IAWG Meeting Minutes 2016-02-11

Kantara Initiative Identity Assurance WG Teleconference

 

Date and Time

Agenda

  1. Administration:
    1. Roll Call
    2. Agenda Confirmation
    3. Minutes Approval: 
      1. DRAFT IAWG Meeting Minutes 2015-12-17
      2. DRAFT IAWG Meeting Minutes 2016-01-28
    4. Action Item Review
    5. Organization Updates - Director's Corner
    6. Staff reports and updates
    7. LC reports and updates
    8. Call for Tweet-worthy items to feed (@KantaraNews or #kantara)
  2. Discussion
    1. Kantara incorporation status
    2. Funding requests to the Board
    3. Kantara IAF-1401 Service Assessment Criteria Spreadsheet
    4. Development of Privacy SAC Criteria
    5. Invitations of speakers to IAWG
  3. AOB
    1.  
  4. Adjourn

 Attendees

Link to IAWG Roster

As of 2015-11-05, quorum is 5 of 9

 

Meeting did not achieve quorum

Voting

  • Scott Shorter (S)
  • Ken Dagg (C)
  • Lee Aber
  • Paul Caskey

Non-Voting

  •  Christine Abruzzi
  • Angela Rey

Staff

  •  Ruth Puente

Apologies

  • Andrew Hughes

 

 

 

Notes & Minutes

Administration 

Minutes Approval (no quorum) at this time

<<put link to minutes here>>

Motion to approve minutes of yyyy-mm-dd
Seconded: 
Discussion: 
Motion Carried | Carried with amendments | Defeated

Action Item Review

  •  Ruth updates on the wiki.  Notes that minutes need to be transferred to new format.

Staff Updates

  •  
LC Updates
  •  
Participant updates
  •  

Discussion

  1. Incorporation status - not public yet but Kantara yet is being created as a non-profit organization. We're not sure of the exact category.
  2. Funding request for $25K was approved in principle conditioned on review of the budget that was to take place last week. Will chase Robin for an update on the status. Next step is to do an RFP to get consulting resources to get this underway.
  3. Note has gone to NIST on 800-63 mapping report so they are formally aware of that.
  4. SAC spreadsheet was part of the agenda previously
    1. Scott supports the idea.
    2. Ken explains that new idea would be that the spreadsheet would be created and a word document would support it.
    3. Action Item for Scott to attach the latest version of the spreadsheet to the list and send to the email
  5. UMA privacy discussion, much buzz on twitter with EU privacy guidelines and UK-US trans-ocean personal information exchange.
    1. Angela Rey has a question - finance and financial management for the Fed. How do we look at privacy when there are individuals with multiple identities and identifier.  Person accessing government data, person acting on behalf of an organization. Where does someone's privacy end when they are an agent of an entity, gray area of what is private.
      1. Ken observes this is a good question. How does respect for privacy occur when dealing with multiple agencies in the government. Multiple Canadian government departments are not allowed to exchange information without consent from the citizen to do that, or point to point legislation describing the information exchange.
      2. Angela: Authorization of individual will take place in SAM.GOV, by being included in the database they are authorized. How much further can the government investigate the individual to operate in that capacity.  Canadian law would require the consent of the individual.  SAM.GOV is the federal government's vendor database. All reference names of who is authorized to act on behalf of the organization is identified.  Agencies using UID/PWD to multifactor, lack of standardization on this for web based invoicing.
      3. Ken observes that the Canadian government "respects" privacy but does not "protect" it. It's a liability issue.
      4. Christine wonders if that approach could be part of the difference between the US/Canada approach and the EU approach.
    2. Ken asks us to think about privacy criteria
  6. Speaker possibilitiies
    1. Ruth mentions Hannah Short  from CERN, she is working on an interesting project called AARC and she is interested in Kantara and the IAWG work. I was thinking that she may be a good candidate to provide a presentation to the WG in the framework of the innovation guests activity of the IAWG.  The project brings together 20 different partners from among National Research and Education Networks (NRENs) organisations, e-Infrastructures service providers and libraries. AARC aims to develop and pilot an integrated cross-discipline authentication and authorisation framework, built on existing AAIs and on production federated infrastructures. More:https://aarc-project.eu  2016-04-07

AOB

Ruth reports that Kantara is now a non-profit trade association.

The new Kantara by-laws are available on the website, in the home wiki under the resources tag as well as under the membership tag.

Attachments

 

 

Next Meeting

  • Date: Thursday, 2016-02-25
  • Time: 12:00 PT | 15:00 ET
  • Time: 12:00 PDT | 15:00 EDT
  • United States Toll +1 (805) 309-2350
  • Alternate Toll +1 (714) 551-9842
    Skype: +99051000000481
    • Conference ID: 613-2898
  • International Dial-In Numbers