Minutes: SALSA NetAuth call 2-Feb-06

*Attendees*
Chris Misra, University of Massachusetts (chair)
Kevin Amorin, Harvard University
Rich Cropp, Penn State University
Robert Lowe, Lawrence University
Lynn Little, Internet2
Steve Olshansky, Internet2
Charles Yun, Internet2
Katherine Strojny, Internet2 (scribe)

*Action Items*

New: [AI] {Chris} will clean up the action item list.

[AI] {Kevin} will email the list to solicit content for the new wiki.

Carry Over:

[AI] {Individuals} are requested to send in case studies for potential use in NetAuth documents.

[AI] {Kevin} will email the list and see if anyone wants to join the case studies project.

[AI] The following individuals volunteered to write case studies, with a soft deadline of March 30: - {Chris Misra}: Layer 2 & 3 isolation using NetReg and a homegrown switching system - {John Moore}: Lockdown Networks and VLAN switching - {Kevin Amorin}: ARP manipulation and VLANs

[AI] People are sought who can draft case studies for Bradford or Cisco Clean Access. If anyone knows of candidates, please contact Chris.

[AI] {Chris and SteveO} will work with EDUCAUSE to see that the case study work can be fit into the Effective Practices Guide.

[AI] When the ResNet survey goes live, {Chris} will post a notice to the list in order to encourage participation.

[AI] {Group} will take a look at the wiki and start populating useful links for components-related content, toward developing a repository of useful information and understanding the solution space better.

[AI] {Group} will delegate liaisons for TNC and NAC.

[AI] {Chris} will coordinate with the Effective Practices Guide working group at EDUCAUSE for anything this group can provide, such as written material or resources, as they revise the guide.

[AI] {SteveO} will add a new section to the NetAuth website for "Related Work" and will solicit suggestions for content from the list.

[AI] {Kevin Amorin} will send information to the list about EAP (Extensible Authentication Protocol) activity currently underway in IETF.

[AI] {Individuals} who look into the IETF Distributed Security (distsec) mailing list are requested to provide feedback to the group on whether the activities are of interest to this group. To join the list, refer to the following link: https://www.machshav.com/mailman/listinfo.cgi/distsec

[AI] {Chris} and {SteveO} will send a note to the WG via the list soliciting suggestions for the future direction of the WG.

[AI] {Chris} will put together a few slides describing intersection points between SALSA NetAuth and SALSA NetAuth-FWNA.

[AI] {Chris} will send the list of vendor questions developed by the WG during this call to the group via the list. This will move forward in collaboration with the effective practice group at EDUCAUSE.

[AI] {Chris} will arrange vendor discussions for a subsequent call.

[AI] {Chris} will post messages to the NetAuth and FWNA lists soliciting volunteers to develop an outline of issues for NetAuth in a federated environment.

[AI] {Chris} will solicit from the WG contributions about NetAuth vendor solutions currently being used.

*Discussion*

Intellectual Property Reminder: The Internet2 intellectual property policy can be found here: http://members.internet2.edu/intellectualproperty.html

The call included reminders of upcoming events, plus discussion of the new wiki and case study status. [AI] {Chris} will clean up the list of action items.

Next Tuesday (7-Feb-06) is the NERCOMP SIG on Automated Network Policy Enforcement.
http://www.nercomp.org/calendar.html

Kevin reported that the new wiki is available, with links for FAQ and open source NetAuth solutions but no data:
http://netauth.ksg.harvard.edu

This site is temporary, and content will migrate to the Internet2 wiki platform once it is available. [AI] {Kevin} will solicit the list for content. The hope was voiced that the wiki can serve as a useful link to provide when answering questions that often arise on mailing lists. SteveO updated the wiki link on the NetAuth web page. How is authentication and spam handled on the new wiki? Right now, users have to be registered in order to edit, but anyone can view. The accounts are local, and users have the ability to register themselves.

Confluence, the wiki platform that Internet2 will be providing, is targeted to be available in early second quarter, but there is no firm date yet.

Robert has identified someone willing to do a Clean Access case study and has forwarded the Effective Practices Guide examples that SteveO sent to the list.

The focus of this group for the period of the next couple calls will be to populate the wiki and continue working on case studies, so the calls are likely to be brief. After the soft deadline of March 30, the group will use call time to review case studies.

Chris reported that Federated Wireless NetAuth is going well. There will be an 802.1x BoF at the Spring I2 Member Meeting. He invited people to join the FWNA call on alternating Thursdays if interested.

The next call will take place 16-Feb-06. Agenda and bridge will be sent to the list in advance of the call.