**MACE Call 17-August-2009**
Ken Klingenstein, Internet2 (stand-in chair)
Leif Johansson, SUNET/NORDUnet
Steven Carmody, Brown U.
Jens Haeusser, U. British Columbia
Keith Hazelton - U. Wisconsin
Michael Gettes, MIT
Tom Barton, U. Chicago
Paul Hill, MIT
Ann West, Internet2
Jim Jokl, U. Virginia
David Wasley, independent
Scott Cantor, The Ohio State U.
Steve Olshansky, Internet2 (scribe)
**New Action Items**
*Carryover Action Item*
[AI] (RL "Bob") will contact a representative of Kuali Rice about coordinating a call.
[AI] (Ken and Mark) will distribute some information on trust anchors in the context of dynamic network configuration in GENI testbed, as well as for general access control.
[AI] (Ken) will circulate some meeting notes from the last TERENA/ REFEDS meetings.
July 27-31, 2009, San Diego, CA
The Concordia Group, which is shifting from Liberty to Kantara, held a full-day meeting. RL "Bob" and Ken attended. Attributes were a strong focus. Export controls also arose, wrt attributes of requesting users.
The Concordia website is in transition, but they do have a list active now.
RL "Bob" is co-shepherding the OSIS group, and they are looking at all 4 prevalent IAM technologies: OpenID, SAML, InfoCard, WS-Federation.
- Tao of Attribute workshop
September 28-29, 2009, Washington DC
There is good representation from NIST. More to come on this as it develops.
The focus will be more on the quality of attributes than on the transport mechanism or LoA of the authn.
- Fall Internet2 Member Meeting
Oct. 5-8, 2009, San Antonio, TX
September 14-16, 2009, Las Vegas NV
This will be adjacent to a Kantara event.
- Jasig Unconference
September 28-30, 2009, Champaign, IL
Tom and Jens will be attending.
It was noted that the recent Rice 1.0 release primarily meets the needs of Kuali Finance, and an upcoming release will focus more on supporting Kuali Student and thus be more fully featured.
- Fall EuroCamp
Date TBD (likely late Fall), Budapest Hungary
This will be similar to Advanced CAMP. There is growing momentum around aligning IAM/security efforts across projects...
October 21-22, 2009, Rome, Italy
* International software development coordination
There was a call today among the key players, focused mainly on COmanage, working to understand the respective roles. Andreas will be joining the effort, and Feide and Sympa may as well. There will be a follow-up call in the near future.
* Leif discussed his mail to the list today about getting a federation-scale RA for a personal grid/email certificate service up
and running. More to come on this as it develops. It is unclear yet as to whether the US or Canada could participate...
* The recent beltway battle - developing privacy detail
There has been some change afoot at key positions in the federal agencies, and there is gathering high-level momentum toward OpenID and low LoA access to some high-profile websites.
There was a recent meeting focused on privacy issues. There were some privacy requirements around IdP submitted by OpenID, which tended to be very targeted. Examples include a consent release mechanism every time a user releases any attributes, which could be challenging.
It was noted that users, when presented with consent or policy info, tend to freeze up if offered options...
To the extent it would be possible to align with EU policies, this might be a productive direction to pursue.
For reference, as discussed on the call:
* Kantara - how much and how to engage
A Kantara rep. attended the meeting referred to above, and is open to working together on a white paper representing an alternative view to the OpenID white paper. Kantara is also interested in inter-federation issues. More to come on this as it develops.
There was a discussion of consent mechanisms, and their appropriate role in various access scenarios -- whether in higher-ed or beyond.