Agenda
- Assurance Survey
- Oauth and Delegated access
- Whitelisting and Meta data
Roll Call
Paul Madsen NTT (Chair), Ari Kermaier Oracle, Bob Morgan Internet2, Tatsuki Sakushima NRI, Hiroki Itoh NTT, Mike Beach Boeing, Scott Cantor Internet2, Ingo Friese Deutsche Telekom, Nat Sakimura NRI, Eve Maler Paypal, Lucy Lynch ISOC, Colin Wallis NZ Gov, Joni Brennan (staff).
Discussion
Discussion on Oauth definitions of what constitutes 3-legged:
3 legged Oauth – client service and 2 other services (but no IdP). If actors include an IdP is that still 3 legged? What is Oauth to SAML? What is Oauth to IC?
Discussion on Authz:
DR situations require