Minutes: SALSA-NetAuth call 27-Oct-05

Minutes: SALSA-NetAuth call 27-Oct-05

*Attendees*
Steve Olshansky, Internet2 (stand-in chair)
Kevin Amorin, Harvard U.
Rich Cropp, Penn. State U.
Charles Yun, Internet2
Katherine Strojny, Internet2 (scribe)

*Action Items*

New:
(revised AI list)

[AI] {SteveO} will add a new section to the NetAuth website for "Related Work" and will solicit suggestions for content from the list.

[AI] {Group} Send suggestions for presentations or BoF sessions to be held during the upcoming Security Professionals conference April 10-12, 2006. Proposals are due by November 28. More conference information is available at the following link: http://www.educause.edu/sec06

[AI] {Kevin Amorin} will contact Kevin Miller about the possibility of setting up a wiki for this list in conjunction with an existing platform that Kevin Miller hosts.

[AI] {Kevin Amorin} will send information to the list about EAP (Extensible Authentication Protocol) activity currently underway in IETF.

[AI] {Chris} will publish information about the NERCOMP SIG to be held February 7, 2006, concerning the topic of Automated Network Security Policy.
     http://www.nercomp.org/calendar.html

Carry Over:

[AI] {Individuals} who look into the IETF Distributed Security
(distsec) mailing list are requested to provide feedback to the group on whether the activities are of interest to this group. To join the list, refer to the following link: https://www.machshav.com/mailman/listinfo.cgi/distsec

[AI] {Chris} and {SteveO} will send a note to the WG via the list soliciting suggestions for the future direction of the WG.

[AI] {Chris} will put together a few slides describing intersection points between SALSA NetAuth and SALSA NetAuth-FWNA.

[AI] {Chris} will send the list of vendor questions developed by the WG during this call to the group via the list. This will move forward in collaboration with the effective practice group at EDUCAUSE.

[AI] {Chris} will arrange vendor discussions for a subsequent call.

[AI] {Chris} will post message to the NetAuth and FWNA lists soliciting volunteers to develop an outline of issues for NetAuth in a federated environment.

[AI] {Chris} will solicit from the WG contributions about NetAuth vendor solutions currently being used.

[AI] {Individuals} will send in case studies for potential use in the Strategies document.

*Discussion*

The agenda included discussion about the upcoming events (Security Professionals conference and a NERCOMP SIG), the recent Reconnections workshop, and development of a wiki for policy solutions.

Intellectual Property Reminder:
The Internet2 intellectual property policy can be found here:
       http://members.internet2.edu/intellectualproperty.html

Minutes from the last call were approved. Action items from the prior call were reviewed. Chris had completed the action item about sending distsec sign-up information to the list. Remaining AIs were carried over.

The next Security Professionals conference will be held April 10-12, 2006. Internet2 and EDUCAUSE are sponsors, and some group members may be presenting. [AI] {Group}was requested to send suggestions for presentations or BoF sessions to be held during the upcoming Security Professionals conference April 10-12, 2006. Proposals are open until November 28. More conference information is available at the following
link:
     http://www.educause.edu/sec06

Chris Misra will be running a NERCOMP SIG (Special Interest Group) meeting on February 7, 2006, with a topic of Automated Network Policy Enforcement. [AI] {Chris} will publish more about this SIG. Information can be found as a link from the NERCOMP SIG calendar:
     http://www.nercomp.org/calendar.html

Kevin A reported that the IETF EAP (Extensible Authentication
Protocol) workgroup is proposing an inner method to EAP. [AI] {Kevin A} will send information to the list about IETF EAP activity.

Kevin suggested that maybe we should recruit one of the NetAuth members to be a liaison to TNC, which has a liaison program. This may be an action item for the group to discuss.

Kevin is interested in setting up a wiki listing policy solutions related to NetAuth topics, if members are interested. The primary advantage of using a wiki would be ability to add links. The group discussed where a wiki might be hosted. It was noted that Kevin Miller is already hosting a wiki for FWNA, which might be another potential host site. [AI] {Kevin Amorin} will contact Kevin Miller about the possibility of setting up the wiki for this list in conjunction with the existing platform. Steve mentioned that there is work underway toward making collaborative tools such as wikis available, but when this will come to fruition is not yet clear.

Charles and Steve reported on the "Reconnections" workshop held earlier in the week in Chicago. The workshop theme centered on manageability in long-term future network design, and if you could redesign, what would you do and how would you get there from here? Charles stated that almost everybody agrees that, with regard to networks design, we can't continue the way we are. Issues included the ability to refuse packets, separate research networks, personal lambdas and associated security. Presentations will be posted as they are submitted, and a document from the workshop will be forthcoming. The group may have opportunity to consider its involvement in various solutions.

Agenda items relating to the components document and the recent EDUCAUSE conference were tabled until the next conference call, which will be held November 10. Agenda and bridge will be posted to the list prior to the call.