Page History

InCommon TAC

...

Minutes - May 14, 2015

Thursday, May 14, 2015
1:00pm ET | 12:00pm CT | 11:00am MT | 10:00am PT

Dial-in Information

+1-734-615-7474 (preferred) (use this number unless you pay for long distance)
+1-866-411-0013 (US and Canada) (use this number if you pay for long distance)

Access Code: 0139713#

eDial: http://edial.internet2.edu/call/0139713

SIP: sip:session_0139713@edial.internet2.edu

If you are on a phone lacking a mute button, you can mute your phone via eDial by pressing ##1. To unmute, press ##1 again.

Agenda

1. Please review carryover action items
   1. See this marked up list of action items
2. Acceptance of TAC minutes: 
   1. Minutes from April 2, 2015 (includes these changes from the original)
   2. Minutes from April 16, 2015
   3. Minutes from April 28, 2015
3. Staffing update (Ann)
4. R&S application pending: Springshare LibApps (TomS)
5. Updates from active Working Groups:
   1. IdP of Last Resort (Keith)
   2. External Identities (David)
6. eduGAIN – next steps (Hold until next TAC meeting)
   1. Discussion: Roadmap for Operationalizing eduGAIN
7. Next Work Items (based on tasks assigned to TAC)
   1. Federation Standards and Practices Working Group (Nick)
   2. Federated incident Response (Tom B) (see email – Task M - FSIR )
   3. IDP v3, Making Federation Easier – deferred until 5/28
8. (your agenda item here)

Informational Items

1. Research & Scholarship activity since April 16, 2015
   
   • The following application for R&S is pending:
     • Springshare LibApps on April 22, 2015
   • The following IdPs have declared support for global R&S:
     • Ohio Technology Consortium (OH-TECH) on April 24, 2015
     • Oregon State University on April 29, 2015
     • Western Michigan University on May 7, 2015
     • Bates College on May 7, 2015
     • California State Polytechnic University, Pomona on May 7, 2015
     • University of Chicago on May 7, 2015
   • The following IdPs have declared support for local R&S:
     • Gettysburg College on May 7, 2015
     • Smithsonian Institution on May 8, 2015
2. (your info item here)

Carryover Action Items

1. Steve Carmody will draft a wiki page outlining the steps involved in creating a category
2. John will discuss with TAC how the Google OpenID Gateway might be operated and/or funded
3. TAC will develop a recommendation for the potential necessary resources for eduGAIN implementation.
4. John and Steven will review the Phase 2 Recommendations and propose to TAC a list of items that need to be addressed as a result of accepting the Recommendations
5. John Krienke will distribute a list of outcomes related to the MD-Distribution recommendations
6. John Krienke will implement a policy review regarding whether SP registration of keys could be made optional.
7. Steve Carmody and John Krienke - Take to Steering for a policy discussion the issue of maintaining/guaranteeing the strength of the trust fabric through proactive scanning and probing of entities on behalf of the federation and its participants.
8. Scott Cantor will continue to push discussion of the Affiliation-Based Access category and a library services category (proposed by SWITCH) and represent the TAC’s support for both.
9. Ann West will bring up with the InC-Student working group the issue of R&S attribute release and its relationship (or not) to students who invoke the FERPA opt-out.
10. Tom Scavo and Tom Barton will work on making available to campuses the InCommon scripts used to identify SP’s with endpoints that are not compatible with SHA-2.
11. TAC members will review the original strategic priorities document and propose priorities for the rest of 2014.
12. Tom Barton, Chris Misra, and Nick Roy (should he accept), and one or two members of Assurance Advisory Committee (AAC) (should they accept) will develop a list of first steps that InCommon might take vis a vis future security issues like Heartbleed.
13. Steve Carmody will contact Nick Roy and the AAC leadership about participating in the Heartbleed group.
14. Steve Carmody will initiate the process of developing a working group to deal with the larger gateway and interfederation issues.
15. Steve Carmody will compare the priorities spreadsheet discussed today with the original TAC document on InCommon strategic priorities and call out major differences
16. Scott, David, and TomB will reformulate the text in section 7.2 of the FOPP. The group will also look at the text in section 9 in light of the Google Gateway and eduGAIN but that may be deemed out of scope initially.
17. Ann will keep TAC in the loop with respect to the Steering group working on eduGAIN policy issues.
18. Steve C. will send a note to Nicole Harris asking that she accept proposed changes through the end of August.
19. John K. will ask Comodo about moving to support SHA2 in the other CAs, specifically to meet a Microsoft deadline of January 2016.
20. Steven Carmody and Keith Hazelton (and whomever else wishes to) will edit these for clarification and to send to Steering Program subcommittee.
21. Prior to the break, Steve Carmody will develop a scope of work for an “eduGAIN punch list”
22. Steve Carmody will communicate the Alternative IdP Working Group final report and recommendations to Steering.
23. Steve, Ann, Dean and Michael will draft a proposal to address TAC member responsibilities, TAC transparency, and related processes.
24. Steve Carmody will send email looking for a chair for the MD Distribution WG

25. Ann will talk to Jacob Farmer about participating in developing the charter for the Baseline Practices WG.

26. Keith Hazelton and Ann West will edit the appropriate pages to make clear that URLs are as good and possibly better than URNs for entitlement values, etc. They will also add a page to the wiki that makes the case for URLs over URNs.

27. Steve Carmody and Nick Roy will recruit non-usual suspects to join the Best Practices Working Group. We need to make sure that these baseline practices are achievable for smaller institutions.

28. Nick Roy will develop a working group charter to contain the several related activities around baseline practices/POP replacement; shoulds/musts for sponsored partners; additional entity capabilities; and trustmarks.

29. Nick Roy will outline the predecessor/successor relationships among the priorities to determine sequence and need-by dates. David and Ann will assist. This will be circulated to TAC and AAC.

30. Agenda item for next meeting - how can TAC help with eduGAIN rollout.

31. Tom Barton will develop a WG charter re: how to coordinate incident response

32. Paul Caskey will take charge of this goal “Making Federation Easier”

33. Steven Carmody and Michael Gettes will develop a short white paper to document the requirements and goals related to attribute release.

Minutes

Attending: Keith Hazelton, Jim Jokl, Steve Carmody, Ian Young, Nick Roy, Scott Cantor, Mike LaHaye, David Walker, Tom Barton

With: Steve Zoppi, Tom Scavo, IJ Kim, Ann West

Action Items

(AI) TAC will begin revisiting the question of “what’s next for TAC” in preparation for recruiting new members (with Nick and Paul joining the InCommon staff).

TAC Minutes

Accepted/approved making publish the minutes from from April 2, April 16, April 28.

Staffing Update

Ann reported that Nick Roy is the new Director of Technology and Strategy for InCommon and Paul Caskey is the new Program Manager for Community Trust. Both will start in mid-June.

(AI) TAC will begin revisiting the question of “what’s next for TAC” in preparation for recruiting new members (with Nick and Paul joining the InCommon staff)

R&S Application from Springshare

TAC approved the Springshare application for R&S. Staff will talk with Springshare about using ePPN rather than email address as an identifier

Working Group Updates

IdP of Last Resort (Keith) - The candidate final draft is out to the working group. Deadline for comments is May 18.

External Identities (David) - Eric Goodman released the report for community review. Eric may join the TAC call on May 28 to discuss the report and answer any questions.

eduGAIN Process

Tom Scavo has developed a technical roadmap, which needs to now be integrated with communications and policy plans. The proposed changes to the Participation Agreement and FOPP are with Internet2 legal for review and should be finished in late June or early July. The communications effort needs to be developed, beginning with finishing the intent paper that was started by the eduGAIN policy working group. Once the intent paper is finished and published, we can start communicating to the community.

...

Will I have control over who I federate with? (yes) Will there be restrictions on attribute release to SPs in certain countries? What are the requirements for aligning with EU privacy laws? What advice, recommendations, and guidance will InCommon provide?

...

Next TAC Work Items

IdPv3 and Making Federation Easier - There are calls coming up with Ellucian and Azure AD which will provide additional data, so this discussion was deferred to a future TAC meeting.

...

Federated Incident Response - Tom Barton has outlined via email a two-phase program of work leading to federated incident response. GEANT (Licia Florio) has work going on in this area, as well. Under the plan, the SirTiFi working group would become a steering group for the federated incident response effort.

REFEDS Steering

Ken Klingenstein’s term on the REFEDS steering group has expired and Tom Barton has been appointed.

Next Meeting - Thursday, May 28, 2015 - 1 pm ET / Noon CT / 11 am MT / 10 am PT

Attachments

attachments