MACE Conference Call, May 5, 2003

*MACE Conference Call*
May 5, 2003

*Attendees*

Bob Morgan (chair) - Washington
Renee Frost - Michigan/Internet2
Paul Hill - MIT
Michael Gettes - Duke
Steve Worona - EDUCAUSE
Steven Carmody - Brown
Jim Jokl - Virginia
Scott Cantor - OSU
Steve Olshansky - Internet2
Neal McBurnett - Internet2
Ken Klingenstein - Colorado/Internet2
Keith Hazelton - Wisconsin
Diego Lopez - RedIRIS
Mark Poepping - CMU
Ben Chinowsky (scribe) - Internet2

*Discussion*

NMI-R3 has been released; see http://www.nsf-middleware.org/NMIR3/.

Planning for Base CAMP (now known just as CAMP) and Advanced CAMP is entering the final stages:
- CAMP - June 3-6 - Boulder, Colorado - http://www.educause.edu/conference/nmi/camp032/
- Advanced CAMP - July 8-11 - Boulder, Colorado - http://www.educause.edu/conference/nmi/camp033/
Advanced CAMP will focus on authZ. CAMP will focus on authN, including WebISO and Bob Brentrup's update on Dartmouth's PKI deployment. Kevin at NSF is working to ensure good representation from the Grid community at both CAMPs.

The group discussed federation planning. As it's clear that InCommon will not be the only federation, a consensus has emerged to more clearly distinguish Shibboleth from InCommon, and to set up a central collection point for metadata from Shibboleth-using federations. There will likely be three federations:
- InCommon, intended for production service, with the bar for membership set fairly high,
- a pilot federation, intended for testing new software versions and bringing in new sites, with the bar set lower, and
- an experimental federation ("Club Roadkill") that anyone can join.
Steven suggested that the functions of the pilot federation and "Club Roadkill" are similar enough that the two could be combined. Bob expressed concern that InCommon not "recede endlessly" into the future as details continue to be discussed. [AI] Steven and Nate will make a list of the data to be gathered by InCommon, evaluate whether "metadata management" and "trust management" are the right buckets to sort this data into, and sort the data accordingly. Ken is drafting a FAQ for people joining the pilot federation.

Ken noted that Internet2 is now in touch with PingID (http://www.pingid.com), which is working to deploy the Liberty Alliance protocols. PingID has developed federation services somewhat like those Internet2 is considering for Shibboleth, as well as working on authentication. PingID is interested in working closely with Internet2; the two organizations share a similar emphasis on deployment.

Bob noted that Microsoft is interested in having Passport be an additional authN mechanism for Shibboleth. Michael suggested that using WebAuth (Duke's WebISO solution) might be a good way to address the three-tier problem, making the problems of integration with uPortal more tractable.

TERENA Networking Conference 2003 is May 19-22 in Zagreb, Croatia; see http://www.terena.nl/conferences/tnc2003/. Federations, authentication, and directories will all be discussed. Keith is working to set up a discussion of internationalizing eduPerson, aiming to come out of the conference with a go/no-go decision on this. Bob noted that the Amsterdam authN/Z conversations are ongoing, and parallel WebISO/Shibboleth discussions. Only partial minutes are available from Amsterdam; nevertheless [AI] Bob will forward minutes of the Amsterdam TERENA meeting to MACE.

Neal gave a short overview of the April 28-29 2nd Annual PKI Research Workshop. Papers are at http://middleware.internet2.edu/pki03/PKI03-proceedings.html; presentations are being added as they are received, and panel summaries and an overview are in the works.

Ken noted that he's pursuing some new contacts within the Federal Government. [AI] Bob will put a discussion of how to continue to grow the resource base for Internet2 middleware on the agenda for the next MACE call. That call will take place in four weeks, rather than the usual two, as many MACEers will be in Zagreb in two weeks.

*Action Items*

[AI] Steven and Nate will make a list of the data to be gathered by InCommon, evaluate whether "metadata management" and "trust management" are the right buckets to sort this data into, and sort the data accordingly.
[AI] Bob will forward minutes of the Amsterdam TERENA meeting to MACE.
[AI] Bob will put a discussion of how to continue to grow the resource base for Internet2 middleware on the agenda for the next MACE call.