P3WG Meeting Notes 2010-10-14

Attendees:

Colin Soutar
Patrick Curry
John Bradley
Anna Slomovic
Mark Lizar

Staff:
Joni Brennan
Anna Ticktin

Meeting Notes:

    Agenda:  To discuss Trust Frameworks and P3 role with a focus on of the privacy piece.

   A. Full Trust Frameworks are composed of:

  • Policy---IAF, as example
  • Privacy---IAWG US Federal Privacy Profile
  • Protocol---3 Profiles: SAML, OpenID, Info Card , WS Fed
  • + Relying Party piece [IAWG has some fledgling work started, but will need to carry it forward]

    B. Scope:

  • There is a need to develop something with larger scope on an International scale, adoptable by various jurisdictions.
  • P3WG needs to liaise between ISO and their own privacy work. Patrick Curry could facilitate that relationship and access.
  • Patrick [the project lead for 29115] reports:
  •         Legislation in EU is much more strict than in the US.
  •         Core set of federation documents is needed. Nat'l annexes would address specific jurisdictions.
  •         Privacy pieces dominated by lawyers in the UK, as an example.
  •         Kantara is entitled to take documents from ISO and draft from there.
  • Using ISO as a baseline, P3WG would produce documentation in adjunct to the IAF, specifically seeking INTL input and tracks other INTL bodies.

    ACTION ITEMs:

  • P3WG to provide a status report on where it's at and where it's going.
  • P3WG should also be in sync with IAWG, Telco and other active Kantara groups.
  • Patrick Curry could facilitate or carry nomination of a P3WG representative to SC27 WG5.
  • Colin Soutar will look into representation / liaisons on IKO and other such forums by a P3WG representative.

C. Summary:

  • This path would direct P3 toward it's necessary focus on the privacy piece that could be "operationalized" toward trust frameworks.
  • If the Privacy target has shifted from original WG strategic directives, then the WG needs the opportunity to decide whether this identified work is under their umbrella of responsibility
    or whether there should be a newer "lightning rod" group targeting these clear directives.
  • Scope and mandates need to be outlined for a clear path of relevance within Kantara and other WGs and would outline clear privacy deliverables for the P3WG or a sub-branch...
        Patrick and Colin could step up further develop these statements.

Adjourned 08:00 PDT
  Â