Subject: Draft Minutes from SSTC Telecon (Tuesday 24 October 2017)
Minutes of SSTC Conference Call Date: Tuesday 24 October 2017, 12:00pm ET. 1. Roll Call & Agenda Review. Attendance Voting Members Scott Cantor Internet2 Thomas Hardjono M.I.T. Hal Lockhart Oracle Members David Staggs Veterans Health Administration 2. Need a volunteer to take minutes. Hal 3. Approval of minutes from previous meeting(s): - Tuesday 1 August 2017 meeting: https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.oasis-2Dopen.org_archives_security-2Dservices_201708_msg00001.html&d=DwIFAg&c=RoP1YumCXCgaWHvlZYR8PQcxBKCX5YTpkKY057SbK10&r=OXRy9Pk5UKmFnEkLAVgkCFoltkUS2kajg81QlTTv6pI&m=CoTGmhY5YBgN8eXYfXuVhePI2nQaBlmjqRJh7XNYeIs&s=0yRpynzTpAEoX3UMuqYbdmmdYbtnsoq20O9br2ldV6A&e= Unanimously Approved 4. AIs & progress update on current work-items: (a) Current electronic ballots None (b) Status report (Madalina): - "Protocol Extension for Requesting Attributes per Request" No report. Madalina not present. (c) New pair of SAML identifier attributes (Scott) Scott briefly noted that the document provides detailed background on the problem being solved. In short, the use of the Subject Name Id construct has caused confusion, a lack of interoperability and potentially security risks. This stems in part from the fact that it duplicates the Attribute and also from unclear guidance. The profile attempt to clear away the confusion by introducing two new Attributes with clearly defined semantics. Scott motioned that the TC approve SAML V2.0 Subject Identifier Attributes Profile Version 1.0, Working Draft 03, 15 September 2017 as a Committee Specification Draft and that the Chair request that TC Admin conduct a 30 day public review of the document. Approved unanimously (d) Any updates: Protocol extension for role change (Rainer). No report. Rainer not present. 5. Other Items: None 6. Next meetings: - Tuesday, 16 January 2018 (Note that we are meeting roughly every 3 months or 12 weeks).