User-Managed Access Work Group Rollup Report

This document lists all quarterly status reports from the UMA WG.


2013-Q2 Report - UMA WG

Date submitted: 1 Jul 2013

Officer positions:

  • Chair: Eve Maler (re-elected by unanimous consent on 2013-05-30)
  • Vice-Chair: Maciej Machulak (re-elected by unanimous consent on 2013-05-30)
  • Specification Editor: Thomas Hardjono (re-elected by unanimous consent on 2013-05-30)
  • Domenico Catalano, Graphics/UX Editor (re-elected 2011-05-19)
  • Maciej Machulak, Implementation Coordinator (informally appointed 2010-01-21)

Participation:

  • Total participants: 152 (1 fewer since Q4 – number not reliable, in chair's opinion, due to data staleness)
    • Voting: 10 (same since Q4)
    • Non-voting: 142 (1 fewer since Q4 – number not reliable, in chair's opinion, due to data staleness)
  • Total email list subscribers: 173 (8 more since Q1)

Meetings:

  • Published meeting frequency: monthly all-hands with weekly educational/legal/technical/interop focus meetings in between
  • Teleconferences held this quarter: 3 all-hands (plus 12 focus meetings and additional ad hoc meetings)
    • Quorate teleconferences: 3
  • Physical meetings this quarter: none
    • Quorate physical meetings: n/a

Deliverables:

  • Draft specifications produced this quarter (see Working Drafts area):
    • Revised Core Protocol spec contributed as an IETF I-D (rev 07)
    • Revised Resource Set Registration spec contributed as an IETF I-D (rev 01)
    • Revised and added to Case Studies
  • Progress against goals for 2013-Q2:
    • Continued to support implementations and deployment activities
    • Continued to burn down issues, particularly those raised by implementers
    • Facilitated creation of our first third-party profile
    • Facilitated POCing by Scalable Privacy/GPII/Cloud4All
  • Liaison activity updates:
    • Conducted liaison activity with AXN, Scalable Privacy, XACML, OAuth, OpenID Connect, and others

Deadlines in the next quarter:

  • Deadlines listed in the group charter:
    • Group was chartered to operate for 18-24 months
  • Elected terms expiring:
    • None
  • Goals for 2013-Q3:
    • Promote creation of vertical and horizontal profiles
    • Promote POCs
    • Promote optimization of UMA usage with OpenID Connect and other technologies (XACML, XDI, etc.)
    • Prepare Implementor's Draft leading to interop event in Q4


2013-Q1 Report - UMA WG

Date submitted: 2 Apr 2013

Officer positions:

  • Chair: Eve Maler (Re-elected by electronic ballot on 2012-11-05)
  • Vice-Chair: Maciej Machulak (re-elected 2012-05-10)
  • Specification Editor: Thomas Hardjono (elected 2012-04-05)
  • Domenico Catalano, Graphics/UX Editor (re-elected 2011-05-19)
  • Maciej Machulak, Implementation Coordinator (informally appointed 2010-01-21)

Participation:

  • Total participants: 152 (1 fewer since Q4 – number not reliable, in chair's opinion, due to data staleness)
    • Voting: 10 (same since Q4)
    • Non-voting: 142 (1 fewer since Q4 – number not reliable, in chair's opinion, due to data staleness)
  • Total email list subscribers: 165 (2 fewer since Q4)

Meetings:

  • Published meeting frequency: monthly all-hands with weekly educational/legal/technical/interop focus meetings in between
  • Teleconferences held this quarter: 4 all-hands (plus 11 focus meetings and additional ad hoc meetings)
    • Quorate teleconferences: 4
  • Physical meetings this quarter: none
    • Quorate physical meetings: n/a

Deliverables:

  • Draft specifications produced this quarter (see Working Drafts area):
    • Revised Core Protocol spec (currently at rev 07b)
    • Revised and added to Case Studies
  • Progress against goals for 2013-Q1:
    • Refactored more publications to use new OAuth-friendly terminology
    • Continued to support implementations and deployment activities
    • Continued to burn down issues, particularly those raised by implementers
    • Continued to test the waters on the Binding Obligations concept, e.g. with MIT Media Lab
  • Liaison activity updates:
    • Conducted liaison activity with AXN, Scalable Privacy, XACML, OAuth, OpenID Connect, and others

Deadlines in the next quarter:

  • Deadlines listed in the group charter:
    • Group was chartered to operate for 18-24 months
  • Elected terms expiring:
    • Chair, vice-chair, spec editor, graphics editor
  • Goals for 2013-Q2:
    • Promote creation of vertical and horizontal profiles
    • Promote POCs
    • Promote UMA+OpenID Connect optimization

 


 

2012-Q4 Report - UMA WG

Date submitted: 1 Jan 2013

Officer positions:

  • Chair: Eve Maler (Re-elected by electronic ballot on 2012-11-05)
  • Vice-Chair: Maciej Machulak (re-elected 2012-05-10)
  • Specification Editor: Thomas Hardjono (elected 2012-04-05)
  • Domenico Catalano, Graphics/UX Editor (re-elected 2011-05-19)
  • Maciej Machulak, Implementation Coordinator (informally appointed 2010-01-21)

Participation:

  • Total participants: 149 ( more since Q3)
    • Voting: 10 (3 fewer than Q3)
    • Non-voting: 143 (7 more since Q3)
  • Total email list subscribers: 167 (4 fewer than Q3)

Meetings:

  • Published meeting frequency: originally weekly; now a monthly all-hands with weekly educational/legal/technical/interop focus meetings in between
  • Teleconferences held this quarter: 4 all-hands (plus at least 10 focus meetings)
    • Quorate teleconferences: 2
  • Physical meetings this quarter: none
    • Quorate physical meetings: n/a

Deliverables:

  • Draft specifications produced this quarter (see Working Drafts area):
    • Revised Core Protocol spec (currently at rev 07a, rev 06 submitted to IETF)
    • Modularized OAuth Resource Set Registration spec (currently at rev 00, submitted to IETF; meant for use by other OAuth-based technologies as well)
    • Revised Binding Obligations
  • Progress against goals for 2012-Q4:
    • Continued to dispose of issues, particularly in response to implementer queries
    • Conducted webinar focusing on the higher education scenario, including a detailed demo by the SMART team
    • Collected considerable legal input on Binding Obligations
    • Gathered new set of case studies that will track implementation and deployment work
    • Began publishing a series of specific case studies that potential deployers can use to assess UMA's fit for their scenarios
  • Liaison activity updates:
    • Conducted liaison activity with AXN, Scalable Privacy, XACML, OAuth, OpenID Connect, and others
  • Other:
    • Successfully kickstarted active spec editing of the dynamic client registration spec that was adopted in the IETF OAuth group
    • Gluu has made progress on its open-source implementation tackling an enterprise use case for UMA and will demo it for the group

Deadlines in the next quarter:

  • Deadlines listed in the group charter:
    • Group was chartered to operate for 18-24 months
  • Elected terms expiring:
    • None
  • Goals for 2013-Q1:
    • Launch serious interop testing (held over)
    • Prepare drafts for consideration at IETF 86 in March
    • Refactor publications to use new UMA terminology
    • Conduct and advertise educational podcast series
    • Continue to support implementations and deployment activities
    • Continue to liaise with partners
    • Continue to burn down issues
    • Continue to develop the Binding Obligations

 


2012-Q3 Report - UMA WG

Date submitted: 1 Oct 2012

Officer positions:

  • Chair: Eve Maler (re-elected 2011-09-22) -- overdue for election
  • Vice-Chair: Maciej Machulak (re-elected 2012-05-10)
  • Specification Editor: Thomas Hardjono (elected 2012-04-05)
  • Domenico Catalano, Graphics/UX Editor (re-elected 2011-05-19)
  • Maciej Machulak, Implementation Coordinator (informally appointed 2010-01-21)

Participation:

  • Total participants: 149 (6 more since Q2)
    • Voting: 13 (3 more than Q2)
    • Non-voting: 136 (3 more since Q2)
  • Total email list subscribers: 171 (same as Q2)

Meetings:

  • Published meeting frequency: originally weekly; now a monthly all-hands with weekly educational/legal/technical/interop focus meetings in between
  • Teleconferences held this quarter: 7 all-hands (plus at least 4 focus meetings)
    • Quorate teleconferences: 4
  • Physical meetings this quarter: none
    • Quorate physical meetings: n/a

Deliverables:

  • Draft specifications produced this quarter (see Working Drafts area):
    • Revised Core Protocol spec (currently at rev 05c, since submitted to IETF as I-D rev 05)
    • Revised FAQ
    • Revised Binding Obligations
    • Revised feature tests for interop testing
  • Progress against goals for 2012-Q3:
    • Continued to work through and collect issues
    • Collected considerable legal input on Binding Obligations
    • Gathered new set of case studies that will track implementation and deployment work
    • Conducted liaison activity with RHex, AXN, XACML, and others
  • Other:
    • Trying to kickstart active spec editing of the dynamic client registration spec that was adopted in the IETF OAuth group
    • Fraunhofer AISEC has open-sourced its implementation
    • Gluu is working on an open-source implementation 

Deadlines in the next quarter:

  • Deadlines listed in the group charter:
    • Group was chartered to operate for 18-24 months
  • Elected terms expiring:
    • Current chair term expired on Sep 22
  • Goals for 2012-Q4:
    • Launch serious interop testing
    • Publish case studies to help implementers and deployers decide whether UMA can help them
    • Conduct a webinar focusing on the higher-education case study
    • Continue to support existing and new implementations and support deployment activities
    • Continue to burn down issues
    • Continue to develop the Binding Obligations
    • Assess the Kantara end-game

Liaison activity updates:

  • See above


 

2012-Q2 Report - UMA WG

Date submitted: 1 Jul 2012

Officer positions:

  • Chair: Eve Maler (re-elected 2011-09-22)
  • Vice-Chair: Maciej Machulak (re-elected 2012-05-10)
  • Specification Editor: Thomas Hardjono (elected 2012-04-05)
  • Domenico Catalano, Graphics/UX Editor (re-elected 2011-05-19)
  • Maciej Machulak, Implementation Coordinator (informally appointed 2010-01-21)

Participation:

  • Total participants: 143 (6 more since Q4)
    • Voting: 10 (same as Q1)
    • Non-voting: 133 (6 more since Q4)
  • Total email list subscribers: 171 (6 fewer since Q1)

Meetings:

  • Published meeting frequency: weekly (for whole-group telecons), additional telecons for smaller interest groups
  • Teleconferences held this quarter: 12 (plus additional ad hoc/focus telecons)
    • Quorate teleconferences: 7
  • Physical meetings this quarter: 2 (EIC Kantara Summit "interop session" and IIW 14 "open meeting"; both were informal)
    • Quorate physical meetings: n/a

Deliverables:

  • Draft specifications produced this quarter (see Working Drafts area):
    • Revised Core Protocol spec (currently at rev 05a)
    • Revised FAQ
    • Revised Trust Model spec, now called Binding Obligations on UMA Participants)
  • Progress against goals for 2012-Q2:
    • Continued to work through and collect issues
    • Significantly revised the trust model
    • Gathered new use cases, particularly business-oriented ones
    • Proposed draft interop feature tests
  • Other:
    • The dynamic client registration spec the group had contributed to the IETF has been adopted as a work item in the OAuth WG's next phase

Deadlines in the next quarter:

  • Deadlines listed in the group charter:
    • Group was chartered to operate for 18-24 months; it is currently at 34 months; the group has begun discussing next steps
  • Elected terms expiring:
    • N/A for the next quarter
  • Goals for 2012-Q3:
    • Assess how to complete the "incubation" phase and promote the technical spec work to an SDO
    • Continue interop activities
    • Continue issue resolution activities
    • Support existing and new implementations and support deployment activities
    • Work with liaisons to assess role and next steps of Binding Obligations contractual framework
    • Continue work on business use cases

Liaison activity updates:

  • Met with "legal all-stars" to get trust model feedback
  • Engaged with OAuth group on dyn-client-reg and other UMA-impacting topics
  • Engaged with OpenID Connect technical experts on UMA-impacting topics
  • Engaged with leadership of Kantara and other organizations to discuss UMA futures

Other comments:

  • Paused the tweet chat series in Q2
  • Gave educational talks to the Oracle Community for Security in Italy and to other venues
  • An open-sourced Python-based library called PUMA was released for supporting the development of UMA hosts and requesters
  • Worked with the owner of the OSIS wiki to create an area dedicated to UMA's first interop testing round

 


2012-Q1 Report - UMA WG

Date submitted: 1 Apr 2012

Officer positions:

  • Chair: Eve Maler (re-elected 22 Sep 2011)
  • Vice-Chair: Maciej Machulak (re-elected 19 May 2011)
  • Specification Editor: Thomas Hardjono (elected 11 Apr 2011)
  • Domenico Catalano, Graphics/UX Editor (re-elected 19 May 2011)
  • Maciej Machulak, Implementation Coordinator (informal)

Participation:

  • Total participants: 137 (4 more since Q4)
    • Voting: 10 (4 fewer since Q4; tends to be volatile in the 10-14 range)
    • Non-voting: 127 (8 more since Q4)
  • Total email list subscribers: 177 as of 1 Apr 2012 (15 more since 1 Jan 2012)

Meetings:

  • Published meeting frequency: weekly (for whole-group telecons), additional telecons for smaller interest groups
  • Teleconferences held this quarter: 12 (plus additional ad hoc/focus telecons)
    • Quorate teleconferences: 8
  • Physical meetings this quarter: none
    • Quorate physical meetings: n/a

Deliverables:

  • Draft specifications produced this quarter (see Working Drafts area):
    • Revised Core Protocol spec (IETF I-D saw significant revs 03 and 04????)
    • Revised FAQ and addition of new AISEC Implementation FAQ
    • Revised Trust Model spec
    • New UMA Twitter Chat page
  • Progress against goals for 2012-Q1:
    • Resolved all A-priority and many B-priority issues, and identified new issues through implementation
    • Revised IETF I-D for core spec in time for consideration at the IETF 83 meeting 25-30 Mar 2012
    • Put plan in place for virtual and F2F interop testing (extending into Q2 as well)

Deadlines in the next quarter:

  • Deadlines listed in the group charter:
    • Group was chartered to operate for 18-24 months; it is currently at 31 months; the group has entered into a new phase where the dominant activities are solving open issues, updating the IETF I-D, and facilitating developer adoption and implementation interoperability
  • Elected terms expiring:
    • Vice-chair: in May
    • Spec editor: in April
    • Graphics editor: in May
  • Goals for 2012-Q2:
    • Continue to burn down issues
    • Prepare for F2F and virtual interop activities
    • Support existing and new implementations and support deployment activities
    • Revise Trust Model
    • Gather new use cases, particularly business-oriented ones

Liaison activity updates:

  • No news

Other comments:

  • Began a successful monthly series of tweet chats, information about which is at http://tinyurl.com/umachat
  • Gave a Google Tech Talk, video for which is expected to be made public at some point


2011-Q4 Report - UMA WG

Date submitted: 1 Jan 2012

Officer positions:

  • Chair: Eve Maler (re-elected 22 Sep 2011)
  • Vice-Chair: Maciej Machulak (re-elected 19 May 2011)
  • Specification Editor: Thomas Hardjono (elected 11 Apr 2011)
  • Domenico Catalano, Graphics/UX Editor (re-elected 19 May 2011)
  • Maciej Machulak, Implementation Coordinator (informal)

Participation:

  • Total participants: 133 (7 more since Q3)
    • Voting: 14 (4 more since Q3)
    • Non-voting: 119 (3 more since Q3)
  • Total email list subscribers: 162 (1 more since 1 Oct 2011)

Meetings:

  • Published meeting frequency: weekly (for whole-group telecons), additional telecons for smaller interest groups
  • Teleconferences held this quarter: 11 (plus additional ad hoc/focus telecons)
    • Quorate teleconferences: 6
  • Physical meetings this quarter: 1
    • Quorate physical meetings: 0

Deliverables:

  • Draft specifications produced this quarter (see Working Drafts area):
    • Revised Core Protocol spec (IETF I-D saw significant revs 01 and 02)
    • Revised Trust Model spec
    • Trivially revised Dynamic Client Registration I-D (up to rev 03, to keep from expiring)

Deadlines in the next quarter:

  • Deadlines listed in the group charter: group chartered to operate for 18-24 months; August 2011 was 24 months; the group has entered into a new phase where the dominant activities are solving open issues, updating the I-D, and facilitating developer adoption and implementation interoperability
  • Goals for 2012-Q1:
    • Resolve all A-priority and B-priority issues
    • Revise IETF I-D for core spec in time for consideration at the IETF 83 meeting 25-30 Mar 2012
    • Put plan in place for virtual and F2F interop testing (extending into Q2 as well)

Liaison activity updates:

  • Opened up formal liaison connection with Project hData
  • Represented UMA at OAuth IETF group
  • Coordinated with OpenID Connect on dynamic client registration needs
  • Reached out to EU project communities
  • Reached out to additional US healthcare communities
  • Reached out to SCIM expert to get feedback on standardized scoping mechanism

Other comments:

  • Offered another public webinar in Dec 2012, covering new trust model and OpenID Connect details, reviewing status of three known implementations (SMARTAM, Fraunhofer AISEC, and Synergetics/TAS3), and demoing new SMARTAM features for OpenID Connect integration showing authorization based on standarized trusted claims


2011-Q3 Report - UMA WG

Date submitted: 1 Oct 2011

Officer positions:

  • Chair: Eve Maler (re-elected 22 Sep 2011)
  • Vice-Chair: Maciej Machulak (re-elected 19 May 2011)
  • Specification Editor: Thomas Hardjono (elected 11 Apr 2011)
  • Domenico Catalano, Graphics/UX Editor (re-elected 19 May 2011)
  • Maciej Machulak, Implementation Coordinator (informal)

Participation:

  • Total participants: 126 (6 more since Q2)
    • Voting: 10 (1 fewer since Q2)
    • Non-voting: 116 (7 more since Q2)
  • Total email list subscribers: 161 (3 more since 1 Jul 2011)

Meetings:

  • Published meeting frequency: weekly (for whole-group telecons), additional telecons for smaller interest groups
  • Teleconferences held this quarter: 11 (plus additional ad hoc/focus telecons)
    • Quorate teleconferences: 8
  • Physical meetings this quarter: 0
    • Quorate physical meetings: 0

Deliverables:

  • Draft specifications produced this quarter (see Working Drafts area):
    • Revised Core Protocol spec
    • Revised Trust Model spec

Deadlines in the next quarter:

  • Deadlines listed in the group charter: group chartered to operate for 18-24 months; August 2011 was 24 months; the group is entering into a new phase where the dominant activities are solving issues, updating the I-D, and facilitating developer adoption

Liaison activity updates:

  • Coordinated efforts with OpenID Connect
  • Synced with Project hData
  • Represented UMA at OAuth IETF group

Other comments:

  • Newcastle University team deployed new versions of UMA-compliant software at http://SMARTAM.net and developed a Python implementation
  • Fraunhofer AISEC team developed UMA-compliant software and is preparing to open-source it
  • Contributed core protocol spec to IETF as an I-D in July 2011, and presented and recorded a public webinar around this time
  • Submitted 2012 Kantara budget requests


2011-Q2 Report - UMA WG

Date submitted: 1 Jul 2011

Officer positions:

  • Chair: Eve Maler (re-elected 12 Aug 2010)
  • Vice-Chair: Maciej Machulak (re-elected 19 May 2011)
  • Specification Editor: Thomas Hardjono (elected 11 Apr 2011)
  • Use Cases Editor: Mario Hoffmann (elected 12 Aug 2010)
  • Domenico Catalano, Graphics/UX Editor (re-elected 19 May 2011)
  • Maciej Machulak, Implementation Coordinator (informal)

Participation:

  • Total participants: 120 (1 more since Q1)
    • Voting: 11 (2 fewer since Q1)
    • Non-voting: 109 (3 more since Q1)
  • Total email list subscribers: 158 (3 fewer since 1 Apr 2011)

Meetings:

  • Published meeting frequency: weekly (for whole-group telecons), additional telecons for smaller interest groups
  • Teleconferences held this quarter: 12 (plus additional ad hoc/focus telecons)
    • Quorate teleconferences: 7
  • Physical meetings this quarter: 0
    • Quorate physical meetings: 0

Deliverables:

  • Draft specifications produced this quarter (see Working Drafts area):
    • Revised Core Protocol spec (incorporating old Resource Registration and Scoped Access specs)
    • Revised Dynamic Client Registration spec, contributed to IETF as an I-D
    • Participants submitted a number of auxiliary documents (e.g., Measuring elements of trust)
  • Reports produced this quarter: 1 (Core Protocol spec approved as Report on 30 Jun 2011)

Deadlines in the next quarter:

  • Expiration of group leadership positions: Chair (August)
  • Deadlines listed in the group charter: group chartered to operate for 18-24 months; August 2011 will be 24 months

Liaison activity updates:

  • Coordinated efforts with OpenID Connect
  • Synced with Project hData
  • Represented UMA at OAuth IETF group
  • Presented new UMA scoped access solution at IIW 12 in May 2011
  • Represented UMA at NSTIC privacy workshop in June 2011

Other comments:

  • Newcastle University team deployed beta version of UMA-compliant http://SMARTAM.net
  • Fraunhofer SIT team demoed UMA-compliant software at Kantara F2F meeting
  • Continued reviewing test cases
  • Planning to contribute core protocol spec to IETF as an I-D in time for its July 2011 meeting, and planning some publicity and a 14 July 2011 webinar around this milestone


2011-Q1 Report - UMA WG

Date submitted: 1 Apr 2011 (no joke!)

Officer positions:

  • Chair: Eve Maler (re-elected 12 Aug 2010)
  • Vice-Chair: Maciej Machulak (elected 27 May 2010)
  • Specification Editor: Christian Scholz (elected 10 Jun 2010)
  • Use Cases Editor: Mario Hoffmann (elected 12 Aug 2010)
  • Domenico Catalano, Graphics/UX Editor (elected 14 Jan 2010)
  • Maciej Machulak, Implementation Coordinator (informal)

Participation:

  • Total participants: 119 (5 more since Q4)
    • Voting: 13 (1 fewer since Q4)
    • Non-voting: 106 (6 more since Q4)
  • Total email list subscribers: 161 (8 more since 1 Jan 2011)

Meetings:

  • Published meeting frequency: weekly (for whole-group telecons), additional telecons for smaller interest groups
  • Teleconferences held this quarter: 12 (plus additional ad hoc/focus telecons)
    • Quorate teleconferences: 11
  • Physical meetings this quarter: 0
    • Quorate physical meetings: 0

Deliverables:

  • Draft specifications produced this quarter: 6 (see Working Drafts area)
    • Revised User Stories
    • Revised Core Protocol spec
    • Revised Resource Registration spec
    • Revised Scoped Access spec
    • Revised Trusted Claims proposal
    • New Trust Model
  • Reports produced this quarter: 0

Deadlines in the next quarter:

  • Expiration of group leadership positions: Vice-Chair (May), Spec Editor (June), Graphics/UX Editor (past)
  • Deadlines listed in the group charter: none
  • Group-imposed deadlines: new drafts of OAuth Dynamic Client Registration and Scoped Access by early May

Liaison activity updates:

  • Gave UMA presentations at RSA Identity Collaboration Day and EEMA conference
  • Participate in IETF OAuth discussions
  • Coordinating with OpenID Connect/Artifact Binding work
  • Examining OAuth group's JSON web token work for applicability to UMA's "Claims 2.0"

Other comments:

  • Participants from Newcastle University won a Kantara IDDY award for their UMA-related POC work


2010-Q4 Report - UMA WG

Date submitted: 1 Jan 2011

Officer positions:

  • Chair: Eve Maler (re-elected 12 Aug 2010)
  • Vice-Chair: Maciej Machulak (elected 27 May 2010)
  • Specification Editor: Christian Scholz (elected 10 Jun 2010)
  • Use Cases Editor: Mario Hoffmann (elected 12 Aug 2010)
  • Domenico Catalano, Graphics/UX Editor (elected 14 Jan 2010)
  • Maciej Machulak, Implementation Coordinator (informal)

Participation:

  • Total participants: 114 (20 more since Q3)
    • Voting: 14 (3 more since Q3)
    • Non-voting: 100 (17 more since Q3)
  • Total email list subscribers: 153 (20 more since 1 Oct 2010)

Meetings:

  • Published meeting frequency: weekly (for whole-group telecons), additional telecons for smaller interest groups
  • Teleconferences held this quarter: 11 (plus additional ad hoc/focus telecons)
    • Quorate teleconferences: 11
  • Physical meetings this quarter: 2
    • Quorate physical meetings: 0

Deliverables:

  • Draft specifications produced this quarter: 6 (see Working Drafts area)
    • Revised Scenarios and Use Cases
    • New User Stories
    • Revised Core Protocol
    • New consensus draft of Resource Registration
    • New Scoped Access
    • Revised Trusted Claims proposal
  • Reports produced this quarter: 0
    • (other non-specification deliverables include "golden pitch" slides)

Deadlines in the next quarter:

  • Expiration of group leadership positions: none
  • Deadlines listed in the group charter: lower bound of anticipated group lifetime (18 months) will be reached on 6 Feb 2011
  • Group-imposed deadlines: none

Liaison activity updates:

  • Gave UMA update presentations to P3WG and ITU-T identity summit
  • Participate in IETF OAuth discussions
  • Cross-participate in Info Sharing WG
  • Examining OAuth group's JSON web token work for applicability to UMA's "Claims 2.0"

Other comments:


Kantara Initiative UMA Work Group Report for 2010-Q3

Reporting on: 2010-Q3
Date Submitted: October 1, 2010

Group Name: User-Managed Access (UMA) Work Group

Filled Officer Positions and Names:

  • Chair: Eve Maler (re-elected 12 Aug 2010)
  • Vice-Chair: Maciej Machulak (elected 27 May 2010)
  • Specification Editor: Christian Scholz (elected 10 Jun 2010)
  • Use Cases Editor: Mario Hoffmann (elected 12 Aug 2010)
  • Domenico Catalano, Graphics/UX Editor (elected 14 Jan 2010)
  • Maciej Machulak, Implementation Coordinator (informal)

Vacant Officer Positions and Names:

  • None

What are the current active number of:

  • Total Participants: 94 (12 more since Q2)
  • Voting Participants: 11 (1 more since Q2)
  • Non-Voting Participants: 83 (11 more since Q2)
  • Total Email List Subscribers: 133 114 (19 more since 1 Jul 2010)

Published Teleconference Frequency: weekly (for whole-group telecons), additional telecons for smaller interest groups
Number of Teleconferences this Quarter: 14 WG telecons (11 quorate), additional ad hoc/focus telecons

Number of Quorate Physical Meetings this Quarter: 0
Number of Non-Quorate Physical Meetings this Quarter: 0

Number of Draft Specifications Produced this Quarter: 6 (see Working Drafts area)

  • Revised Scenarios and Use Cases
  • Revised Legal Considerations in UMA Authorization
  • Revised OAuth Dynamic Client Registration (submitted as input to IETF as an I-D and referenced from Core Protocol)
  • Revised Resource/Scope Registration API (in flux)
  • Revised Core Protocol
  • New Trusted Claims proposal

Number of Reports Produced this Quarter: 0

Deadlines the Group will face in the forthcoming quarter:

  • Expiration of Group Leadership (e.g. Chair): none
  • Deadlines listed in the Group Charter (e.g. duration expiration): none
  • Group-Imposed Deadlines: none

Other Comments:

  • The SMART project at Newcastle University has begun to open-source parts of its UMA implementation, starting with an OAuth 2.0 library called "leeloo". It is planning to continue open-sourcing more pieces, including the entire UMA/j framework, and fostering a community around the project.


Kantara Initiative UMA Work Group Report for 2010-Q2

Reporting on: 2010-Q2
Date Submitted: July 10, 2010

Group Name: User-Managed Access (UMA) Work Group

Filled Officer Positions and Names:

  • Chair: Eve Maler (elected 18 Aug 2009)
  • Vice-Chair: Maciej Machulak (elected 27 May 2010)
  • Specification Editor: Christian Scholz (elected 10 Jun 2010)
  • Use Cases Editor: Hasan Akram (elected 18 Aug 2009)
  • Domenico Catalano, Graphics/UX Editor (elected 14 Jan 2010)
  • Maciej Machulak, Implementation Coordinator (informal)

Vacant Officer Positions and Names:

  • None

What are the current active number of:

  • Total Participants: 82 (8 more since Q1)
  • Voting Participants: 10 (3 fewer since Q1)
  • Non-Voting Participants: 72 (11 more since Q1)
  • Total Email List Subscribers: 114 (8 more since 20 Apr 2010)

Published Teleconference Frequency: weekly (for whole-group telecons), additional ad hoc telecons for smaller interest groups
Number of Teleconferences this Quarter: 11 WG telecons (8 quorate)

Number of Quorate Physical Meetings this Quarter: 0
Number of Non-Quorate Physical Meetings this Quarter: 0

Number of Draft Specifications Produced this Quarter: 6

  • New Claims 2.0
  • New Simple Access Authorization Claims
  • New Legal Considerations in UMA Authorization
  • New Dynamic Client Registration (planned to be submitted as input to IETF as an I-D and be referenced from Core Protocol eventually)
  • New Resource Registration API (possibly to be folded into core protocol later)
  • Revised Core Protocol
    Number of Reports Produced this Quarter: 0

Deadlines the Group will face in the forthcoming quarter:

  • Expiration of Group Leadership (e.g. Chair): Chair, Use Cases Editor
  • Deadlines listed in the Group Charter (e.g. duration expiration): none
  • Group-Imposed Deadlines: none

Other Comments:

  • UMA now has one known complete implementation: "UMA/j" framework and User Experience implementation in Java (SMART project at Newcastle University); it will ultimately be open-sourced. UX testers are actively being sought by this project.
  • Voting participation has dropped again slightly, but a significant number of non-voting participants continue to join telecons regularly.
  • The WG is now using github as a working area for active spec development, in coordination with Kantara staff.
  • The UMA WG won a budget allocation of $4000 for use as a bounty to hosted validator developers, to be offered mid-year (i.e., now). We need to further prepare for this inside the WG (e.g. by revising our specs comprehensively) and coordinate with Kantara staff how to announce this bounty.


Kantara Initiative UMA Work Group Report for 2010-Q1

Reporting on: 2010-Q1
Date Submitted: April 20, 2010

Group Name: User-Managed Access (UMA) Work Group

Filled Officer Positions and Names:

  • Chair: Eve Maler
  • Vice-Chair: Paul Bryan
  • Specification Editor: Paul Bryan
  • Use Cases Editor: Hasan Akram
  • Domenico Catalano, Graphics/UX Editor (voted)
  • Maciej Machulak, Implementation Coordinator (informal)

Vacant Officer Positions and Names:

  • None

What are the current active number of:

  • Total Participants: 74 (16 more since Q4)
  • Voting Participants: 13 (8 fewer since Q4)
  • Non-Voting Participants: 61 (24 more since Q4)
  • Total Email List Subscribers: 106 as of 20 Apr 2010 (15 more since 6 Jan 2009)

Published Teleconference Frequency: weekly
Number of Teleconferences this Quarter: 11 (7 quorate)

Number of Quorate Physical Meetings this Quarter: 1
Number of Non-Quorate Physical Meetings this Quarter: 0

Number of Draft Specifications Produced this Quarter: 5 (new Lexicon, revised Protocol Issues, revised Core Protocol, revised Requirements, revised Scenarios and Use Cases)
Number of Reports Produced this Quarter: 0

Deadlines the Group will face in the forthcoming quarter:

  • Expiration of Group Leadership (e.g. Chair): none
  • Deadlines listed in the Group Charter (e.g. duration expiration): none
  • Group-Imposed Deadlines: The WG has a goal of demonstrating one or more implementations by late May. By late Q2/early Q3 the group should coordinate with KI staff on announcing a bounty program for developing a hosted validator.

Other Comments:

  • Voting participation has dropped, but a significant number of non-voting participants join telecons regularly.
  • The core protocol spec underwent a major revision to update its technical substrate to the WRAP paradigm now used by OAuth 2.0.
  • An extensive technical report about UMA has been published under the auspices of Newcastle University by a set of authors that includes several members of the WG's leadership team.
  • The WG has been providing input to the OAuth work taking place at IETF.


Kantara Initiative UMA Work Group Report for 2009-Q4

Reporting on: 2009-Q4
Date Submitted: January 6, 2010

Group Name: User-Managed Access (UMA) Work Group

Filled Officer Positions and Names:

  • Chair: Eve Maler
  • Vice-Chair: Paul Bryan
  • Specification Editor: Paul Bryan
  • Use Cases Editor: Hasan Akram

Vacant Officer Positions and Names:

  • None

What are the current active number of:

  • Total Participants: 58 (20 more since Q3)
  • Voting Participants: 21 (3 fewer since Q3)
  • Non-Voting Participants: 37 (17 more since Q3)
  • Total Email List Subscribers: 1 as of 6 Jan 2009 (23 more since mid-Nov 2009)

Published Teleconference Frequency: weekly
Number of Teleconferences this Quarter: 9 (6 quorate)

Number of Quorate Physical Meetings this Quarter: 1
Number of Non-Quorate Physical Meetings this Quarter: 0

Number of Draft Specifications Produced this Quarter: 1 (revision of UMA Core Protocol V1.0)
Number of Reports Produced this Quarter: In addition to revising the Core Protocol spec, the group revised the Scenarios and Use Cases document and created a new Requirements document, along with creating new explanatory materials. In Q4 an informal proposal was also made for a claim format and request-response protocol spec, which would be referenced by the core spec.

Deadlines the Group will face in the forthcoming quarter:

  • Expiration of Group Leadership (e.g. Chair): none
  • Deadlines listed in the Group Charter (e.g. duration expiration): none
  • Group-Imposed Deadlines: The WG has a goal of producing significant (if incomplete) results, along with running a status-update webinar, by the end of January, in order to maintain momentum.

Other Comments:

  • Overall participation continues to grow and diversify, as does the list of proposed use cases.
  • We have begun to track implementation interest and resources and hope to be in a position of comparing/testing multiple independent implementations within a few months.


Kantara Initiative UMA Work Group Report for 2009-Q3

Reporting on: 2009 - Q3
Date Submitted: November 17, 2009

Group Name: User-Managed Access (UMA) Work Group

Chair Name: Eve Maler
List other Officer positions and Names:

  • Vice-Chair: Paul Bryan
  • Spec Editor: Paul Bryan
  • Use Cases Editor: Hasan Akram

List other Officer positions currently vacant:

  • none

What are the active number of:

  • Total Participants: 38
  • Voting Participants: 24
  • Non-Voting Participants: 14
  • Total Email List Subscribers: 68 (as of 17 Nov 2009; don't know of a way to "back out to" 30 Sep 2009 subscriber list)

Published Teleconference Frequency: weekly
Estimated Number of Teleconferences this Quarter: 7

Number of Official Meetings this Quarter: 2 (finally debugged the non-voting participant problem in early Oct)
Number of Unofficial (aka BOF) Meetings this Quarter: 5 (plus a "public meeting" F2F at DIDW)

Number of Draft Specifications Produced this Quarter: 1 (Scenarios and Use Cases)
Number of Reports Produced this Quarter: 0

Other Comments:

  • Submitted a successful 2010 budget request