Versions Compared

Old Version 5

changes.mady.by.user Former user

Saved on

compared with

New Version 6

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Ken thanked ID.me for sponsoring the work to develop 63C SAC. He said that the sub-group work would take about 8 weeks before until the end of April. Afterwards the 63C SAC draft enters the Kantara approval processeswill be subject to Kantara's approval processes, which would take 2 months. Thus, the plan is to get the document approved at the beginning of July 2020. 
  • Richard walked the participants through 63C_SAC draft v0.1.0 KIAF-1450 SP 800-63C Service Assessment Criteria v0.1.0.xlsx
  • Martin asked the meaning of the Column headings and the difference between Fed ID and FAcolumn heading called "Fed IdP". Richard clarified that "Fed IdP" is meant to be the means Federal IdP (US Federal Agencies and "FA" is Authority Federation)
  • In relation to Federation Authority, FA, Richard remarked that according to the talk discussion he had with NIST colleagues, FA is the entity responsible meet the requirements and who determines what the Federation participants should comply withfor a) defining the requirements which should be common to all participants within the Federation; b) determining that participants in the Federation meet the requirements. Furthermore, there is a criterion that stipulates that the FA must produce a Federation Agreement, which establishes defines what the participants in the Federation should do . Moreover, it and which should include policy, terms and conditions, among other items. He added that this requirements is beyond not on the NIST guidelines. SATO supported the idea that the FA is a single party that set the rules and that the governance of the Federation should be specified and defined. 
  • Richard said that a possible requirement for the Federation could be that he the entity must be Kantara approved, but it it will be up to the Federation to determine this
  • Rows 
  • Richard clarified that the 63C NIST guidelines if for US Federal Agencies.
  • It was said that Proxy is the same as broker but NIST avoided the latter as it may have other implications. 
  • Ruth pointed out that the materials and relevant information are sent to the sub-group mailing list sg-63c-sac@kantarainitiative.org
  • Next Meeting: March 11th. 

...