MACE Conference Call, October 1, 2007

*MACE Conference Call*
October 1, 2007

*Attendees*

Keith Hazelton (acting chair) - Wisconsin
Bob Morgan (chair) - Washington
Steve Olshansky - Internet2
Renee Frost - Michigan/Internet2
Steve Carmody - Brown
Diego Lopez - RedIRIS
Leif Johansson - Stockholm/SUNET
Neal McBurnett - Internet2
Jim Jokl - Virginia
Michael Gettes - Internet2
Ann West - Internet2
Scott Cantor - OSU
Nate Klingenstein - Internet2
David Wasley - independent
Ken Klingenstein - Colorado/Internet2
Paul Hill - MIT
Ben Chinowsky (scribe) - Internet2

*Discussion*

Recent meetings:
- Bob and Ken went to Google to make an applications-focused pitch for IdM; see http://video.google.com/videoplay?docid=6633812049929827314 and http://middleware.internet2.edu/docs/identity-federation-comanage.2007-09.pdf.
- Bob was at DIDW (http://conference.digitalidworld.com/2007/). He noted that there were a lot of "it's the apps, stupid" discussions; "identity services" is a current buzzphrase. Bob is looking for a venue in which to continue these conversations. Scott attended the associated Concordia workshop (see http://projectconcordia.org/index.php/DIDW_Workshop_2007_Notes). Scott noted that many of the companies involved in Concordia have been playing with SAML for a while and are now progressing toward MACE-scale deployments; this is generating a lot of concern about how to deal with metadata, and agreement that PKI is not the answer. Patrick Harding's work on "dynamic federation" has some overlap with MACE's approach.
- Scott also attended the W3C Workshop on Next Steps for XML Signature and XML Encryption; presentations and draft minutes are at http://www.w3.org/2007/xmlsec/ws/agenda.html.
- Presentations from CSG are at http://www.stonesoup.org/Meeting.last/mtg.pres. Ken noted that Duke has significant activity starting up in the collaboration management area.

Upcoming meetings:
- Registration for the November 14-15 EuroCAMP is now open; see http://www.terena.org/activities/eurocamp/november07/registration.html.
- IETF is December 2-7; see http://www3.ietf.org/meetings/70-IETF.html. Leif noted that an informal KAML meeting is planned, and that the IETF Applications Area Directors have issued an invitation for a February 11-12 session on "common Internet applications architecture".
- The topic for the February 13-15 CAMP will be "Bridging Security and Identity Management"; see http://www.educause.edu/camp081.

Ken noted the formation of the MIT Kerberos Consortium (http://www.kerberos.org/), which aims "to establish Kerberos as the universal authentication platform for the world's computer networks." This includes integrating Kerberos and SAML.

*Action Items*

(from previous calls)
[AI] Michael will write MACE a description of his work on the Collaborative Organizations pilot service.
[AI] Bob and Ken will contact Jane Charlton and Josh about the operational and policy aspects of applying Shibboleth to Confluence in the UK.
[AI] Ken will ping his National Archives contact for a workshop agenda, and circulate it to the list.
[AI] Bob will draft recommendations for app developers re AuthN/AuthZ (attributes), and post them to a wiki; Leif will provide references for J2EE text.
[AI] Ken will set up an outreach, education, and support conference call, and notify MACE.
[AI] Bob will organize a conference call about getting mace-collab-core going.
[AI] Bob will talk to Vinay Kumar about possible roles for 9Star in supporting MACE-ware.
[AI] Keith will draft a summary of the OpenID discussion on the May 14 MACE call, for further discussion on the MACE list.