**MACE Call 15-March-2010**
**Attending**
RL "Bob" Morgan, U. Washington (chair)
Ken Klingenstein, Internet2
Rodney McDuff, U. Queensland
Steven Carmody, Brown U.
Keith Hazelton, U. Wisconsin - Madison
Mark Poepping, CMU
Scott Cantor, The Ohio State U.
Ann West, Internet2
Jens Haeusser, U. British Columbia
David Wasley, independent
Scotty Logan, Stanford U.
Neal McBurnett, Internet2
Steve Olshansky, Internet2 (scribe)
**New Action Items**
[AI] (Ken) will send out info on DHS secure online transactions
[AI] (Ken) will follow up on a MACE/AMSAC call.
[AI] (Ken) will follow up with Kuali/Rice about I2MI collaboration.
[AI] (Ken) will float a set of proposed names for consideration for MACE membership, for discussion on the next call.
[AI] (Ken) will draft a catalyst doc, covering the key items to be addressed in advising VOs how to use our infrastructure.
*Carryover Action Items*
[AI] (Leif) will contact Ken/Steven/Tom about potential overlaps between the SDCI proposal and projects in the EU.
[AI] (All) attending EMC2/REfeds/Mobility, please contact Ken.
[AI] (Leif) will discuss the IDTrust meeting on the PKNG list, seeking feedback.
[AI] (Jens) will speak to an Eduroam rep about communicating with Educause.
[AI] (Ken) will draft and circulate a letter to Rice leadership, requesting input to roadmaps and use cases, and to ensure our projects with Kuali projects are aligned with their high-level strategic direction.
[AI] (Nate) will distribute information to the list about upcoming tactical issues facing MACE
[AI] (All) send Bamboo IAM comments to Tom ASAP for coordination.
[AI] (All) interested in participating in the international collaboration activity contact RL "Bob."
[AI] (RL "Bob") will contact a representative of Kuali Rice about coordinating a call.
[AI] (Ken and Mark) will distribute some information on trust anchors in the context of dynamic network configuration in GENI testbed, as well as for general access control.
[AI] (Ken) will circulate some meeting notes from the last TERENA/ REFEDS meetings.
**Discussion**
1. Past Meetings:
- EMC2/REfeds/Mobility
Feb 16-17, 2010, Vienna, Austria
http://www.terena.org/activities/refeds/
http://www.terena.org/activities/tf-emc2/
http://www.terena.org/activities/tf-mobility/
How to deal with the issues of small SPs serving multiple federations were a topic of discussion. Among the potentially sticky issues were EU privacy policies. InCommon TAC is discussing similar issues now as well...
- RSA
March 1-5, 2010, San Francisco, CA
http://www.rsaconference.com/2010/usa/index.htm
The OIX (Open Identity Exchange) was announced, following on OpenID and InfoCard activities, a trust framework provider for interactions with the US Government.
http://openidentityexchange.org/
Scott noted the recent Microsoft U-Prove announcement as well:
http://www.credentica.com/
Ken noted recent developments related to DHS secure online transactions
[AI] (Ken) will send out info on DHS secure online transactions
- Kantara Initiative Conference
March 9-11, 2010, Hillsboro, Oregon,
http://kantarainitiative.org/confluence/display/GI/Kantara+Initiative+Conferences
Scotty attended...
*Upcoming Meetings*
https://spaces.internet2.edu/display/MACECalendar/MACE+Calendar
- IETF
March 21-26, 2010, Anaheim, CA
http://www.ietf.org/meeting/upcoming.html
Leif will be attending. There will be a BoF Wednesday night on federation, led by Sam Hartman. MoonShot is a likely topic to be included as well.
- IDTrust
April 13-15, 2010, Gaithersburg, MD
http://middleware.internet2.edu/idtrust/2010/
Planning is well underway. LoA of attributes may be a panel topic.
- Spring I2MM
Apr 26-28, 2010, Arlington, VA
http://events.internet2.edu/2010/spring-mm/
-- Dutch CIO visit
I2MI and Rice are likely agenda topics at this meeting, likely to be held Sunday afternoon or evening before the meeting.
- Spring CSG
This is likely to focus on research computing and CI
- CAMP
Exploring and Supporting Federated Access
June 21-23 Raleigh, NC https://spaces.internet2.edu/display/CAMP/Home
The agenda is being finalized very soon, addressing a diverse audience.
- Advance CAMP
The Second Identity Services Summit
June 23-25 Raleigh, NC https://spaces.internet2.edu/display/CAMP/Home
The agenda is well under way. The PC is looking at ways to engage attendees more deeply in the agenda direction...
- Jasig
March 8-10, 2010, San Diego, CA
http://www.jasig.org/jasig-spring-2010-conference-ten-years-o
- IIW (next)
TBD
http://iiw.idcommons.net/IIW:Current_events
- TERENA NC
May 31 - June 3, 2010, Vilnius, Lithuania
http://tnc2010.terena.org/
- Mapping the Gaps
March 18-19, 2010
ISOC is sponsoring this meeting later this week, looking at technical and policy gaps in the IdM space.
2. Relationships:
- AMSAC
AMSAC wants to organize a call with MACE, and he will be proposing some times soon (or possibly as part of a future MACE call). There are 2 new members, Joel Smith (CMU) and Stefan Karapetkov (Polycom).
http://www.internet2.edu/governance/advisorycouncils.html#AMSAC
[AI] (Ken) will follow up on a MACE/AMSAC call.
- Rice/Kuali
Grouper is working with the Rice groups API, and Shibboleth is a topic of interest as well. Rice has been Shib-enabled...
[AI] (Ken) will follow up with Kuali/Rice about I2MI collaboration.
- REFEDS
Ken reported that this was a main topic at the recent TF-EMC2 meeting. Ken and Licia are working to refine the REFEDS mission. A tentative meeting has been set at the Fall Internet2 Member Meeting in Atlanta.
Federations seem to fall into 2 broad categories, (1) those content with their current status, and (2) those seeking to develop further. Those wanting to develop would need to be willing to contribute some resources to make this happen...
There is some discussion about whether REFEDS could move under the umbrella of ISOC... It was observed that the policy dimensions might be a good fit with ISOC, but the higher-ed perspective might not. Also, SP issues, including licensing and eduID, might need a more hospitable home. Money and clue would be key elements of support, not really just an organizational home for the wiki and mailing list.
3. New members in Mace, confirming directions, etc.
Given MACE's campus middleware focus, particularly IdM and access management, the attributes of potential new members and liaisons were discussed, as well as some potential names for consideration.
[AI] (Ken) will float a set of proposed names for consideration for MACE membership, for discussion on the next call.
4. Serving VOs missing pieces?
A number of VOs are expressing interest in using federation and COmanage as key elements of their collaboration infrastructures. What else should we be looking at to support VOs, especially international?
- namespaces - if a VO wants to create attributes, for use across multiple federations, is there anything different than existing work in this area? Is a VO really just another SP? It was observed that reusing existing attributes is preferable whenever possible.
Q: what can we learn from past work on this by VOs we are already working with?
A: worth exploring...
Business processes related to proposing and refining new attributes would be a key element to look at, and not really in the MACE/I2MI domain to date. This seems to be an area ripe for discussion, including identifying use cases and approaches, and improving practices.
[AI] (Ken) will draft a catalyst doc, covering the key items to be addressed in advising VOs how to use our infrastructure.
5. LOA of attributes
There have been some recent inquiries about this from the community, There may be critical mass gathering to work on this, and MACE would be involved in this. More on this as it develops. See for reference:
http://middleware.internet2.edu/tao-of-attributes/
It was noted that how an SP can determine what attributes it can be provided from an IdP has been a recent topic on the InCommon TAC list, and LoA might be a logical addition to this discussion...