technical-discuss - Re: [InC-Technical] Split InCommon into R&S and non-R&S federations?
Subject: InCommon Technical Discussions
List archive
- From: Mark Scheible <>
- To: "Farmer, Jacob" <>
- Cc: Nick Roy <>, "" <>
- Subject: Re: [InC-Technical] Split InCommon into R&S and non-R&S federations?
- Date: Fri, 31 Mar 2017 13:18:48 -0400
- Ironport-phdr: 9a23:TjaCEh3PoYFXOcQWsmDT+DRfVm0co7zxezQtwd8ZseMQL/ad9pjvdHbS+e9qxAeQG96KtrQV0qGP6/mocFdDyK7JiGoFfp1IWk1NouQttCtkPvS4D1bmJuXhdS0wEZcKflZk+3amLRodQ56mNBXdrXKo8DEdBAj0OxZrKeTpAI7SiNm82/yv95HJbQhFgDqwbal2IRmrogndq9UajZZ/Iast1xXFpWdFdf5Lzm1yP1KTmBj85sa0/JF99ilbpuws+c1dX6jkZqo0VbNXAigoPGAz/83rqALMTRCT6XsGU2UZiQRHDg7Y5xznRJjxsy/6tu1g2CmGOMD9UL45VSi+46ptVRTlkzkMOSIn/27Li8xwlKNbrwynpxxj2I7ffYWZOONjcq/BYd8WQGxMVdtTWSNcGIOxd4kAD+QBM+hWrIfzukUAogelCAa2GO/i0CVFimPq0aA41ekqDAHI3BYnH9ILqHnaq8/6NL0RUeuo0afH0TXDYO1X2Tjm7IjHbA0qrPaJXbJrbcXRyVcgFwLegVWUt4PoJDaV2f4Ms2if9OVgUu2uh3Qiqw5tpDig2t0gio7ThoIa013J8zhyzogyJd29UkF7YNikHYNRtyGcK4R2RcYiQ2RvuCY80LEGvoS7fCcMxZ86xBDfc+SKf5aJ7x7/VuucJDl4iXF+d76jghu//lSsxvHgWcSxzFlGsipIn9zJu3wTyRDc9M6KQeZn8Ei7wzaAzQXT5/lEIU8qkarbLIYswrsqmZoStUTPBzH2mEbqgKOPeUQo5Pak5Pr9brXpoZ+cMIB0igXgPag0hsO/BuE4PhAPX2id5+u8yKXu8VP4TblWjPA7l6fZvZPBKsgHo6O0DBNZ3po/5Bu6EziqzNQVkHwCIV5bZh6IkZDlO1TUL/D5Cfe/jU6skDBux/3eO73hGYnCLnjdn7fgZrl971BTxRE2zd9F5pJUDqoOIPX8W0PrsdzXEhk5PBCuz+bgEtV92ZsSWXiTDa+BLKPSrViI6/ouI+mKeIAVvzP9K/0i5/7ol3M5nkUdfaaw0ZsLdn+3AvRmI0OYYXXwmNgBFX4GsRc/TOzxlFKCTCVTZ22pUqI45zE7E56mDZzdSoy3gbyB2ju7EYNMZmBAFF+MDWnke5+aVPgRdSLBavJniSEOAL2oSos90kO1pQriwpJmKOHT/ygfs9Tkztcm2+qG3z877zl5FYDV8WiGSGs+1jcKXzE/xqVyu2R81xGO3bUu0NJCEtkGwvpTUU8BPp7RzuZ+BpimXxnKftqIQlKratCvADU7ScJ3xtQIaAB6Adr03UOL5DajH7JAz+/DP5cz6K+JmiGpf8s=
I think the framing of the discussion is really important. Are we really talking about two discrete cohorts? Or a base cohort + a ‘beta’ cohort that is willing to bear extra risk/burden/etc. in order to be able to evolve more quickly?
In the priorities, one group is characterized as a collection of institutions that “…just want streamlined access to vendor SPs.” I would argue that is the most critical use case for federated authentication, because it is what justifies the investment in IAM infrastructure. Our institutions desire identity integration Canvas, Google Apps, Box, etc. and are willing to commit resources to that end. It’s from that baseline that we’re able to carve out x% of someone’s time to focus on these other things.
Now, that doesn’t mean it’s the only use case – I agree that growing support of R&S is critical and it is a key place to focus energy moving forward. But if we want to grow the IAM resource pool – both human and fiscal – campus IAM is probably where there is the most room for growth.
Jacob
From: [mailto:] On Behalf Of Nick Roy
Sent: Thursday, March 30, 2017 3:00 PM
To: Mark Scheible <>
Cc:
Subject: Re: [InC-Technical] Split InCommon into R&S and non-R&S federations?
+1 to a BoF, but we should frame it as something like,
"Federation of the Willing" or "Solving the Federation Value Proposition Problem for Large Scale Research"
NickOn 3/30/17 12:35 PM, Mark Scheible wrote:
But "Splitting InCommon" made for a great Subject, didn't it?!!!
I think the comments made in this thread have a lot of merit. I also like Albert's suggestion we carry on the discussion at a "BoF" at Global Summit (possibly an impromptu BoF or Social Gathering). We're also missing REFEDS input. Should we consider soliciting REFEDS members to join the technical-discuss list?
Certain suggestions in this thread could be part of the "Attribute Release 2.0" Working Group Charter.
Just some thoughts...
Mark
Mark A. Scheible
Sr. Lead IAM Solutions Architect
MCNC, Research Triangle Park, NC
Office: (919) 248-1997
Cell: (919) 609-8595
Fax: (919) 248-8419
On Thu, Mar 30, 2017 at 2:12 PM, Nick Roy <> wrote:
Splitting the federation would be a significant step in terms of policy, process, operations, resourcing, priorities, etc. It is not something that either the TAC or InCommon Operations can make a determination on. This would be squarely in the realm of Steering/T&I leadership decision making.
Best,
Nick
On 3/29/17 8:13 AM, Mark Scheible wrote:
Scott,
Thanks for your updates to the Work Plan. They are inline with what our thoughts have been, but the perspective you provided helps clarify the issues that need to be addressed. [I've decided to post this to the technical-discuss list to get some conversation flowing.]
In particular the following comment:
********************
Break InCommon into two effective federations:
One federation would be those campuses that want to support a national infrastructure that facilitates collaboration in higher education and research. It would require IdPs to support the R&S entity category. The other federation would be for campuses that just want streamlined access to vendor SPs. Those campuses that want to collaborate could then evolve faster.
********************
I'm not sure exactly what it is that you're proposing here (I understand the reasons, but didn't know whether you had a proposal), but perhaps creating a separate aggregate of R&S entities would accomplish what you're suggesting. R&S SPs could then choose to only import the R&S aggregate. (Maybe a very poor suggestion, but I thought I'd throw it out there to start the conversation. Feel free to poke holes in it, or offer other suggestions).
Assuming InCommon Ops would agree to a separate aggregate or another solution, I wonder about the pros and cons of separating entities and the impact it might have on further adoption of R&S and attribute release. It's certainly worth the discussion.
Mark
Mark A. Scheible
Sr. Lead IAM Solutions Architect
MCNC, Research Triangle Park, NC
Office: (919) 248-1997
Cell: (919) 609-8595
Fax: (919) 248-8419
To unsubscribe from this list, send email to with the subject: unsubscribe technical-discuss
- Re: [InC-Technical] Re: Split InCommon into R&S and non-R&S federations?, (continued)
- Re: [InC-Technical] Re: Split InCommon into R&S and non-R&S federations?, Janemarie Duh, 03/30/2017
- Re: [InC-Technical] Re: Split InCommon into R&S and non-R&S federations?, Steven Carmody, 03/30/2017
- Re: [InC-Technical] Re: Split InCommon into R&S and non-R&S federations?, Nick Roy, 03/30/2017
- Re: [InC-Technical] Re: Split InCommon into R&S and non-R&S federations?, Tom Scavo, 03/30/2017
- Re: [InC-Technical] Re: Split InCommon into R&S and non-R&S federations?, Wu, Albert, 03/30/2017
- Re: [InC-Technical] Re: Split InCommon into R&S and non-R&S federations?, Cantor, Scott, 03/30/2017
- Re: [InC-Technical] Split InCommon into R&S and non-R&S federations?, Nick Roy, 03/30/2017
- Re: [InC-Technical] Split InCommon into R&S and non-R&S federations?, Mark Scheible, 03/30/2017
- Re: [InC-Technical] Split InCommon into R&S and non-R&S federations?, Nick Roy, 03/30/2017
- RE: [InC-Technical] Split InCommon into R&S and non-R&S federations?, Farmer, Jacob, 03/31/2017
- Re: [InC-Technical] Split InCommon into R&S and non-R&S federations?, Mark Scheible, 03/31/2017
- RE: [InC-Technical] Split InCommon into R&S and non-R&S federations?, Farmer, Jacob, 03/31/2017
- Re: [InC-Technical] Split InCommon into R&S and non-R&S federations?, Nick Roy, 03/30/2017
Archive powered by MHonArc 2.6.19.