Versions Compared

Old Version 1

changes.mady.by.user Dean Woodbeck (internet2.edu)

Saved on

compared with

New Version Current

changes.mady.by.user Dean Woodbeck (internet2.edu)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

InCommon Technical Advisory Committee Meeting Minutes

March 5, 2015

TAC Meeting 2015-03-05

Thursday, March 5, 2015
1:00pm ET | 12:00pm CT | 11:00am MT | 10:00am PT

Dial-in Information

+1-734-615-7474 (preferred) (use this number unless you pay for long distance)
+1-866-411-0013 (US and Canada) (use this number if you pay for long distance)

Access Code: 0139713#

eDial: http://edial.internet2.edu/call/0139713

SIP: sip:session_0139713@edial.internet2.edu

If you are on a phone lacking a mute button, you can mute your phone via eDial by pressing ##1. To unmute, press ##1 again.

Agenda

  1. Please review carryover action items
    1. See this marked up list of action items
  2. New TLS vulnerability: FREAK
    1. https://freakattack.com/
    2. https://www.smacktls.com/#freak
  3. Last call for comments: Using Other Software
    1. Summary of community feedback sent to the participants list on 2015-02-25
    2. Draft final report to be sent to the participants list on 2015-03-09
  4. Add a comment to this wiki page: REFEDS R&S Migration Strategy
  5. Reports from existing working groups:
    1. Draft Recommendations from the New Entities WG (JimJ)
  6. InCommon Projects & Priorities (Ann)
  7. (your agenda item here)

Possible Agenda Items for March 19

  1. URNs vs URLs (Keith)
  2. Reports from existing working groups:
    1. Report from IdP of Last Resort WG (Keith)
  3. New working groups:
    1. Draft Charter for the Metadata Distribution WG (hold)
    2. Draft Charter for the Best Practices WG

Informational Items

  1. IAM Online, Weds, March 11, 2015 at 2 pm ET
    1. Shib v.3 and conversation about baseline practices - Scott Cantor, Marvin Addison, Tom Barton
  2. Planned webinar for March 25 (2 pm ET)
    1. originally planned to present the TAC work plan, this will become a webinar about InCommon plans and priorities, involving TAC, Steering, AAC, and staff
  3. Research & Scholarship activity since February 19, 2015
    • New IdPs that support R&S
      • None
    • New SPs that applied for R&S
    • Existing R&S SPs that applied for REFEDS R&S
  4. All but one R&S SP (GPN/UM Dropoff Services) meets the requirements of REFEDS R&S.
  5. (your info item here)

Carryover Action Items

  1. Steve Carmody will draft a wiki page outlining the steps involved in creating a category
  2. John will discuss with TAC how the Google OpenID Gateway might be operated and/or funded
  3. TAC will develop a recommendation for the potential necessary resources for eduGAIN implementation.
  4. John and Steven will review the Phase 2 Recommendations and propose to TAC a list of items that need to be addressed as a result of accepting the Recommendations
  5. John Krienke will distribute a list of outcomes related to the MD-Distribution recommendations
  6. John Krienke will implement a policy review regarding whether SP registration of keys could be made optional.
  7. Steve Carmody and John Krienke - Take to Steering for a policy discussion the issue of maintaining/guaranteeing the strength of the trust fabric through proactive scanning and probing of entities on behalf of the federation and its participants.
  8. Scott Cantor will continue to push discussion of the Affiliation-Based Access category and a library services category (proposed by SWITCH) and represent the TAC’s support for both.
  9. Ann West will bring up with the InC-Student working group the issue of R&S attribute release and its relationship (or not) to students who invoke the FERPA opt-out.
  10. Tom Scavo and Tom Barton will work on making available to campuses the InCommon scripts used to identify SP’s with endpoints that are not compatible with SHA-2.
  11. TAC members will review the original strategic priorities document and propose priorities for the rest of 2014.
  12. Tom Barton, Chris Misra, and Nick Roy (should he accept), and one or two members of Assurance Advisory Committee (AAC) (should they accept) will develop a list of first steps that InCommon might take vis a vis future security issues like Heartbleed.
  13. Steve Carmody will contact Nick Roy and the AAC leadership about participating in the Heartbleed group.
  14. Steve Carmody will initiate the process of developing a working group to deal with the larger gateway and interfederation issues.
  15. Steve Carmody will compare the priorities spreadsheet discussed today with the original TAC document on InCommon strategic priorities and call out major differences
  16. Scott, David, and TomB will reformulate the text in section 7.2 of the FOPP. The group will also look at the text in section 9 in light of the Google Gateway and eduGAIN but that may be deemed out of scope initially.
  17. Ann will keep TAC in the loop with respect to the Steering group working on eduGAIN policy issues.
  18. InCommon staff will go back to the drawing board and discuss possible paths forward with respect to REFEDS R&S and eduGAIN.
  19. Steve C. will send a note to Nicole Harris asking that she accept proposed changes through the end of August.
  20. John K. will ask Comodo about moving to support SHA2 in the other CAs, specifically to meet a Microsoft deadline of January 2016.
  21. Tom Scavo and Steve Carmody will clarify the REFEDS R&S definition.
  22. Steven Carmody and Keith Hazelton (and whomever else wishes to) will edit these for clarification and to send to Steering Program subcommittee.
  23. Prior to the break, Steve Carmody will develop a scope of work for an “eduGAIN punch list”
  24. Steve Carmody will communicate the Alternative IdP Working Group final report and recommendations to Steering.
  25. Steve, Ann, Dean and Michael will draft a proposal to address TAC member responsibilities, TAC transparency, and related processes.
  26. Steve Carmody will send email looking for a chair for the MD Distribution WG

  27. Ann will talk to Jacob Farmer about participating in developing the charter for the Baseline Practices WG.

  28. Steve Carmody will send email to TAC with information about the proposed Baseline Practices WG.

...

Attending: Tom Barton, Scott Cantor, David Walker, Ian Young, Jim Jokl, Nick Roy, Jim Basney,

With: Tom Scavo, Dean Woodbeck, Steve Zoppi, Ann West, IJ Kim, Nate Klingenstein

New TLS Vulnerability

https://freakattack.com/
https://www.smacktls.com/#freak

There was discussion about the new TLS vulnerability “FREAK” that has been commented on this week and whether InCommon operations should probe whether any SPs export ciphers in the TLS handshake. The consensus was that we should inform the community prior to doing such a scan and outline the benefits. This will be considered by the proposed best practice working group.

2015 Projects and Priorities

A small group has been meeting to sort through proposed priorities and develop some programmatic concepts and themes. Ann anticipates presenting a draft to the Steering Program Subcommittee on March 9.

“Using Other Software” wiki page

Tom Scavo reported that the page has been edited after discussion on the participants list concerning the calling out of Active Directory. Tom will follow up with the participants list.
https://spaces.at.internet2.edu/display/InCFederation/Using+Other+Software

REFEDS R&S Migration Strategy

Tom Scavo asked for comments on the wiki page he has developed concerning InCommon’s strategy for migrating to the REFEDS R&S category.
https://spaces.at.internet2.edu/display/inctac/REFEDS+RandS+Migration+Strategy

New Entities recommendations

https://spaces.at.internet2.edu/display/NewEntities/Recommendations

...

  • Metadata distribution is orthogonal to the source of content
  • We need to recognize an increasing variety of producers of entities distributed through the metadata
  • For different kinds of use cases, we need ways for metadata consumers to distinguish the types of metadata coming through the distribution channel (eduGAIN, Quilt, K-12, a single university, etc)

Next Meeting - March 19, 2015 – 1 pm ET