Questions we are not ready to answer, but it is worth keeping a list
Is SAML the only protocol we need for moving identity attributes between parties?
If we need another one, say for provisioning and provisioning-like scenarios, is SCIM in the ballpark?
If so, would SAML & SCIM+ cover the waterfront?
CW: Protocol for moving... SAML (say, in moving around xACML atrributes) so JASON is more the SAML equivalent I think. SCIM is more a brand of a process in my view. I think there is a workflow ;aspect we haven't touched. Maybe xPDL? and wf-XML?
What kinds of attribute metadata are required to fulfill identified requirements?
Will there be as many metadata schema as there are attribute schema, or does metadata's higher level of abstraction allow convergence on a (core) generic set of metadata elements?
CW: In my view, metadata's higher level of abstraction will allow convergence on a (core) generic set of metadata elements? You can have a 'core identity' metadata element with attributes of name, date of birth etc etc
If the domain of interest is attributes and associated metadata, is RDF a good logical model?
Needs checking with developers but first guess is yes.
Is attribute exchange a first rung on an evolutionary ladder that reaches up to something like a distributed and federated event-driven model of application/service integration?