...
Colin added information about the ucentricid.com conference in DC in October, and a recent NSTIC blog on architectural patterns that support the various functions/processes in federated identity, to be discussed at end of call
2.1. Colin to report on draft a clause on the SC27 WG5 Identity Federation clause in 24760-3
The draft is in progress
Particpant Participant keen to add technical controls to definition, such as unauthorised request, request for audience cannot be fulfilled etc.for attack sin the areas of requesting authenticated entity, authentication, authorizing release of attributes etc which may not fit in this particular clause (Identity Federation) but valuable to include somewhere in the standard.
Colin has added the initial draft spec for interop for the sub clause entitled 'interoperability between federations', for comment.
Editors have asked Kantara to take just this Identity Federation clause and work on the practical aspects of it. It is to be submitted by the end of August 2013. It will go to is being worked on in a closed list of members who expressed an interest to participate within Kantara. The editors will then do a total review and put out a proposed next working draft based on these comments and changesothers. ISO will then review it at the next meeting in Korea in October.
...
Ken Dagg had earlier presented Government of Canada paper, shared on the list. Sent 13.5.2013 title "Guideline on Identity Assurance Consultation Draft Apr 25 2013.pdf". Ken asked for more comments in the Identity Assurance guidelines.
Ken Ken is not on today's call.
Short discussion about how equivalent documents don't exist in our jurisdiction some jurisdictions - due to either centralised non-competitive models, or lack of ownership/split of responsibility across government departments.
Postponed Postponed to September call.
2.3 Recent event reports from attendees (eGov aspect)
...
- a report was out on business sustainment models,
- more pilots underway
- report out on the previous pilots
- feeling of the need to encourage more interaction between working groups
- Attendance seemed low - 75-100 in the room - 30 remote? Held right after CIS in Napa Valley. Earlier plenaries had 200 or more.
- Slow moving, definitely a difficult management task - big Identity providers are still lacking
- latest documents http://www.idecosystem.org/filedepot
...
- information sharing network for real-time exchange of cyber-attack data
- Held at Schiphol 25 July 2013 - approx 21 nations represented by a mix of gov, mil, or business
- eGov working group to invite Patrick Curry to report on the current status
- http://www.federatedbusiness.org/mne7
...
http://www.ucentricid.com/
Recently Confirmed - Kantara will participate in the UserCentric ID Live event and is part of the expert advisory committee as well. If your organization would like to take part please contact Joni for more details.
Event Event organised by publisher in cooperation with the Smart Card Alliance.
2.5 Summary on Kantara activities in the July Director's corner
Discussed NSTIC resilent network - There was a presentation of their pilot at the plenary.
...
From blog: "Such an architectural capability has been recognized by Trust Framework Providers such as Kantara Initiative, although it has not yet been incorporated into their certification scheme."
Colin: IAWG is working on it. It's the second item on the their current roadmap.
2.6. Updates on national projects
...
Finland: National ID (Population register) inviting different players to present possible future models for eID infra, both PKI and post-PKI
NZ- Launch of RealMe coming, (officially) last week, link already sent to list. Colin could give another presentation on the architectural pieces that make up the overall service
...