UC Identity Management Conference Call
- 6/16/2004 - Notes
Participants
- Bob Brandriff, UCOP
- Bruce James, UCOP
- Gabe Lawrence, UCSD
- Datta Mahabalagiri, UCLA
- Brian Roode, UCI
- David Walker, UCOP
- David Wasley, UCOP
Shibboleth CAMP
David Wasley will be providing a poster presentation on our project at
CAMP later this month. Other members of our project are welcome
to join him.
Invitation to Join InCommon
David Wasley received an invitation for UC campuses be charter members
of InCommon. He has forwarded that to Tony Wood, Steve Franklin,
Michael Schilling, and Kris Hafner (the official Internet2 members for
UCSD, UCI, UCLA, and UCOP, respectively) to ensure that all of the
project participants can be included.
Standards for Identity Management
As part of this project's evaluation phase, we will be recommending
standards for campus identity management within UC. The three key
areas where standards are needed that have been identified so far are:
- Initial identification. For employees, this should be
covered through UC's
use of the federal Form I-9 during the hiring process.
Students, however, are a different story, although it may not be
necessary to have the same standards for students.
- Issuance of credentials. We will look to the OMB
and draft
NIST standards for guidance.
- Technology. This will likely be the easiest of the
areas. Again, the NIST work can help us.
Schedule
- All three campuses have joined InQueue and have certificates
trusted by that federation. InCommon will have more restrictive
requirements on certs, but we can deal with that later.
- We agreed to exchange everyone's current attribute definitions on
the mailing list. We will then synthesize a common
definition. David Walker will establish a repository for those
definitions.
- The work to make UCFY a Shibboleth target has fallen behind
schedule. We expect to have something ready for testing with the
campuses by July 6.
- The new version of the schedule now has added tasks in an
"Evaluation" phase. During that phase, we will create
recommendations for policy standards and future technology work to the
ITLC. The ITLC would then vet the standards with groups such as
the COVCA and campus controllers.
- We will soon need to address user support issues.
Our Next Meeting
- The next conference call will be at 9:00a on June 30, 2004.
David
Walker - 6/16/2004