**MACE Call 30-August-2010**

 

**Attending**

RL "Bob" Morgan, U. Washington (chair)

Ken Klingenstein, Internet2

Keith Hazelton, U. Wisc. - Madison

Scott Cantor, The Ohio State U.

Michael Gettes, independent

Steven Carmody, Brown U.

Leif Johansson, SUNET/NORDUnet

Renee Frost, Internet2

David Wasley, independent

Jens Haeusser, University of British Columbia, CAF

Ann West, Internet2

Nate Klingenstein, Internet2

Neal McBurnett, Internet2

Steve Olshansky, Internet2 (scribe)

 

NEXT CALL: 13-September-2010

 

*New Action Items**

[AI] (Keith) will initiate a discussion of future work in attributes was proposed on the list, as a runup to the next themed MACE call 13-Sep.

 

*Carryover Action Items*

[AI] (Scott) will send a note to MACE about potentially spinning up a new working group to address his AdvanceCAMP AI: Write Developers Guide to Federating Applications.

[AI] (All) if interested in supporting MoonShot activities, send mail to Ken and subscribe to appropriate lists TBD. There may be some funding available to support travel, e.g. to IETF meetings...

[AI] (Ken) will distribute a draft requirements framework for VO support engagement

[AI] (David) will contact GSA for an update on the approval process for InCommon Silver.

[AI] (ReneeS) will revisit the list of potential new MACE members on the list.

[AI] (All) Send input to Ken about how the InCommon cert service ought to be packaged - i.e. amendment to existing InCommon contract, or other.

[AI] (Ken) will revise the mission statement based upon feedback received on the call.

[AI] (Ken) will send out info on DHS secure online transactions

[AI] (Ken) will follow up on a MACE/AMSAC call.

[AI] (Ken) will follow up with Kuali/Rice about I2MI collaboration.

[AI] (Ken) will draft a catalyst doc, covering the key items to be addressed in advising VOs how to use our infrastructure.

[AI] (Leif) will contact Ken/Steven/Tom about potential overlaps between the SDCI proposal and projects in the EU.

[AI] (Leif) will discuss the IDTrust meeting on the PKNG list, seeking feedback.

[AI] (Jens) will speak to an Eduroam rep about communicating with Educause.

[AI] (Ken) will draft and circulate a letter to Rice leadership, requesting input to roadmaps and use cases, and to ensure our projects with Kuali projects are aligned with their high-level strategic direction.

[AI] (Nate) will distribute information to the list about upcoming tactical issues facing MACE

[AI] (All) send Bamboo IAM comments to Tom ASAP for coordination.

[AI] (All) interested in participating in the international collaboration activity contact RL "Bob."

[AI] (RL "Bob") will contact a representative of Kuali Rice about coordinating a call.

[AI] (Ken and Mark) will distribute some information on trust anchors in the context of dynamic network configuration in GENI testbed, as well as for general access control.

[AI] (Ken) will circulate some meeting notes from the last TERENA/ REFEDS meetings.

 

**Discussion**

 

1. Meetings

- recent -

- Campus Bridging Technologies Workshop - Focus: Campus Bridging Software and Software Service Issues, August 26-27, 2010, Denver, CO

http://campusbridging.iu-pti.org/

 

 

- upcoming -

 

- TF-EMC2, September 22, 2010, Copenhagen, Denmark

http://www.terena.org/activities/tf-emc2/meetings/16/

 

Ken will be attending. Much of the agenda will be devoted to domestication-related issues. TF-Mobility and a group discussing MLS are also scheduled.

 

- gov2.0, September 7-8, 2010, Washington DC

http://www.gov2summit.com/gov2010

 

This is invitation-only, MACE participation TBD.

 

- IIW, Sep. 9-10, 2010, Washington DC

http://iiw.idcommons.net/Iiw-east-1

 

David will be attending. There will also be a meeting Wed 8-Sep with OIX and Kantara, looking at library use of federated identity.

 

- OASIS IdM, September 27-28, 2010, Washington DC

http://events.oasis-open.org/home/IDM/2010

 

If the SPML group is going to meet F2F there would be value in participation by someone from I2MI.

 

- Educause Annual, October 12-15, Anaheim, CA

http://www.educause.edu/E2010

 

There will be a number of federation-related sessions, including InC-Student talking about identity proofing. There is also a CIO track which will likely cover federated IdM.

 

- REFEDs/I2FMM, October 31- November 4, 2010, Atlanta, GA

http://events.internet2.edu/2010/fall-mm/

 

The REFEDs meeting, on the Sunday before the I2MM, will be the first held outside of the EU.

 

- Federated CI Workshop, November 4-5, 2010, Arlington VA

(After the Fall Internet2 Member Meeting)

This will be focused on federated identity strategies among the science community. Speakers and participants are being sought.

 

- InCommon DayCAMP, November 4, 2010, Arlington VA

(After the Fall Internet2 Member Meeting)

For campuses new to federation...

 

- Symposium on Authentication Technologies for Research and Education

Oct. 4, 2010, Lubbock TX

http://indico.rnp.br/conferenceDisplay.py?confId=85

co-sponsored by the International Grid Trust Federation and the Open Grid Forum.

 

- CAMP/ACAMP 2011

 

There is a proposal to co-locate ACAMP 2011, as a follow-on to past ACAMPs, with the Jasig annual meeting, perhaps in Denver in May. More to come on this as it develops.

 

The question arose as to the overlap between CAMP and ACAMP attendees, and it seems that there is relatively little overlap both in attendees and expectations.

 

There is consideration being given to model the next CAMP after the last InCommon CAMP. There was also discussion as to whether schools that might be the target market for InCommon CAMP are the sort which would be inclined to sent staff to national meetings.

 

2. MLS

RLBob: "MLS is Multiple-Listing Service, ...an independent identity federation service that supports registration of SPs that are (or may be) of interest to multiple existing federations. If those existing federations subscribe to the MLS in some to-be-defined fashion, those SPs would only have to register once with MLS rather than with each federation. This concept raises interesting issues in technical, business, and policy realms."

 

There is a small group spinning up to address this, including representatives from InCommon and WAYF.dk.

 

Use cases, metadata, and workflows are issues on the table...

 

3. The status of Apps-BP and health of MACE-Dir

Given that several recent calls have been canceled, discussion arose as to whether there could or should be a change of direction. Attributes for VOs and attribute assurance arose as potential areas of focus, as well as permissions and roles. It was noted that a lot of the work around these areas has gone international, and if we want to reinvigorate MACE-Dir thought ought to be given about how to draw a more international audience. E.g. at a minimum the call time could be earlier in the day EDT to make it more amenable to EU participants.

 

It was observed that eduPerson was developed by MACE-Dir not in response to demand, but because of a perceived problem in need of a solution. This might be instructive (or not) in the current environment in which federation participants are unwilling or unable to wait for new standardized attributes to be defined, v. working with their partners on an expedient solution.

 

It was proposed that this be the topic of the themed call 13-September, as well as continuing this conversation on the list.

 

- Status of TeraGrid, Kuali, etc.

There are proposals for a next generation of TeraGrid. More to come on this as it develops. Their usage models appears to have changed considerably, away from large scale distributed HPC.

 

Kuali Student is facing some challenges related to delivery delays on key functionality. There have been some positive changes in the last few months which should help to move things forward at a more rapid pace.

 

4. SSH discussion

There is interest in spinning up a federated SSH working group, e.g. provisioning and passing SSH keys in SAML attributes. Stay tuned for more on this.

 

It has been observed that MoonShot will likely be tackling this, as it is clearly in their scope, but it is not clear how extensive the overlap is and how soon they may get to it. It appears that other efforts may also be tackling related topics.

 

Serving the needs of the 4 VOs being served by the SDCI grant is a high priority...

 

5. I2/InCommon Update

The InCommon cert service is moving forward.

 

There will be an Internet2 strategic retreat for senior staff soon. More to come...

 

6. SDCI Bedrock update

The award is now officially funded, and discussions are underway with all 4 key VOs. The proposal overview and an authn/z self-assessment tool is available at https://spaces.internet2.edu/display/COmanage/Bedrock

 

7. Topic for themed call on Mon Sep. 13

Continuing the discussion of future work in attributes was proposed.

 

[AI] (Keith) will initiate a discussion of future work in attributes was proposed on the list, as a runup to the next themed MACE call 13-Sep.