Kantara FIWG Teleconference
Date and Time
- Date: 10, January, 2013
- Time: 13:00 PT |16:00 ET
Attendees
- John Bradley, Ping Identity
- Nate Klingstein, Internet 2
- Scott Cantor, Internet 2
- Rainer Hoerbe, KisMed Austria
- Matt Tebo, Protiviti
- Colin Wallis, Internal Affairs Dept, NZ Government
- Rich Furr, Verizon
Apologies
Agenda
- Administrative - roll call : Minutes from Dec 20 ;Election of Chair (We should have done this in Dec but forgot.)
- FEDLab SAML tests update
- UK Gov Profile
- eGov 2 Profile - Leif & Colin report on conversation with Anil John?
- SAML 2 Int Profile (Profile updates, Wiki page)
- Kantara, OIX and other meta-data aggregator projects.
- Your agenda items
Minutes
1. Administrative - roll call
Summary:
- Quorate call
- Dec 20 Minutes: Moved Rainer, Seconded Nate
- Unanimous agreement to new elections for Officers; Heather to put call for nominations
2. FEDLab SAML tests update - -
- JB suggested RH check with Rainer for the FEDLab test strategy latest update.
- Since the last call RH has discussed JB's issues with Roland H. A conflict of objectives perhaps?
- The current proposal is to structure the test using Python in order to extend use cases and parameterization, and thus not necessary to to configure things intot he test cases.
- JB: Andrews?? has additional requirements - was RH aware?
- RH: Yes, need more than True/False responses when doing SP Authn, but didn't happen. Need to turn off (T/F only?) and exchange fault reporting meta data.
- JB: Need to decide if we want to download a pre-configured IDP vs Joni's notion of a per-configured test harness hosted by Kantara.
- RH: Austria currently run SPs through a set of tests, expecting SPs to download and run. RH can't see how it can be done from a centralized repository.
- JB: OpenIDConnect does both but primarily use the centralized.
- MT: Test SPs now a realistic option over the internet.
- ??: If it is financed by GEANT as an EU project then is it appropriate for KI to run a service and claim some kind of IPR?
- SC: It may be OK for KI to run it under a 'right to use' license, but the code remains opensource.
- MT: Both approaches would get market traction in his opinion.
- JB: So a scenario could be that there is a free download for anyone wanting to use, or a KI one that has some more services and features but notably ends up with certification and a Trustmark. Or an extension of that scenario where KI offers a deployment profile test, for, say SP or IDP to run a test to see if it conforms to FICAM. And the free one is used as a precursor to conformance test, and subsequent certification.
- MT: The added value is for the KI community to share test cases.
- JB: There's value in the test cases themselves, but they are completely separate from the test harness itself.
- JB: What is the next step?
- RH: Roland H needs a month to build a proof of concept.
- MT: The KI community should contribute use cases to a centralized (cloud based) site.
3. UK Gov Profile XXXXXXXX Work-in-progress below... XXXXXXXXX
Summary:
4. eGov 2 SAML Profile
- Leif and Colin reached out to Anil John (GSA) to clarify requirements outlined in recent emails....
5. SAML 2 Int Profile
Discussion:
6. Kantara, OIX and other meta-data aggregator projects
Discussion: ...
7. Your Agenda items
Next Meeting
- Date: Thurs 24th, January, 2013
- Time: 13:00 PT | 16:00 ET | (Time Chart)
- Dial-In: +1-218-862-7200
- Code:
NOTE: Do not follow the code with a "#" symbol as it may cause the code not to be recognized.