[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Minutes from Oasis ID-Cloud TC call (13 December 2010)
Folks,
Here are the minutes from the ID-Cloud TC this week.
Apologies if I missed any discussion points or threads.
/thomas/
________________________
Oasis ID-Cloud TC Meeting Minutes (13 Dec 2010)
-------------------------------------------------
[Notation: Q = question; A = answer; C = comment]
1) Roll Call and Agenda Review:
- Quorum was NOT achieved.
- Added new agenda item: Liaison to Oasis-PSTC
2) Request Minute Taker:
- Thomas Hardjono minute taker.
3) Approval of TC Meeting Minutes from 29 Nov 2010:
http://www.oasis-open.org/apps/org/workgroup/id-cloud/email/archives/201012/msg00003.html
- Approval deferred to next meeting due to lack of quorum.
4) Liaison to the Oasis Provisioning Services TC (PSTC):
- Darran Rolls raised some of the work-items and
issues (being discussed in the ID-Cloud TC) to the PSTC.
- PSTC indicated interest in some of these issues.
- Darran will act as Liaison person from the PSTC to the ID-Cloud TC.
- Anil will add Darran's name to the Wiki.
5) Dale Olds: Novell use-Cases
- PDF: http://www.oasis-open.org/committees/download.php/40573/id-cloud-novell-use-cases.pdf
(a) Novell-UC/Issue #1: Configuration of IdP (per tenant)
o Tools and mechanisms needed so that configurations
can be managed programmatically.
o Desired Outcome: A tenant can quickly and securely manage
their use of many cloud services using automated tools
rather than navigating and manually configuring each
service individually.
o See Sect 1.1.2 of Novell Use-Case PDF.
o Q: how to indicate categories of interest? (Dale)
- A: Matt: most of the uses-cases already presume/assume
features such as AuthN and AuthZ.
- As such, call-out unique aspects and flows
of your use-case.
- The Categories (as shown in Table in Sect 1.1.3) are
also used for indexing the use-cases.
(b) Novell-UC/Issue #2: Delegated Access
o Goal: The tenant administrator should be able to
delegate access to their identity services configuration
(within a multi-tenant cloud service) to the identity
provider service.
o See Sect 1.2 of Novell Use-Case PDF.
o Flow:
- A tenant administrator signs up for a new cloud services
for her users.
- Her identity services are provided by a third party.
- She notifies the IdP that she wants her
users to have access to the new services which she just
signed-up for.
- The IdP can exchange whatever configuration and
metadata is required with each new service on
behalf of the tenant administrator (without
authenticating to each service as her).
(c) Novell-UC/Issue #3: Association of a User and Tenant
o When a user accesses a multi-tenant cloud service,
the service may need to be able to associate the user
with a tenant account.
o See Sect 1.3 of Novell Use-Case PDF.
o Example: A Department D1 with an IdP (IDP#1) in an
organization buys a cloud service and wants to allow
people in a different department D2 with a different
IdP (IDP#2) access to that new cloud service.
o Need a way to associate tenant account at the service
with people/users in department D2 when the people
authenticate to access the service.
o Part of the solution may be through IdP Discovery
(eg. IdP multiplex to multi-tenant service).
o Use-case still rough, and will be improved.
o Q: should Dale add a new section to Use-case
doc structure? (Dale)
- A: Matt: UC not need to be a long.
Best to identify new aspects not covered in
other use-cases.
o Next-steps: Dale will work further on UC and re-submit.
o Anil: want to include Novell UC in next release of
ID-Cloud Use-cases (Editor's Draft).
(6) Editor's Draft of ID-Cloud Use-Cases doc (Matt)
- Current version is same as from 2 weeks ago:
http://tools.oasis-open.org/version-control/browse/wsvn/id-cloud/doc/committee/interim/id-cloud-use-cases-draft-01m.doc?rev=5&sc=1
- Matt will add new use-cases received (target for
discussion at next telecon in January).
- Matt will try to get an updated doc this Friday Dec 17th.
o Q: Anil: should we set a Deadline for use-case submissions?
- A: John Dilley: yes, a deadline is good idea :)
(7) Feedback from ITU Workshop (Anil)
- ITU Workshop was Mon-Tue last week.
- Anil received good feedback about ID-Cloud TC:
o Obtained 1 new member already.
o Anil talked about ID-Cloud TC specifically.
o There was another presentation on security, but it was
only a general presentation on the security issues
of cloud computing.
(8) OMG Telecom Cloud Conference Feedback (John Dilley)
- John presented some slides, covering:
o The OASIS organization.
o The ID-Cloud TC
o The meeting was mostly open discussion.
o Attendees were mainly vendors.
o The was a comment to the effect that cloud computing today
is re-discovering the old identity management problem.
- John learnt of two new interesting/relevant
organizations: DISR and GIG
o GIG has been around for several years.
- Another interesting comment was that open source software
is as influential (or more influential than) standards.
- Take-aways:
o Recommendation to take the message about cloud
computing to the end-user organization.
+ Example: city-councils or town management.
+ Need to truly understand their use-cases and pain-points.
o CloudStandard.org Wiki:
+ Website/Wiki lists various orgs in cloud computing.
+ Oasis and ID-Cloud TC already listed.
(9) Next F2F Meeting:
- Thomas asks if we plan to have F2F at RSA Conference 2011.
o RSA2011 dates: Week of Monday 14 Feb 2011.
- There is already a Kantara ID Collaboration day on Mon 14th.
- Anil: TC will need to decide if it wants to meet at RSA2011.
(10) No meeting of ID-Cloud TC on December 27th.
- Anil will remove from calendar.
(11) Meeting adjourned.
-----------------------------------------------
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]