science virtual organizations. One such VO, LIGO, has worked with InCommon for several years, embracing federated identity and attracting the attention of other VOs. With the slow uptake on the Research and Scholarship Category by IdPs, however, LIGO is spending a lot of time negotiating attribute release. LIGO will be accessing the eduGAIN metadata through the Swedish federation and will also deploy a social identity option for researchers.


This is a pressing need. (AI) Jack and Klara will draft a CIO message for approval before the next Steering meeting.

TIER Charter Subcommittee

This group will have its first meeting next week.

Technology Exchange/Identity Week and Steering

(AI) Dean will pencil in a Steering meeting adjacent to the REFEDS meeting and also place this topic on the agenda for the July call.

Internet2/Net+/TIER Budget

(AI) Steve Zoppi will share a summary of the submitted budget.

Next Meeting

Monday, July 7, 2014
4 pm ET | 3 pm CT | 2 pm MT | 1 pm PT