Minutes
Attendees: Keith Wessel, Steven Premeau, Eric Goodman, Derek Eiler, Matthew Economou, Joanne Boomer, Mark Rank, Judith Bush
Reps from other groups: Les LaCroix (CACTI), David St Pierre Bantz
Regrets:
Staff / SME: David Walker
Scribes: Joanne Boomer, Matthew Economou
Notes
- Agenda Bash + request for notable working and advisory group updates
- n/a
- T&I/Operations updates
- n/a
- CTAB
- n/a
- CACTI
- No public agenda for 2023-12-06 meeting
- Wallets report still in draft, to be submitted to CACTI tomorrow
- Federation Testing
- Editing the federation standards and practices reference work and plan to release the final draft next week; will send it out to interested parties for review.
- Will draft a charter for the next iteration of the Federation Testing Working Group, expanding on the proposed 2024 TAC work plan
- Matthew Economou and Albert Wu need to meet and capture the test federation goals and objectives
- SIRTFI Testing
- Nice job! Good show!
- Completed a couple weeks ago, 16 institutions participated
- Mixed results on finding Security contacts on metadata
- Cirrus is revising guidance on clients’ organizational contact info to publish their own contacts rather than Cirrus contacts
- Accomplishments Report wrap-up
- Removing reference to 2022 SP Middlethings
- 2023 TAC Accomplishments Report
- Resolve any comments - comments primarily grammar, fixing References
- Discuss any other comments
- Group agrees to approve document as finalized to be published and get in front of steering.
- (Remainder) Open agenda and other work plan thoughts
- Addition to Deployment or Implementation Profile (Kantara)
- There is not an active working group that could take this on
- How is the larger IT community acting/reacting?
- How could this be evangelized beyond R&E?
- In terms of scope, there's more than just SAML involved here. What about recommendations to users of the InCommon certificate service, eduroam, etc.?
- If TAC takes something on next year, maybe focus on practical scope and immediate needs as this could be a long and drawn out set of changes.
- Possible collaboration with IDPro? That could be an avenue through which we could build a community of concerned practitioners.
- Might be an end goal from the Government side, required to meet certain cryptographic minimums driven by NIST, cf. Keylength - NIST Report on Cryptographic Key Length and Cryptoperiod (2020).
- David will add to the Work Plan list
- Other items on the work plan that have interest from the Federation Testing side, i.e. SAML2Int, proxy
- Next year consider addressing Quantum-resistant cryptography
- Federation Change Management and Protocol Change Management problem
- Federation Testing
Next Meeting @ December 14, 2023