Action Items

(AI) Jessica to close out the Deployment Profile Working Group using the procedures in the flywheel guide.

(AI) Janemarie/Jessica - Public acknowledgement and thanks to the Deployment Profile WG for its work. Recap of the results. Link to the wiki.

(AI) TAC members - consider serving as the liaison to CACTI. If interested, contact Janemarie

Minutes

Attending: Heather Flanagan, Eric Goodman, Matt Brookover, Eric Kool-Brown, Mary McKee, Janemarie Duh, Judith Bush, Mike Grady

With: Nick Roy, Dean Woodbeck, Albert Wu, Shannon Roddy, Jessica Coltrin, David Walker, Steven of Zoppi, Ian Young, David Walker, Dave Shafer, IJ Kim

Regrets: David Bantz

Intellectual Property Reminder - All Internet2 activities are governed by the Internet2 Intellectual Property Framework

Public Content Notice - TAC minutes are public documents. Please let the TAC and note taker know if you plan to discuss something of a sensitive nature.

WebAuthN - Mary announced that Duke is live with WebAuthN.

T&I and Ops Updates

  • WIth MDQ in release candidate mode, Operations is working on reporting for both this and for the legacy aggregate service.  One challenge: as organizations move to AWS and cloud services, it will be hard to determine/map the organization to the report. Goal: get this on a public wiki and updated daily.
  • InCommon is also monitoring the uptime of the MDQ technology preview, MDQ production candidate, and Federation Manager. 

International Updates

  • TFIAM group met last week. Nicole Harris attended and will provide information on the meeting to Heather.
  • Will have a Hackathon in September, as well as one during TechEx in December. Several software projects will have tables.
    • Hackathon suggestions - a “test federation” table at the December hackathon and set of tools. Also, might be interesting to have a table focused on how the future deployment profile-friendly world would look if they are creating a testing suite and designing something for that.

Working Groups and TAC/CTAB/CACTI Updates

OIDC Deployment  - Not moving ahead with plug-in deployment guide. Not enough experience. This WG is ending its work. (AI) Jessica to close out the group using the procedures in the flywheel guide. Nathan Dors will send a note to Eric Kool-Brown (as the TAC liaison) explaining why the group has ended its work. (AI) Janemarie/Jessica - Public acknowledgement and thanks to the WG for its work. Recap of the results. Link to the wiki.

REFEDS Federation 2.0 - Developing the scenarios. The next step is to move from the scenarios to a strategic interpretation.

IdP as a Service - Survey is ready to send. EJ and Mary have reviewed the other deliverables, but those will wait until the survey is complete.

CACTI - Still looking for a TAC representative to CACTI. If interested, contact Janemarie.

CTAB - Have responses to the survey for Baseline Expectations 2. Developed a system to rate comments as positive, negative, or neutral.  

Standardizing committee processes

Jessica has developed a process, based on the existing TAC process to standardize the nominations calendar and process, and make things as transparent as possible. This includes Steering, TAC, CTAB, CACTI, and the upcoming eduroam advisory group. Planning to have one nominating form for all committees. Working groups are out of scope, since the process needs to be more lightweight. Also discussing onboarding and orientation of new members.

Next step - review this with the other committees, then move the document to the wiki. 

What’s next for Deployment Profile? 

How do we drive adoption and socialize the changes in SAML2int, particularly the pairwise identifiers? Here are the ACAMP session notes on Deployment Profile progress. 

The Deployment Profile Working Group will resume meeting this fall to work on the R&E specific profile to layer on top of SAML2int. A key question is how to support the new identifiers, as well as the deprecation of eduPersonTargetedID. The new identifiers are:

  • Pairwise identifier - will be important for the Seamless Access work. There is also interest from the FIM4L group for this identifier.
  • Correlation supporting identifier - came out of the FIM4R work.

Nick commented that it is important for TAC to take a stand on these identifiers. He will re-circulate a draft identifier roadmap proposal. One consideration is whether there are items to suggest including in the next round of Baseline Expectations. The identifiers are not candidates for that. <=DO NOT PUBLISH THE ROADMAP LINK IN THE PUBLIC MINUTES

InCommon Operations would need to support a couple of entity attributes and rework the Federation Manager accordingly. It will be important to communicate with the community regarding the availability of these new entity attributes, including documentation in the wiki, a blog post, and a webinar. The webinar might be multi-topic and discuss the deployment profile, attribute best practices, and signaling in metadata.

Key rotation is important to the profile, particularly accepting others’ key rotations via metadata as opposed to getting on the phone. This is an important piece for making federation metadata valuable.

A test federation is a TAC work item for the rest of the year and that fits in with supporting the profile. In order to promote the use of pairwise identifiers, we need the infrastructure to support them.

Badging

A sub-group continues to meet. 

Next Call

August 15 - TAC will meet. Because of BaseCAMP, no Internet2 staff will attend, nor will Janemarie. A TAC member will need to take notes and Keith Wessel will lead the call. 


  • No labels