Versions Compared

Old Version 1

changes.mady.by.user Unknown User (schofield)

Saved on

compared with

New Version Current

changes.mady.by.user Unknown User (schofield)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

ROOM:

TOPIC:

CONVENER:

SCRIBE: Joost

# of ATTENDEES: Roland, Lalla, Motonori, Schuko, Joost, Roland vR-D, Marina, Klaas.

MAIN ISSUES DISCUSSED 

  1. Does it make sense to move from Identity Providers to Attribute Providers?
  2. We can expect that more users are going to want to use social logins instead of university login (bring your own identity).
  3. This means that Home Organisations can "outsource" authentication to social login providers, and only do identity vetting and issue attribute statements to relying parties.
  4. What's in it for:
    1. Home organisations: lose responsibility for authentication, securely storing passwords
    2. End users: need not use different identities in different domains, or lose their identities when leaving the home organisation
    3. Reling parties: obtain some attributes more easily (e.g. self asserted attributes), richer sets of attributes, (VOs?)
  5. As discussed on day 1 of TF-EMC2:
    1. what AP pattern fits different use cases best?
    2. How to differentiate between attributes obtained from different sources (e.g. self-asserted vs HO-asserted)
  6. We need use-cases to answer these questions
    1. first get clear what the problem is
    2. Some use-cases will have alternative solutions ,e.g. transition prestudent-student-leave people from outside the federation
    3. VOs

ACTIVITIES GOING FORWARD / NEXT STEPS

...