Untitled Document

**MACE Call 17-August-2009**

**Attending**

Ken Klingenstein, Internet2 (stand-in chair)

Leif Johansson, SUNET/NORDUnet

Steven Carmody, Brown U.

Jens Haeusser, U. British Columbia

Keith Hazelton - U. Wisconsin

Michael Gettes, MIT

Tom Barton, U. Chicago

Paul Hill, MIT

Ann West, Internet2

Jim Jokl, U. Virginia

David Wasley, independent

Scott Cantor, The Ohio State U.

Steve Olshansky, Internet2 (scribe)

**New Action Items**

*Carryover Action Item*

[AI] (RL "Bob") will contact a representative of Kuali Rice about coordinating a call.

[AI] (Ken and Mark) will distribute some information on trust anchors in the context of dynamic network configuration in GENI testbed, as well as for general access control.

[AI] (Ken) will circulate some meeting notes from the last TERENA/ REFEDS meetings.

*Recent Meetings*

- Catalyst

July 27-31, 2009, San Diego, CA

http://catalyst.burtongroup.com/

The Concordia Group, which is shifting from Liberty to Kantara, held a full-day meeting. RL "Bob" and Ken attended. Attributes were a strong focus. Export controls also arose, wrt attributes of requesting users.

The Concordia website is in transition, but they do have a list active now.

RL "Bob" is co-shepherding the OSIS group, and they are looking at all 4 prevalent IAM technologies: OpenID, SAML, InfoCard, WS-Federation.

- GSA

*Upcoming Meetings*

https://spaces.internet2.edu/display/MACECalendar/MACE+Calendar

- Tao of Attribute workshop

September 28-29, 2009, Washington DC

There is good representation from NIST. More to come on this as it develops.

The focus will be more on the quality of attributes than on the transport mechanism or LoA of the authn.

- Fall Internet2 Member Meeting

Oct. 5-8, 2009, San Antonio, TX

http://events.internet2.edu/2009/fall-mm/

- DIDW

September 14-16, 2009, Las Vegas NV

http://public.cxo.com//conferences//index.html?conferenceID=51

This will be adjacent to a Kantara event.

- Jasig Unconference

September 28-30, 2009, Champaign, IL

http://www.jasig.org/jasig-unconference-coming

Tom and Jens will be attending.

It was noted that the recent Rice 1.0 release primarily meets the needs of Kuali Finance, and an upcoming release will focus more on supporting Kuali Student and thus be more fully featured.

- Fall EuroCamp

Date TBD (likely late Fall), Budapest Hungary

http://www.terena.org/activities/eurocamp/

This will be similar to Advanced CAMP. There is growing momentum around aligning IAM/security efforts across projects...

- EMC2+Mobility+Refeds,

October 21-22, 2009, Rome, Italy

http://www.terena.org/activities/tf-emc2/

**Discussion**

* International software development coordination

There was a call today among the key players, focused mainly on COmanage, working to understand the respective roles. Andreas will be joining the effort, and Feide and Sympa may as well. There will be a follow-up call in the near future.

* Leif discussed his mail to the list today about getting a federation-scale RA for a personal grid/email certificate service up

and running. More to come on this as it develops. It is unclear yet as to whether the US or Canada could participate...

* The recent beltway battle - developing privacy detail

There has been some change afoot at key positions in the federal agencies, and there is gathering high-level momentum toward OpenID and low LoA access to some high-profile websites.

There was a recent meeting focused on privacy issues. There were some privacy requirements around IdP submitted by OpenID, which tended to be very targeted. Examples include a consent release mechanism every time a user releases any attributes, which could be challenging.

It was noted that users, when presented with consent or policy info, tend to freeze up if offered options...

To the extent it would be possible to align with EU policies, this might be a productive direction to pursue.

For reference, as discussed on the call:

http://openid.net/docs/Open_Trust_Frameworks_for_Govts.pdf

* Kantara - how much and how to engage

A Kantara rep. attended the meeting referred to above, and is open to working together on a white paper representing an alternative view to the OpenID white paper. Kantara is also interested in inter-federation issues. More to come on this as it develops.

There was a discussion of consent mechanisms, and their appropriate role in various access scenarios -- whether in higher-ed or beyond.