Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

Attendees:

Voting Participants: Andrew Hughes, Martin Smith, Mark King, James Jung, Michael Magrath, Maria Vachino, Richard Wilsher
Non-voting participants: Eric Thompson
Staff: Lynzie Adams

Proposed Agenda

  1. Administration:

    • Roll call, determination of quorum

    • Minutes approval - 2022-08-04 Minutes

    • General Updates

    • Assurance Updates

  2.  Discussion: 

    • SAC Update

    • 63b SoCA proposal

    • Assurance Program - continued discussion from previous weeks

  3. Any Other Business

Meeting Notes 

Administrative Items:

IAWG Chair Andrew Hughes called the meeting to order.  Roll was called. Meeting was quorate. 

Andrew suggested dropping the 63b agenda item until Richard Wilsher can join a call to explain the proposal. All agreed.

Minutes approval:    Andrew asked that everyone review the August 4 minutes carefully as they listed a lot of what we will present to ARB/KIBoD as our recommendations for updates to the Assurance Program. If there is anything in those minutes you are uncomfortable with - please speak up via email or at the next meeting!

Jimmy Jung moved to approve the draft minutes from the August 4 IAWG meeting. Martin Smith seconded the motion. Motion carried with no objections.. 

General Updates: Michael shared that the roundtable put on by Jeremy Grant at FedID next month is open to all Kantara members. Promotional materials will be created and distributed to Kantara members when details are confirmed.

Assurance Updates: n/a

Discussion:

SAC Update

A reminder email went out today for the all-member ballot to approve the material CO_SAC changes IAWG approved in April. This is the final step before they are published. The eballot closes Thursday, August 18. There is a requirement that at least 15% of members vote. All Kantara members in IAWG should vote! The eballot can be found here.

63b SoCA Proposal

Richard walked the group through proposed changes to 63B#0650, #0660, and #0670. As the criteria is presently written, #0670 refers to a salt value - but that relates only to the circumstance above in #0660 (shall be salted and hashed with a value that has at least 32 bits). He proposes that we incorporate #0670 into #0660 - making the it an additional requirement when the secret has fewer than 112 bits of entropy. #0670 becomes no stipulation.

Martin asked if this was substantive. Richard confirmed it does remove an obligation but it is arbitrarily imposed. Neither Michael or Jimmy were aware of an instance where #0670 was invoked because the CSP felt it necessary. Richard proposed if no CSP has responded to #0670 to this point, it could be considered non-material. Jimmy concurred. He believes we are simply clarifying something that was mis-expressed. Andrew also does not believe it is material.

Lynzie will review the current CSP SoCAs to see #0670’s applicability and report back to the group. If this remains non-material, it can be published with the larger release after the all-member ballot closes and passes. We will make motions at the next meeting once the analysis is completed and shared with the group.

Assurance Program

Any Other Business

IAWG leadership keeps an action item list. All IAWG participants should be aware that the spreadsheet exists and it lists everything we think the IAWG is working on or planning to work on. Please feel free to review it and correct it if needed - it is not our intent to overlook something!

 

 

  • No labels