Untitled Document

Technical Activities Group Meeting Minutes
HEPKI-TAG Call

June 2, 2004
Attendees

* Jeff Schiller, MIT
* Jim Jokl, U. Virginia
* Nathan Faut, EDUCAUSE
* Barry Ribbeck, UT-HSCH
* Eric Norman, U Wisconsin
* Steve Worona, EDUCAUSE
* Jeanette Fielden, Internet2
* Renee Frost, Internet2
* Nick Lewis, Internet2
* Neal McBurnett, Internet2

Discussion
Update to section 1.6 PKI-lite with new language

The new paragraph reads: the PKI lite framework is designed to be operated by a central campus computing organization that manages users identity accounts on behalf of the institution. Thus a PKI-lite CA should not normally issue authority certificates to a department CA. IF the central organization chooses to issue certs to departmental CA’s, the central organization must require that these departments operate their CA at the same operational level of security and user identity verification as the central organization.

The new paragraph was accepted.
Eudora support for S/MIME

One question is who will send the letter to Qualcomm urging S/MIME support? It would be beneficial if people would sign and include their institution names to show support. Getting support from CSG and OASIS would be good as well. Steve will check on how EDUCASUE supports such endeavors. From the Internet2 side the MACE group is the most appropriate to approach for endorsement.

It was suggested that information about HIPAA compliance and medical professionals using Eudora needing S/MIME to comply with privacy requirements be incorporated into the letter. More direct language about campuses adopting secure e-mail was recommended as well.

The link for the aerospace bridge slides is:
http://middleware.internet2.edu/hepki-tag/talks/tscp-aero-bridge.ppt
The last slide, 37, provides a sense of how they see people operating in the larger PKI sense. Slide 32 talks about metadata registries. It’s an interesting concept since these companies are looking for where they can intersect and share data across their corporate structures and economize in the process.

Barry indicated there was some close work between the UT system and NASA in the areas of telemedicine and space medicine. He was interested to hear that NASA has a large PKI project and was trying to encourage them to apply to NASA for PKI certificates to help drive usage and buy-in.

Neal sent a link about PKIX to the list. PKIX discusses how there is no way to publish a URL to point to a key, and proposed a standard search API for where you would go to search/find a key.

Jim has posted the InCommon root the HEPKI-TAG web site.
Action Items

1. [AI] Jim will send draft of letter to Qualcomm urging S/MIME support for Eudora to the list for review.
2. [AI] Jim will pursue CSG, and Steve will check with EDUCAUSE about support for the Eudora S/MIME letter.
3. [AI] Jim will change the draft version of section 1.6 in the PKI-lite policy to version 1.0 and circulate to the list for final review.