Meeting Minutes Bokkers
Meeting 20170123
- Thorsten Niebuhr
- Andrew Hughes
- Megan Cannon
- Colin Wallis
Topics
- Andrew send out his view on 'Authentication' via Mail just before the meeting
- great list
- Trust elevation missing
- Thorsten to share an 'alternative' Modell / View (Andrews Authentication stuff not in yet)
Meeting 20170109
- Andrew Hughes
- Megan Cannon
Andrew played around with running ISO 29146 and ISO 24760-3 through a word cloud generator (to avoid sitting down and just drafting the domains list!)
Meeting 20161219
- Andrew Hughes
- Thorsten Niebuhr
- George Dobbs
- Stu Lincoln
We discussed the taxonomy sub-levels of 'identification' and came up with:
Identification (Initial)
- Identities
- digital|social|online|philosophical identities, entities: Describe identities and its many facets, PII,...
- Gathering/ Providing
- how these informations are collected and aggregated
- claims, attributes, relations, self-provided, stolen,....
- ethics
- Verification
- verified and non-verified data and its use
- Trust Levels
- Uniqueness in a population
- Information Recording (other wording: DataStorage, RecordCreation, .....)
- Security
- Protection
- Privacy
- Retention
- Lifetime
Still to be bashed around, of course, but we settled on thinking about this segment as practices related to 'Initial Identification'.
Stu Lincoln will take on the 'Management' segment over the next couple weeks
Andrew Hughes will take on 'Authentication' and 'Authorization' - but would be very happy to hand off one or both to YOU who are reading this right now :)
We discussed the point of doing a 'dart board' or 'layer' approach - essentially that this layer could/should be added or recognized in any ICT / IT / IM / ITSM management framework or architectural framework that exists for you and your clients. We probably all feel that 'identity' is not addressed fully & this is a way to add the relevant topics at the right time for your circumstances.
So - onwards!
Next meeting will be 2017-01-09
Meeting 20161212
- Thorsten Niebuhr
- Andrew Hughes
- Megan Cannon
Agenda/ Topics discussed
- Short discussion about past weeks and last week overall DG Meeting
- Next Step discussion
- Task (TN) Create Mailthread on the TopLayers and their Sublayers
TopLevel from the DartBoard
Top | Sub | Example | Validation |
---|---|---|---|
Identification | Proof/ Verify | ||
Register | |||
De-Register | |||
Data Portability | |||
Management | Enrollment | ||
Dis-Enrollment | |||
Privacy | |||
Federation | |||
Authorization | |||
Authentication | |||
Meeting 20161205
- Cathrine Schulten
- Thorsten Niebuhr
- Colin Wallis
- Ravi ?
- Megan Canon
Agenda/Topics Discussed
- Further discussion on the Dart Board Model (https://kantarainitiative.org/confluence/download/attachments/85492303/BoK%20Diagram.pdf?api=v2)
- Refinement discussed for the 'upper layer' (https://kantarainitiative.org/confluence/download/attachments/85492303/DOC-20161205-174219.jpg?api=v2)
- Actions agreed on
- Check Status on 'Collections of alerady available glossaries and standards around IAM/IAG/IDM)
- Thorsten: Send out/ Start Mailthread on further refinements
- continue with planned meeting schedule (calendars)
Meeting 20161128
- Thorsten Niebuhr
- Cathrine Schulten
- Shannon Taylor
- Scott Shorter
- Stuart Lincoln
- Colin Wallis
- Tim
- George Dobbs
Agenda/ Topics discussed
- TopLevel Approaches discussed
- Practice
- Access Management
- Identity Governance
- Customer IAM
- Enterprise IAM
- Federated IDM
- Domains
- Mixed
- Project Management
- Laws and Regulations
- Standards
- Ethics
- Operation
- Technology
- History
- Identity Lifecycles
- Entity Relations
- Identity Usage Processes (AuthN and AuthZ)
- Dartboard
- Sketch from Andrew https://idprofessionals.slack.com/files/andrewhughes3000/F3741B9CG/img_5339.jpg
- NOTE: The 'BoK Diagram' - a PDF version of the sketch is attached here
- Provides several layers and slices which allows to 'see' a topic from different viewpoints
- Rings of Identity 'types' (Public/Anonymous, Citizen, Customer, Employee(Workforce?),Privileged )
- Slices on Identity 'actions' (identification, credential management, authentication, authorization) Information Managemment
- -> Note: would onboarding/offboarding a valid slide here?
- layers of Governance, strategy, implementation, operation, technology
- other valuable links and input
- Practice
Meeting 20161121
- Colin Wallis
- Andrew Hughes
- Stu Lincoln
- Megan Cannon
- Scott Shorter
- Thorsten Niebuhr
- George Dobbs
Agenda/Topics discussed
- New Group Schedule
- Every Monday, 9:00 AM UTC
- Collaboration Tool
- we agree on starting (continue) with eMail for now, but are open to move to slack later on
- On 'Glossary'...
- most are still uneasy with the term
- starting with this might not be the best idea...
- we should not start to create our own, new glossary, just to add it to the many already available
- Glossary is more a bottom up method, taxonomy would be more top-down
- Workpackage: Create a wiki to allow the DG to collect already available relevant glossaries
- On 'purpose'...
- might require a broader discussion which does not fit into a 1hr- meeting. So we decided to open a mailthread on this
(comment from the author while typing: we should timebomb this discussion, maybe max 2 weeks ?)
- might require a broader discussion which does not fit into a 1hr- meeting. So we decided to open a mailthread on this
- High-level Taxonomies
- we discussed Andrew's BoardShot as one example for a High/Top Level Taxonomie, but is that that one we should follow? Are there other top elements that would be better?
- We will check out /test other structures to start with (see workpackages)
- Workitems
Colin Wallis: ask Kaliya if she could provide a version (the latest?) of the IdentityManagement Landscape
Andrew Hughes: Create a wiki (start) page for collecting relevant glossary ressources
Thorsten: Start eMail Thread on 'purpose'
TopLevel Taxonomy sketches
Roles: ?
Domains: Stu
Practices: Thorsten
Any: Any (this is not a firewall rule)
Megan: Get hold/provide the list of JobRoles from the survey
Megan: Set up a Goto Meeting (jit.si was a nice try)