Shibboleth/Admin Guide Policy Meeting Notes: 2006.02.06

Attending: Bruce Vincent, Russ Allbery, Jon Pilat, Eric Nakagawa

Action Items:

  2/6.1  Bruce: Write a position paper advocating the inclusion of shib
           as an approved authentication technology for people
           authenticating to stanford.edu services and a section on
           federated identity management/shib/cross-realm kerberos.
           These would be proposed as changes to Admin Guide 64 (3/1)

  2/6.2  Bruce: Write a position paper advocating the creation of an
           office (or authority for an existing office) to be the party
           responsible for the assertion of Stanford's identity digitally.
           This position paper should also include a statement on how
           services/machines are authenticated as part of stanford.edu.
           This assertion is required for shibboleth to assert
           stanford.edu identity to external institutions and/or
           federations. (early March)

  2/6.3  Eric: Replace "authentication service" with "authentication
           services" in the sentence: "However, system owners are
           strongly encouraged to rely on the authentication services
           provided by Stanford's central computing organization rather
           than using system-specific authentication methods" in AG 64.1,
           2nd paragraph.

Notes:

For both position papers, vet with Eric for business/policy needs and vet
with Russ for technical concerns, then we'll move up the management chain.

These position paperts should be sent to Bill Clebsch, Randy Livingston,
Tina Darmohray, Susan Weinstein, and Steve Jung.  Assuming there is
general agreement, Bruce and Eric will work up appropriate language for
an admin guide revision.