Versions Compared

Old Version 5

changes.mady.by.user Former user

Saved on

compared with

New Version Current

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migration of unmigrated content due to installation of a new plugin

...

  • Day: Thursday, 13 May 2010
  • Time: 9:00am-10:30am PST | 12:00-1:30pm EST | 16:00-17:30 UTC (time chart)
  • Dial-In:
    • Skype: +9900827042954214
    • US: +1-201-793-9022 | Room Code: 295-4214 (other local country numbers available on request)

Agenda

  • Administrative
    • Roll call
    • Note: No telecon May 20 due to IIW/OAuth meeting
    • Nominations for vice-chair and spec editor are open
    • Approve minutes of 2010-04-22 and 2010-04-29 meetings
    • Action item review
    • Set up UMA chat room?
  • EIC workshop report
  • Review IIW-week plans
  • Discuss protocol issues
    • Any SMART project showstoppers
    • Christian's issues sent to the list
    • UX and interop for Step 2
    • Claims 2.0
    • Any others
  • Report from legal subteam on progress and next steps
  • AOB

...

  • Tom Holodnik
  • Thomas Hardjono
  • Lukasz Moren
  • Paul Bryan

    Minutes

New AI summary

2010-05-13-1

Eve

Open

Incorporate Tom's TaxMonkey scenario into the Scenarios document.

 

2010-05-13-2

Eve

Open

Print the IEEE S&P poster in smaller form for distribution at IIW.

 

2010-05-13-3

Christian

Open

Spec out a "requester metadata" flow.

 

Roll call

Quorum achieved.

  • Note: No telecon May 20 due to IIW/OAuth meeting

...

We'll leave nominations open until our next telecon (May 27). Please feel free to send nominations to Eve or to the Kantara staff@ alias.

Approve minutes of 2010-04-22 and 2010-04-29 meetings

Minutes of 2010-04-22 and 2010-04-29 meetings APPROVED.

Action item review

  • 2009-12-03-4 Eve Open Add terms-negotiation scenarios to Scenarios document.
  • 2010-03-10-2 Maciej Open Do next round of spec editing. We'll target spec edits to catch up to implementations by the demonstration timeframe. Eve and Maciej will coordinate on this.
  • 2010-03-10-6 Joe Open Revise the protected inbox scenario for next week's call.
  • 2010-03-25-1 Paul/TomH Open Send email giving examples of how a resource-oriented scope approach is necessary. Now "overcome by events".
  • 2010-04-08-2 TomH Open Revise the tax scenario for inclusion in the Scenarios document. Let's consider this closed because he sent email on it.
  • 2010-04-29-1 Domenico? Open Revise Claims 2.0 and SAAC specs To be done by May 6. Consider this closed; Domenico will send his proposal to the list.

...

So the fact that OAuth V2.0 has no flow that allows there to be no client_id on first approach is something we're having to work around in UMA. Hey, it should it be called the "anonymous client" flow!

Claims 2.0

Domenico will mail out his proposal. The essential/hardest "identity token" thing we have to try and solve is something like this: If GMail signed a claim saying the requesting party is bob@gmail.com, we're likely to believe that they really authenticated him. But what's harder is to ensure that the bearer of this claim didn't mess with/steal it, and it's really still Bob on the other end. (This is what made SAML assertions so hard for SSO. (smile) ) Let's discuss the proposal in email.

...