You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

TAC Meeting 2014-09-04

Thursday, September 4, 2014
1:00pm ET | 12:00pm CT | 11:00am MT | 10:00am PT

Dial-in Information

+1-734-615-7474 (preferred) (use this number unless you pay for long distance)
+1-866-411-0013 (US and Canada) (use this number if you pay for long distance)

Access Code: 0139713#

eDial: http://edial.internet2.edu/call/0139713

SIP: sip:session_0139713@edial.internet2.edu

If you are on a phone lacking a mute button, you can mute your phone via eDial by pressing ##1. To unmute, press ##1 again.

Agenda

  1. Please review carryover action items
  2. Does TAC want to meet F2F at TechEx?
    1. Best time: Weds 10:30-1:30 (conflicts with a TechEx general session at 10:30 and runs through the TechX lunch)
    2. Other options would be Mon, Tue, or Weds after 5:30 pm)
  3. Ops Update
  4. The State of TIER
  5. Update on Certificate Service: SHA-2 support (Joe, Jim)
  6. (your agenda item here)

Informational Items

  • Research & Scholarship activity since August 21, 2014:
    • California State University, Fresno supports R&S as of August 22, 2014
    • Towson University supports R&S as of September 2, 2014
  • New wiki docs:
  • (your info item here)

Carryover Action Items

  1. Steve Carmody will draft a wiki page outlining the steps involved in creating a category
  2. John will discuss with TAC how the Google OpenID Gateway might be operated and/or funded
  3. TAC will develop a recommendation for the potential necessary resources for eduGAIN implementation.
  4. John and Steven will review the Phase 2 Recommendations and propose to TAC a list of items that need to be addressed as a result of accepting the Recommendations
  5. John Krienke will distribute a list of outcomes related to the MD-Distribution recommendations
  6. John Krienke will implement a policy review regarding whether SP registration of keys could be made optional.
  7. Steve Carmody and John Krienke - Take to Steering for a policy discussion the issue of maintaining/guaranteeing the strength of the trust fabric through proactive scanning and probing of entities on behalf of the federation and its participants.
  8. Scott Cantor will continue to push discussion of the Affiliation-Based Access category and a library services category (proposed by SWITCH) and represent the TAC’s support for both.
  9. Ann West will bring up with the InC-Student working group the issue of R&S attribute release and its relationship (or not) to students who invoke the FERPA opt-out.
  10. Tom Scavo and Tom Barton will work on making available to campuses the InCommon scripts used to identify SP’s with endpoints that are not compatible with SHA-2.
  11. Keith will draft a IAM Testbed working group charter for the next TAC meeting.
  12. TAC members will review the original strategic priorities document and propose priorities for the rest of 2014.
  13. Tom Barton, Chris Misra, and Nick Roy (should he accept), and one or two members of Assurance Advisory Committee (AAC) (should they accept) will develop a list of first steps that InCommon might take vis a vis future security issues like Heartbleed.
  14. Steve Carmody will contact Nick Roy and the AAC leadership about participating in the Heartbleed group.
  15. Steve Carmody will initiate the process of developing a working group to deal with the larger gateway and interfederation issues.
  16. Steve Carmody will compare the priorities spreadsheet discussed today with the original TAC document on InCommon strategic priorities and call out major differences
  17. Scott, David, and TomB will reformulate the text in section 7.2 of the FOPP. The group will also look at the text in section 9 in light of the Google Gateway and eduGAIN but that may be deemed out of scope initially.
  18. Ann will keep TAC in the loop with respect to the Steering group working on eduGAIN policy issues.
  19. InCommon staff will go back to the drawing board and discuss possible paths forward with respect to REFEDS R&S and eduGAIN.
  20. Steve C. will send a note to Nicole Harris asking that she accept proposed changes through the end of August.
  21. John K. will ask Comodo about moving to support SHA2 in the other CAs, specifically to meet a Microsoft deadline of January 2016.
  22. John K will ask the Metadata Distribution Working Group if they will reconvene and make a recommendation about the first step in deploying per-entity metadata.

Minutes

Attending: Ian Young, Steve Carmody, Nick Roy, Michael Gettes, Keith Hazelton, Tom Barton, Jim Basney, Paul Caskey, David Walker, Jim Jokl

With: John Krienke, Tom Scavo, IJ Kim, Ann West, Steve Zoppi, Nate Klingenstein, Joe St Sauver

F2F at TechEx

TAC will meet Wednesday of TechEx - 10:30 – 1:30

Ops Update

Tom Scavo reported on the per-entity metadata pilot, expected to start in two weeks and import metadata from InCommon and eduGAIN. Details at https://spaces.at.internet2.edu/x/1w7kAg

Certificate Program Support for SHA-2

TAC approved the recommendation from the PKI Subcommittee to move to SHA-2 support in the certificate program. Comodo is ready to proceed.

TIER Draft

Steve Zoppi presented a detailed overview of the “inctac:State of TIER” draft sent via email earlier this week. In general, the goal is to instill better custody for a suite of products that already exist and/or are under development for easier deployment and support, and to promote broader adoption. The TAC Identity Landscape document has provided the base layer for these discussions.

Current discussions include:

  • identifying the needs of the institutions
  • identifying the products that meet those needs and, thus, should be part of TIER
  • potential governance models
  • potential funding models
  • implementing a regular delivery of products/updates at 6-8 month intervals

This can be thought of as a series of concentric circles. The need is for a plausible strawman that identifies the first steps (the inner concentric circle) to moving down the path, what will be delivered on a regular cadence, and an initial three-year plan. The plan will also include a stable model to support the key components that are important to the community (such as Shibboleth and Grouper).

Part of the discussion is defining Internet2’s role and how Internet2 can do to serve the broadest needs of the community. This draft document envisions Internet2’s role as convening the community and the custodian and caretaker for the agenda, development, and process of development of TIER components; always in response to the needs of the community.

TAC discussed some of the issues involved, including meeting the need of research organizations and researchers with an IdP of Last Resort, for example, to provide to allow for the aggregation of attributes and user control over their release.

Steve Z asked for reactions from TAC members to the document – the nature of the problems being addressed, anything that causes heartburn, and feedback as what would be best for your campus.

Next Meeting

Thursday, September 18, 2014
2 pm ET / 1 pm CT / Noon MT / 11 am PT

  File Modified
No files shared here yet.
  • No labels