[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Minutes from ID-Cloud TC Telecon 9 Aug 2010 (draft)
Folks,
Here are the minutes from the ID-Cloud TC this week.
Apologies if I missed some discussion threads.
/thomas/
________________________
Oasis ID-Cloud TC Meeting Minutes (9 August 2010)
-------------------------------------------------
[Notation: Q = question; A = answer; C = comment]
(1) Roll Call and Agenda Review
2) Request Minute Taker
- Thomas Hardjono minute taker.
3) Approval of July 26th TC Meeting Minutes
http://lists.oasis-open.org/archives/id-cloud/201008/msg00001.html
- Motion to accept the minutes: Gershon Janssen.
- Second: Jerry Smith.
- No objections. Motion passes.
4) SAP Submission of use case
http://www.oasis-open.org/committees/download.php/38594/Enterprise%20P
urchasing%20Use%20Case.pdf
- The group went through the slide presentation by Martin Raepple
(SAP).
+ From the last slide: Challenges
o How will Company A enable SSO (steps 1, 4 and 10)
between its identity provider and the services in the
public cloud?
o How does the Supplier Online Shop know about
Company A's employee/manager permissions when
placing or approving an order (steps 3 and 5)?
o How is the controller's identity in the Supplier Online
Shop propagated when requesting data through
RESTful APIs from the on-premise CRM system (step 9)
and uploading/analyzing the data (step 10) in the
on-demand BI system?
- C: Brian Marshall: commented that this is very good use-case.
- Q: Anil: Do you need to perform directory synchronization
in this use-case.
A: Martin: Depends on the requirements.
+ Anil: suggest it would be good if this SAP use-case
could be tied into the Just-In-Time (JIT) use-case from
Patrick/Ping a couple of weeks ago.
- C: Martin:
+ There is a connection between on-premise and on-demand systems.
+ There is a lack of standards to propagate SSO/Identity
across these systems.
- Q: Thomas: challenge #1 (in last slide) is classic SSO.
Why not use SAML SSO profile?
A: Martin: Yes, we could do that but we still need
Identity to be recognized cross-organization.
C: Anil: SSO is common in many/all of our use-cases.
- Q: Anil: Anil had a question about APIs
+ Last time, Patrick/Ping agreed to champion this
topic (i.e APIs) on the mail-list.
A: Martin: Here API is used in general terms.
- The SP is assumed to be in the cloud.
- Today it has no specific (standard) APIs
- The question is how to do SSO and Identity Mapping
using RESTful APIs.
C: Anil: noted that Anil recently saw a financial
institution providing RESTful APIs for credit-card services.
- Use-cases document: collect all the use-cases in one document.
o Matt/IBM asked if there was a Template.
o Anil will email Oasis-admin to see if Oasis has preferred
template.
o Matt and Thomas signed-up to be editor.
o Desirable to have this use-case draft doc completed prior
to the F2F in September in DC
- C: Colin Wallis suggested we need to have an
architecture approach to clarify our discussions.
o Colin asked if we should work on such an architecture
o The architecture will have direct impact on our solution(s).
A: Anil: the ID-cloud Charter states that the
deliverables are uses-cases, profiles, and gap-identification.
o We can work further on this at the F2F in September.
5) IDCloud F2F at Washington DC (September 29th)
- Q: Brian: We should have an proposed agenda for the F2F meeting.
o Summarize (summary of) all our use-cases.
o Understand the common problems.
o For example, in the case of Directory Synchronization
we still need to hash thing out.
A: Anil: asks Brian to champion this item (Directory
Synchronization) on the mailing-list.
- C: Matt: noted that there still is some "anti-provisioning"
sentiment.
o Matt suggests we look closely at the SPML TC work in Oasis.
C: Richard/Skyworth: There was a very recent email
from Mary/Oasis about reconvening the SPML TC.
o Many aspects of SPML may be suitable for the needs
of the cloud environment.
C: Matt: agrees, and noted that we may borrow some of the
use-cases from the SPML TC work.
C: Richard: some items/issues (eg. dir synchronization) is
not addressed by SPML TC.
- Anil: We still need a more detailed use-case relating
to directory synchronization
C: Richard: promises to submit a use-case on directory
synchronization.
A: Anil: Another person (?) in ID-cloud TC has also expressed
interest in provisioning.
- Anil: will post more info about the F2F meeting and bridge number.
6) Continuation of discussions on Audit, API and JIT User
Account Management. (Optional Discussion)
7) Other Business.
8) Adjourn
Motion to adjourn: Tom Bishop/Conformity.
Seconded: Gershon Janssen.
----------------------------------
soaphub dump:
anonymous morphed into David Kern (IBM)
AnilSaldhana_RedHat1 morphed into AnilSaldhana_RedHat
anonymous morphed into Richard Sand (Skyworth TTG)
anonymous morphed into Martin Raepple
anonymous1 morphed into Travis Yoes (Symplified)
anonymous11 morphed into Michael Stiefel
Colin Wallis1: Colin from NZ is here..
AnilSaldhana_RedHat: Hi Colin. It must be 6am for you?
Colin Wallis1: yes..
John Bradley1: Benny Koren (Mellanox) I got you for the roll
AnilSaldhana_RedHat: John, I hope you got Travis
Thomas Hardjono (MIT): Minutes: Motion by Gershon Janssen. Seconded by
Jerry Smith. No objection. Motion passes.
Travis Yoes (Symplified): Hi John, I dropped from the call during roll
call but I am here
John Bradley: I have Travis.
John Bradley: The current attendance list Andy Kindred Acxiom
Group Member
Jeffrey Broberg CA* Group Member
Tom Bishop Conformity Group Member
Robert Cope Homeland Security Consultants Group Member
David Kern IBM Group Member
Matthew Rutkowski IBM Group Member
John Bradley Individual Group Member
Gershon Janssen Individual Group Member
Michael Stiefel* Individual Group Member
Thomas Hardjono M.I.T. Group Member
Benny Koren Mellanox Technologies Group Member
Anthony Nadalin Microsoft Corporation Group Member
Colin Wallis New Zealand Government Group Member
Anil Saldhana Red Hat Group Member
Bill Becker SafeNet, Inc. Group Member
Martin Raepple SAP AG* Group Member
Richard Sand Skyworth TTG Holdings Limited Group Member
Travis Yoes Symplified Group Member
Kyle Austin TriCipher, Inc. Group Member
Jerry Smith US Department of Defense (DoD)* Group
Member
Brian Marshall Vanguard Integrity Professionals Group
Member
Daniel Turissini WidePoint Corporation Group Member
Colin Wallis1: Would you propagate Identies? Perhaps instead use an
agreed authoritative source?
Colin Wallis1: Brian..alternatives to Directory synchronisation sounds
like an architectural approach discussion to me,,
-------------------------
-----------------
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]