Versions Compared

Old Version 2

changes.mady.by.user Former user

Saved on

compared with

New Version Current

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Kantara Initiative Identity Assurance WG Teleconference

...

  1. Administration:
    1. Roll Call
    2. Agenda Confirmation
    3. Minutes Approval: 
      1. DRAFT IAWG Meeting Minutes 2017-04-13
      2. DRAFT IAWG Meeting Minutes 2017-04-06
      3. DRAFT IAWG Meeting Minutes 2017-03-30
      4. DRAFT IAWG Meeting Minutes 2017-03-23
    4. Action Item Review: action item list
    5. Organization Updates - Director's Corner
    6. Staff reports and updates
    7. LC reports and updates
    8. Call for Tweet-worthy items to feed (@KantaraNews or #kantara)
  2. Discussion
    1. Gather comments on the Revised Draft of the parent document for Special Publication 800-63-3 (attached).
  3. AOB

 Attendees

Link to IAWG Roster

...

  • Ruth Puente
  • Colin Wallis

Apologies

  • None

 

...

...

  • Ken Dagg (C)
  • Andrew Hughes
  • Scott Shorter (VC)
  • Denny Prvu (S)
  • Paul Caskey
  • Adam Madlin
  • Richard Wilsher
  • Lee Aber
Info
titleSelected Non-Voting members for Cut/Paste
  • Bill Braithwaite
  • Rich Furr
  • Devin Kusek
  • Björn Sjöholm
  • Susan Schreiner
  • Jeff Stollman

 

Notes & Minutes

Administration 

...

Action Item Review

  •  

Staff Updates

Director's Corner (Link)
  •  2017: March director's corner
  • Harmonization of identity and privacy a big topic at the Hamilton SC27 meeting  - NIST, gov.uk, Canada Gov TBS and the Province of Alberta.  Looking for a forum for such a thing, where such a thing might be standardized. They are canvassing other standards group as well as potential working partners.  Colin made an offer to NIST to open up a working group and host the conversation.
  • ISO 29003 - identity proofing, has failed in the bid for DIS ballot - has been turned into a technical specification. It will probably come around again as an IS (international standard) proposed at a future stage after restructuring.
  • ISO 29115 - some national bodies have attempted to weaken the controls to match their national body requirements, that vote has failed. 29115 remains as it was, although there's expected to be a revision and study period.

...

Andrew observes that for CSPs, the Assurance Level is a shorthand for a bundle of controls. For RP, Assurance Level is a business impact assessment that results in a risk impact tolerance for the service in question. (not really a comment on 6303)

General observation that due to Kantara's focus on CSP's, there do not seem to be a lot of direct comments to be made on this particular draft.

...

Ken reiterates that the assurance levels should be able to include more levels, see also comments on the 800-63A.

AOB

Attachments

 

 



Next Meeting

  • Date: Thursday, 2017-04-27
  • Time: 12:00 PT | 15:00 ET

...