CACTI Public Meeting Notes 27-April-2021

Attending

 Members

• Rob Carter, Duke, (Chair)  
• Les LaCroix, Carleton College (Vice-Chair)  
• Joshua Drake, Indiana University's Center for Applied Cybersecurity Research   
• Matthew Economou, InCommon TAC Representative to CACTI    
• Kevin Hickey, Detroit Mercy  
• Marina Krenz, REN-ISAC  
• Barry Johnson, Clemson   
• Chris Phillips, CANARIE  

 Internet2 

• Kevin Morooney 
• Ann West    
• Steve Zoppi    
• Emily Eisbruch    

 Regrets

• Marina Adomeit, SUNET
• John Bradley, Independent
• Margaret Cullen, Painless Security
• Stoney Gan, University of South Florida
• Michael Grady, Unicon
• Jeremy Perkins, Instructure
• Bill Thompson, Lafayette College
• Nicole Roy, Internet2

New Action Items from this call 

• AI Rob, Les, and Nicole  - submit two CAMP proposals for CACTI by the April 30 deadline
1. Overall CACTI session: suggested abstract title, CACTI: tracking and listening  on identity topics
2.  proposal around secrets management 

  Action items from March 30, 2021

• AI - Rob and Les - slot the user centric identity  topic into a future CACTI agenda
• AI - Rob and Les - form ideas to share with CACTI for continuing the secrets management discussion with others in the community (ongoing - discussion continuing April 27)

  Action items from March 16, 2021

• AI - Rob reach out to the CACTI email list to start to gather contacts and use cases for upcoming discussions around OIDC.
• AI - Rob reach out to leaders of MidPoint/Banner Integration working group to talk with CACTI re: Banner, (AnnW did intro with MattB)  .  (Note Banner WG is folding into the MidPoint WG)

 Discussion

 Administrivia

• Internet2 Intellectual Property Agreement reminder
• CACTI Charter pointer

Proposals for CAMP 2021

• CACTI proposals for October's CAMP agenda - due by Friday, April 30
• https://incommon.org/academy/camp-meetings/2021-camp-week/
• CAMP is part of InCommon and GÉANT 2021 CAMP Week
• Rob reached out to U Illinois / KeithW around a potential CAMP session on ADFS and Azure AD in a federated environment.  
• Virtual CACTI session during CAMP, open microphone session with the community
• KevinM:  CACTI is in the center of concentric circle of how we get things done in Trust and Identity, it’s important to remind the community of this structure, and that the community drives Trust and Identity
• Perhaps blend a CAMP session rich in content and open microphone in a session where CACTI shares what it’s been doing and then solicits community input

• Other possible topics
  • Secrets Management is a large topic
  • Devops in the field / Operationalizing IAM is another good topic
  • Educause IAM list has been discussing Devops 
  • MFA and NIH topic is also significant
  • Security as it intersects with trust
  • Devops and cloud changes and need for security
  • Continuity of the Trust and Identity community in light of the pandemic; CACTI could lead a reflection on where we stand
  • Keeping the IAM community vibrant
  • KevinM: A good topic could be: As we get a sense of the future of the workforce, what are the durable things IAM architects can do to help shape that in the future?
  • Federation 2.0 story
  • Topics raised at CAMP can be further explored at the ACAMP unconference
    
• AI Rob, Les, and Nicole  - submit two CAMP proposals for CACTI before the April 30 deadline
• Overall CACTI session: suggested abstract title, CACTI: tracking and listening  on identity topics
•  proposal around secrets management 

Federation 2.0 draft paper / CACTI analysis

• Read the draft report of the REFEDS Federation 2.0 working group
•  WG wiki space, for background

• Intro / background on this work
  • Looking at next 20 years of global federation
  • What should federations be focusing on
• We hope to bring in Federation 2.0 WG chairs Judith Bush and Tom Barton to further discuss with us at next CACTI call 
• Thoughts about CACTI's role in a response/support of the work 
• KevinM: CACTI should likely reach out to the authors and ask how CACTI can best help the REFEDs 2.0 effort.  
• Is the CACTI response to the FIM4R recommendations the playbook/process for this?
  • See here for reference: https://spaces.at.internet2.edu/display/TI/TI.112.1
• The manner in which CACTI provides feedback to REFEDs 2.0 will impact how much the community pays attention 
• The Fed 2.0 draft presents four key takeaways about Fed 2.0
• There is emphasis on non technical, softer aspects of federation such as governance and participation
• A focus in the Federation 2.0 document on relevance. 
• Trust is also a key issue
• Building trust that may not exist in the commercial cloud
• If O365 and Azure become dominant, due to their simplicity, this is a potential threat to relevance of  R&E federation 
• But Microsoft and other commercial providers may not deliver on what R&E needs
• ChrisP: There’s a call to action to participate, we need people to stay involved
• Key takeaways in the Federation 2.0 draft document:
  • Effective global leadership, advocacy, and governance is critical
  • We need better messaging around the relevance and value of Academic Interfederation to drive adoption
  • Participation and inclusion are the cornerstone of Academic Interfederation
  • Innovative and forward-thinking technical standards will continue to be a critical foundation
  • We must focus efforts on growth and expansion to promote future sustainability
• Comment: discussion of IDPs as a service in the draft is interesting
• There is a need for IDP as a service to be available for institutions that can’t stand up all the infrastructure
• Need to make federation easier, make it easier for IDPs and SPs to onboard
• Suggestion to get rid of complexity to increase participation 
• Would be good to get around need to “chase” new technologies; too many implementations are required in current landscape
• We need to stay sustainable, relevant and nimble
• Lack of talent or lack of volunteer talent? 
• In some cases there is less “release” time for volunteers to continue to the community effort
• Perhaps there’s a need to convince the campuses to free up more time for their talent
• Catalyst program indicates there is some willingness to pay
  • https://www.incommon.org/community/catalyst/meet-the-incommon-catalysts/
    
    
• IDP as a service is being considered (or has been approved?) by InCommon Steering
• Then need to build on top of the Catalyst program, marketing and compliance
• It will be an InCommon branded solution that participants can “buy with confidence”
• Much of what we think of as basics of the federation came into being with grants from NSF
• There has been some shift from grant funding to shared model with corporate partners and the Catalyst program
• There is a general trend towards off the shelf products
• It is partly a strategic move
• Impacts how we should communicate about identity
• What should an organization be doing on site versus outsourcing?
• Focus on making it easier to do the right thing 
• We will return to this topic on next CACTI call
  
  
• Comment:: for DOD contracts, there’s been a push to require use of Agile Framework. Might that come down the pike for NIH or NSF grants?

 Did not discuss the remaining topics on this call

• "Lions And Tigers and Secrets, Oh My!" outreach campaign
  
  
  1. scope and breadth
  2. lining up topics and speakers
1. Next steps for IAM Online webinar
2. Blog/survey/other kinds of outreach?

Next Meeting: Tuesday, May 11th, 2021