MACE-Dir WG call - June 18, 2007

MACE-Dir WG call
June 18, 2007

*Participants*
Keith Hazelton, U. Wisconsin-Madison (chair)
Rob Banz, UMBC
R.L. “Bob” Morgan, U. Washington
Brendan, USC
Will Norris, USC
Tom Barton, U. Chicago
Michael Gettes, Internet2
Steve Olshansky, Internet2
Jessica Bibbee, Internet2 (scribe)

New *Action Items*
[AI] {Scott} will revise the pilot proposal to add an entry for attribute definition space.
[AI] {Steve} will edit the attribute definition to add an entry for eduCourseMember and share the URL with the list.
[AI] {Keith} will send a note to the shibboleth-users and MACE-Dir mailing list once {Scott} has revised his proposal.
[AI] {Keith} will forward an email from {Licia Florio} about coordinating NRENs and GRIDs.
[AI] {Tom} will speak to {Leif Johansson} at CAMP about ongoing activities regarding participation in the NREN/GRID space.
[AI] The Group will continue discussion around groupDisplayName on the 2-Jul-07 WG call, after CAMP.

Carry-over *Action Items*
[AI] {Scott} will revise his proposal on MACE-Dir attribute profiles for SAML from 22-Apr and submit a new working draft. (4-Jun-07)
[AI] {Keith} will post an item about the IMS Enterprise Services 2.0 charter to the list for feedback, regarding eduCourse attributes. (4-Jun-07)
[AI] {Keith} will model (BPMN) common lifecycle of groups, life stages of groups, grace periods, etc., soliciting ideas from the MACE-Dir list. (7-May-07)
[AI] {Brendan} will review archives related to eduAccount and search for interested folks, eventually arranging a call focused on formulating the right questions to target a solution. (26-Mar-07)
[AI] {Keith} will draft a document covering registered MACE entitlement values. (11-Sep-06)

Future *Agenda Topic*
- Decision on revising MACE-Dir defined attribute profile for SAML (18-Jun-07)
* Mikael Linden, who knows about the only production uses of eduCourseMember in a Shibbed
- c (country) attribute (c.f Tom Scavo’s email, 22-Jan-07)
- Coordinating IdP practices around changes in Attribute Release Policy.

*Agenda*
1. Environment does not see a problem with Scott's proposal. See excerpt from Mikael's email below agenda.
* Background: See Scott Cantor's email of 22-Apr: "Scoped attribute and naming compatibility" and the discussion under the last heading ("MACE I2MI attribute profiles for SAML") in notes from the MACE-Dir Working Group at the Internet2 Member Meeting:
< https://spaces.internet2.edu/display/macedir/MACE-Dir+Bof+Notes >
2. FYI: Potential SCHAC and Grid and MACE-Dir work on attributes for Grids, C.f. email from Licia [0]
3. Moving forward on proposal from member on Group Display

*Discussion*

{Keith} recommended postponing the decision on revising MACE-Dir defined attribute profile for SAML until {Scott} could join the discussion. This item will be added to the next Working Group call agenda.

-FYI: Potential SCHAC and Grid and MACE-Dir work on attributes for Grids, C.f. email from Licia [0]-
{Keith} summarized a proposal that would allow for interoperability in how education attributes are defined in SAML statements for non-Shibboleth and also ADFS. The Group was interested in having {Scott} work on revising the pilot proposal. There are several questions that could be more clearly defined regarding the MACE-Directory space. Also, the document could distinguish between someone using Shibboleth v1.3 (use X), and someone using ADFS (use Y) – rather than writing a blanketed approach for all.

[AI] {Scott} will revise the pilot proposal to add an entry for attribute definition space.
[AI] {Steve} will edit the attribute definition to add an entry for eduCourseMember and share the URL with the list.
[AI] {Keith} will send a note to the shibboleth-users and MACE-Dir mailing list once {Scott} has revised his proposal.

[AI] {Keith} will forward an email from {Licia Florio} about coordinating NRENs and GRIDs.

{Bob} mentioned a presentation at the TF-EMC2 meeting in March, which proposed a different way of passing attributes, by passing the Shibboleth Identity Provider type attributes into a VOM repository. The work focused on attribute-passing machinery, not semantics.

{Tom} mentioned work getting underway in TeraGrid and InCommon. Other regional grids are also encountering the need to tackle attribute requirements. He mentioned Texas and California as having federations that have begun to address attributes and semantics.

There is work that MACE-Dir can participate in, but others should first figure out which relying parties they think are needed; this will be an iterative process. Once it is known what is needed, the infrastructure an data structure can be examined – and this is where MACE-Dir would have a role. [AI] {Tom} will speak to {Leif Johansson} at CAMP about ongoing activities regarding participation in the NREN/GRID space.

-Moving forward on proposal from member on Group Display-
{Michael} sent a proposal around groupDisplayName to the mailing list (c.f. email, subject:eduMember, 5-Jun-07), which received some pushback. He wanted to clarify whether the pushback was pondering vs. concern. {Tom} said that he and {Bob} thought the proposal was not the right next step but would be better at a later time. He pointed out that the Advanced CAMP would be discussing more than groups, bur requires, interfaces, and behaviors including group behavior. Given the lack of practice out there regarding a need for group display names, he said it may be wise to approach it with a more formal survey.

{Michael} said that part of the problem is that those creating group names were not doing so in accordance with Grouper naming, as Grouper is not in use at their institution. This, however, does not imply that there is not a desire/need for it. His concern is that this proposal for groupDisplayName could be wrapped into a longer-term, if better approached, course of action. He stressed that the Group should not lose site of its important, lest it be left behind.

{Keith} asked whether they should consider doing it in a local object class or as a test between two sites. [AI] The Group will continue discussion around groupDisplayName on the 2-Jul-07 WG call, after CAMP.

The next MACE-Dir Working Group call will be held on Monday, July 2, 2007 at 4:30pm EDT.

“””””””””””””””””””””””””””””””””””””””””””””””””””””””””””””””
[0] C.f. email from Licia Florio to SCHAC list on 14-Jun-07, subject: [schac] Possibility of cooperation with Grid

Dear SCHACers,

During the last NRENs and Grid meeting in Paris (11-12 June) we discussed how NRENs can better support Grid applications. One of the things that came out during the meeting was how attributes are handled in the two different communities (the NRENs and the Grids).

We thought that it would be a good idea during the next meeting to bring together people from SCHAC and possibly people from VOMS and have a more detailed discussion on this topic.

Just for your information the next NRENs and Grid will take place sometime in November.

Cheers,
Licia