Attending:   Dave Robinson, Jeff Erickson, Marc Wallman, Jim Stewart, Ann West, Chris Misra, Christine Miki, Brad Christ, Rachana Ananthakrishnan, Bernie Gulachek,

Regrets: Kristi Holmes, Jeremy Livingston

With: Elaine Alejo, Kevin Morooney, John Krienke, Sara Jeanes,

Agenda: 

  1. Review and approve changes to the Certificate Practices Statement (vote required, 10 min, Ann and Sara Jeanes)
    1. Followup to the May meeting agenda item on CPS changes
    2. Background slide deck from May meeting
    3. Final version for vote
      1. Redline version
  2. Accreditation changes and changing the Federation Operating Practices and Principles (future vote desired and required, 20+ min, Ann and John Krienke)
    1. https://incommon.org/federation/fopp/
    2. Background slides
    3. The foundation of the InCommon trust model is the Participation Agreement (PA) which identity providers and service providers adhere to and the Federation Operating Practices and Principles (FOPP) which to which InCommon adheres.  Recent changes in how institutions are accredited require that changes to the FOPP be made.  Please review, at minimum, section 4.1.1 "Eligibility to become a participant."
  3. InCommon Futures2 Project Update (Ann, 5 min)
  4. Review of TNC23 (Ann, Kevin, 5 min)
    1. tnc23.geant.org
  5. Starting the hunt for new committee members (Kevin, remaining time)
    1. Terms ending: Laura, Chris, Jeremy, Kristi


Minutes:

To set context, Ann discussed a variety of how our services have changed over the years and how that gets reflected in our policy documents.  These include responding to Department of Education definition updates, community programs that have spun up and down, operational/security updates etc. They are driven by cross-sector, community and operational needs. From time to time, we review our policy documents and ensure they reflect current service offering.

The InCommon Certificate Practices Statement changes that Sara presented on the previous call and updates to the Federation Operating Practices and Policies that John will be presenting this call are examples of these changes. Because Steering is our community policy-making body according to the LLC, we bring these updates to the group for review, ammendment (if necessary) and approval

Certificate Practices Statement: 

Vote was taken to approve the updated InCommon Certificate Practices redline, noted that the date of approval will need to be updated in section 1.2

We approve the following changes in the InCommon Certification Practices Statement (CPS) for the InCommon IGTF Certification Authority:

    •       Provider’s name change from Comodo to Sectigo.
    •       InCommon’s (and Internet2’s) new address.
    •       InCommon’s Certificate Authority name (added version 2).
    •       Certificate registration duties between InCommon and Sectigo to reflect Certificate Authority/Browser (CA/B) Forum rules.

Because these constitute a “material” change, we are also incrementing the object identifier minted into our Interoperable Global Trust Federation (IGTF) SSL certificates. This updated CPS has been reviewed and approved by the Americas Grid Policy Management Authority (TAGPMA) who coordinate with the IGTF.

Vote: All attending were in favor with no opposition. The updated CPS was unanimously approved.

Federation Operating Practices and Principles:

The second item for consideration are proposed changes to the Federation Operation Practices and Policies (FOPP).  More material is forthcoming but for now a link to the current FOPP and a brief explanation were included in the agenda.[https://incommon.org/federation/fopp/]

InCommon is reviewing the FOPP and John provided an update of what we have found so far---we will conduct a full review and vote on a subsequent call.  So far, we will be updating:

    • Address of the office in AA needed to be updated.
    • Removing references of the InCommon Assurance Program that was closed in May 2021.
    • Remove the further risk assessment paper reference. 
    • Updating the accreditation requirements per the US Department of Education changes.

Discussion:

DR- Can K12 use eduroam?

AW - We work with state research and education networks to offer eduroam to K12. InCommon doesn’t offer it directly.  As a side note, we have received a request to extend the certificate service to K12

JK -  InCommon has two  2  higher education participants that are not US accredited. InCommon Steering will be considering next steps for those institutions on a later call.

Futures2 update- Ann

The InCommon Steering Futures2 Working Group chose SecondMuse as our partner in helping to engage the community in the planning exercise.

In June, Kevin and Ann checked the three references SecondMuse provided. All of those interviewed reported very warmly and positively about working with them. Others were positive about their data analysis skills and the diversity on the types of programs they have supported.  All of them would hire SecondMuse again and some have. As part of the conversation, Kevin and Ann asked for lessons learned, which included:  

    • To ensure your stakeholders read it, write a succinct final report.  
    • Process is as important as the outcome.
    • If the community tells you that you’re doing a good job, take it. Validation is still valuable.


Kevin mentioned that he and Mark will present the next phase from the 5 yr roadmap at the Internet2 Board meeting coming up in Aug.

Next Dates with SecondMuse:  July 28th InCommon-internal kickoff meeting and August 7th full Steering Committee Meeting.

TNC - debrief- Ann attended a couple of workshops, overall theme had a slight shift over the last 2 years. GEANT is more GEANT focused. 

Ann takeaways- GEANT (EU) is participating in an all-EU effort to develop user-centric identity using wallet-based approach. This could have some impact on us.  

Coming out of the eduroam Support Organization Program, Internet2 is having conversations with ISPs about offering eduroam on public hot spots. Also under way is moving the brand ownership of eduroam in the US from GEANT to Internet2


Steering Recruitment-  There are  4 members whose term expires this year

Jeremy Livingston 

Chris Misra- has agreed to continue to serve

Kristi Holmes- has agreed to continue to serve

Laura Paglione- end of 2nd term

Kevin asked that we start to think about folks that might be a good fit in the coming years, with a reminder that 13 is the max and 7 is minimum of members



Meeting adjourned


  • No labels