Page tree
Skip to end of metadata
Go to start of metadata

Attendees

Voting participants: Ken Dagg, Martin Smith, Mark Hapner

Staff: Ruth

Quorum: As of 2019-12-19, quorum is 3 of 5. There was quorum

Agenda

  1. Administration:
    a.Roll Call
    b. Agenda Confirmation
    c. Minutes Approval:

    d. Action Item Review: action item list
    e. Staff reports and updates - Keeping up with Kantara December 2019 and December Director's Corner
    f. LC reports and updates
    g. Call for Tweet-worthy items to feed (@KantaraNews or #Kantara10)

2. Discussion
a. Develop comments on the updated version of Verified Login Component and Conformance Profile of the Pan Canadian Trust Framework (PCTF)- Comment Sheet attached. Please see full details here
b. Criteria Guidance (Any participant suggestions for adding or enhancing guidance for understanding assessment criteria).
- Issues related to OP-SAC criteria: AL3_CM_CRN#040 and AL3_CM_CRN#050.

3. AoB

Verified Login Component and Conformance Profile of the Pan Canadian Trust Framework (PCTF)

Background 

During the meeting, Ken has walked the IAWG through the initial comments PCTF Verified Login Comments KD.xlsx; Martin and Mark agreed to the comments and suggested some minor changes: 

  • Elaborate on 267-272 and 273-280
  • 371 - 378:  Suggested changes "Change to “A Session is a persistent interaction between a Subject and an end-point, such as a Credential provider or Relying Party. At some point in a Session a subsesion may be initiated to authenticate a Subject. This Authenticated Session Initiation must begin with an Authenticated Credential. The output of the Authenticated Session Initiation is an Authenticated Session, which is persistent interaction between Subject and end-point. If the authentication process conforms to LOA2, then the Authenticated Session must be considered LOA2. If the authentication process conforms to LOA3, then the Authenticated Session must be considered LOA3. Other separate subsessions may be required, for example, to satisfy federation and single sign-on (SSO) use cases. This Trusted Process is optional.” "
  • It was agreed to add the above editions to the final draft and submit the IAWG comments to DIACC. 



  • No labels