<div dir="ltr">Hi all, <div><br></div><div>Thanks to Adam Stiles for compiling notes from today's F2F and to everyone who participated. I think the discussion was very rich and we've got some greater alignment on terminology and some clearer issues that we need to work out wrt bootstrapping streams and the control plane. </div><div><br></div><div>We also agreed that there would be more extensive F2F within Security Events at IETF around the above issues and that we would have a mega RISC F2F May 4-5 at the tail of IIW with a dinner on May 4. I'll send out more details on those later but please save the date if you would like to attend.</div><div><br></div><div>Here is my summary of the conversation:</div><div><br></div><div><div class="gmail-m_-304246070898756925gmail-m_-1031312125397625766m_5984984667812180367WordSection1"><p class="MsoNormal"><span style="font-size:14.6667px">Adam's Deck: </span><a href="https://docs.google.com/presentation/d/1odqjN8mSyFxKChLh46sydRk9uEsjZEB9RUhTW9V1lLs/edit?usp=sharing" target="_blank" style="font-size:12.8px">https://docs.google.com/<wbr>presentation/d/1odqjN8mSyFxKCh<wbr>Lh46sydRk9uEsjZEB9RUhTW9V1lLs/<wbr>edit?usp=sharing</a></p><p class="MsoNormal">Phil's Deck (attached)</p><p class="MsoNormal"><span style="font-size:11pt"><u></u> </span></p><p class="MsoNormal"></p><span style="font-size:14.6667px">Agreed upon </span><span style="font-size:14.6667px">(I hope)</span><span style="font-size:14.6667px"> terminology and basic behavior:</span></div><div class="gmail-m_-304246070898756925gmail-m_-1031312125397625766m_5984984667812180367WordSection1"><ul><li>Explicit Relying Party<br>Relying party to an IDP such that the user account security is reliant on SSO technology like OAuth, OpenID Connect. </li><li>Implicit Relying Party<br>Relying party to an IDP through a side channel account recovery process via email for email identifiers and SMS/Call for phone numbers.</li><li>RISC Authority<br>A service provider where the compromise of an account at that service will directly open up Relying Parties to attack for the same account. For Explicit Relying Parties, the Identity Provider is the RISC Authority. For Implicit Relying Parties, the mailbox provider is the RISC Authority. For Implicit RPs, determining how to become a RISC Receiver involves looking at DNS to find a record that indicates if a mail service is used and then the RP would sign up for a stream with that provider.</li><li>RISC Receiver<br>A service provider that registers to receive SETs from another provider. The term is agnostic as to whether the Receiver is the RISC Authority or implicit/explicit RP though the more common case will be when the Reciever is a Relying Party. RISC receivers are responsible for registering config info to receive events at any given transmitter.</li><li>RISC Transmitter<br>A service provider that sends SETs to other providers. The term is agnostic as to whether the Receiver is the RISC Authority or implicit/explicit RP though the more common case will be when the Reciever is a Relying Party. The transmitter is responsible for offering a way for the Receiver to register to receive events. The Transmitter should also document Stream configuration information.</li><li>Stream<br>The Stream establishes the data plane between the two parties and only flows in one direction. It also represents the bootstrapping configuration information that enables the Transmitter to send events to the Receiver. A service provider may choose to establish multiple Streams with a Transmitter in order to support decentralization or tenancy. The group is still discussing whether or not the Stream should be configurable via API or managed via SCIM.</li><li>Event family<br>The set of SETs that can flow over the data plane. Transmitters should document which RISC event types it plans to publish and allow Recievers to specify exactly which events it wants to receive to enable limit sharing of data. </li><li>Subject<br>The subject around which the event occurred. For most RISC cases this will be the user, as specified with a public identifier like email address or phone number. </li><li>Subscribe/Subscription<br>The action of a Receiver requesting to add a Subject to the Stream. This forms the control plane for the Stream. The subscription action is intended largely for Implicit Relying Parties because Explicit Relying Parties are self-documenting. When a Receiver subscribes to receive events on a subject the Transmitter can provide a response that indicates it would also like to subscribe to events from Receiver for the same user.</li></ul><p></p></div></div><div><br><div class="gmail_quote">---------- Forwarded message ----------<br>From: <b class="gmail_sendername">Adam Stiles</b> <span dir="ltr"><<a href="mailto:Adam.Stiles@lifelock.com" target="_blank">Adam.Stiles@lifelock.com</a>></span><br>Date: Thu, Feb 16, 2017 at 4:06 PM<br>Subject: Notes from Today<br>To: Adam Dawes <<a href="mailto:adawes@google.com" target="_blank">adawes@google.com</a>><br><br><div bgcolor="white" lang="EN-US"><div class="gmail-m_-304246070898756925gmail-m_-1031312125397625766m_5984984667812180367WordSection1"><p class="MsoNormal"><br></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><b><span style="font-size:11pt">RISC F2F February 16, 2017 @ Oracle in Redwood City<u></u><u></u></span></b></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Attendees<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">(Tushar?) Pradhan, PayPal <u></u>
<u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Michael MacLaughlin, Microsoft (<a href="mailto:michmcla@microsoft.com" target="_blank">michmcla@microsoft.com</a>)<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Annabelle Richard Backman, Amazon (<a href="mailto:richanna@amazon.com" target="_blank">richanna@amazon.com</a>) <u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Dick Hardt, Amazon (<a href="mailto:dick@amazon.com" target="_blank">dick@amazon.com</a>)<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Andrew Nash, Confyrm (<a href="mailto:andrew@confyrm.com" target="_blank">andrew@confyrm.com</a>)<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Mike Jones - Microsoft, OID Board Hat<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Phil Hunt, Oracle (<a href="mailto:phil.hunt@oracle.com" target="_blank">phil.hunt@oracle.com</a>) <u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Adam Stiles, Lifelock/Symantec (<a href="mailto:adam.stiles@lifelock.com" target="_blank">adam.stiles@lifelock.com</a>)
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p><p class="MsoNormal"><br></p></div><div class="gmail-m_-304246070898756925gmail-m_-1031312125397625766m_5984984667812180367WordSection1"><p class="MsoNormal"><b><span style="font-size:11pt">What Are The Events?</span></b><span style="font-size:11pt"><br></span></p><p class="MsoNormal"><span style="font-size:11pt">Notes</span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Types of entities<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Mail provider (IDP)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Explicit RP (oauth/sso)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Implicit RP (email recovery). No explicit federation. (update risk model)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">RISC publishers<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">RISC subscribers<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">AD: lines between publishers/subscribers blurred (subscriber can publish back)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Are events authoritative (Email IDP Gmail versus Amazon)?<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">AD: Different parties can do different things<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">PH: P2P sharing…<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">PH: Clearinghouse/gateway… what happens propagating events downstream (Oracle as gateway)?<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Amazon: events only passed to RP and not beyond. Not interested in rebroadcast.<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Is term receiver more clear than subscriber?<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">DH: publish/subscribe overloaded</span><span style="font-size:11pt;font-family:"ms mincho"">
</span><span style="font-size:11pt"><u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Agreement: SET transmitter and SET receiver<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Agreement: term: events<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Implied push model (Google doesn’t want to support pull. Doesn’t want to play with greedy recipients)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Query for email state? Separate use case (valid, but separate)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Term for Enrolling a user?<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Subscription (name is up for debate)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">event types<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">entities<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">domains<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">planes<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Channel - connection between entities<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Registration of interest<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Term: connection/feed/stream (is this a contract)?</span><span style="font-size:11pt;font-family:"ms mincho"">
</span><span style="font-size:11pt"><u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">DH: A connection between entities and events can flow<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Who: subjects. how do we indicate which subjects we have interest about?<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Subject is the who. Don’t necessarily apply to people<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Events are denominated by subjects<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">DH: Likes “subscribes”. Subscribe to these kinds of things about these kinds of subjects<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Agreed: what do we call it when we want to express interest in a subject and a set of events? At a subject level… </span><span style="font-size:11pt;font-family:"ms mincho"">
</span><span style="font-size:11pt"><u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">A subscription: I want to get this kind of information about this kind of subject<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Eg. Google and Amazon setup a connection<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Agreed<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Event family is global for the connection<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Subscription is expressing interest about a subject on a connection<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">We need these terms to live in Secevents spec<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">There can be multiple connections between entities<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Control plane = RPC-style?<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">PH: use SCIM as control plane
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><b><span style="font-size:11pt">Summary</span></b><span style="font-size:11pt"><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Entities establish a connection (Amazon and Google)
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">That connection specifies <u></u>
<u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">which events they are interested in</span><span style="font-size:11pt;font-family:"ms mincho"">
</span><span style="font-size:11pt"><u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">how they will communicate, endpoint, etc.<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">connections are one-directions (established by receiver to receive from transmitter)<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Receivers express interest in subjects on that connection (subscription)
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Control plane is always from receiver to transmitter<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Control plane is fixed for a transmitter across many connections
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Relationship is a connection <u></u>
<u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Data plane is a stream <u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">AD: Let’s get data flowing. Let’s setup connections manually now. How do we help users? Google only interested in receiving events from large RP/IDP
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Broker - middleman <u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Agent - operating on behalf of another. Customer has delegated to you to operate on their behalf
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">PH: Oracle tenancy. Are they brokers, agents? Issue is do we hold keys on behalf and re encrypt to tenancy?
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">DH: <u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:0.5in">
<u></u><span style="font-size:11pt"><span>•<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">A stream is a connection (one direction)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Console/manual (out of band)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Creds (keys)<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">What: events<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:2in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Endpoints<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Initial setup/bulk subscription: Not in spec. Friendly agreement not to DDOS. Assume 1000 TPS<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Control plane<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Subscribe/unsubscribe<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Ping<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1in">
<u></u><span style="font-size:11pt"><span>◦<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Stream<u></u><u></u></span></p>
<p class="MsoNormal" style="margin-left:1.5in">
<u></u><span style="font-size:11pt"><span>▪<span style="font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;font-stretch:normal;font-size:7pt;line-height:normal;font-family:"times new roman"">
</span></span></span><u></u><span style="font-size:11pt">Events<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">AD: we are going to whitelist streams based on contracts with other entities
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Conversation about whether we can use SCIM
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">PH: Why are we inventing a new system?
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><a href="http://www.simplecloud.info/" target="_blank">http://www.simplecloud.info/</a><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">To SCIM or not to SCIM - that is the question
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">How do we discover what IDP is authoritative for an email?
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">DH: Magical DNS record that says this IDP is authoritative for the domain
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Discovery via DNS<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">MM: Do we need to define the authoritativeness?
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">AD: Do we agree that we need to indicate in these events? Whether the transmitter is authoritative?
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">What does authoritative mean? Managing the email identifier?<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">ARB: Some events are low value (events from Google about an account that logged into IMDB via Google Social (and
<a href="http://ymail.com/" target="_blank">ymail.com</a> account) are low value. Events from Yahoo would be high value.
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Next F2F <u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Next F2F @ SecEvent @ IETF <u></u>
<u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">Then do F2F @ IIW, Thursday afternoon, dinner. Friday morning to wrap by mid afternoon. AD to coordinate. MM to check on space.
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">What is boundary between SecEvent and RISC?
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt">DH: Stream is clearly in SecEvent.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11pt"><u></u> <u></u></span></p>
<p class="MsoNormal"><u></u> <u></u></p>
</div>
<hr>
The information contained in this transmission may contain privileged and confidential information. It is intended only for the use of the person(s) named above. If you are not the intended recipient, you are hereby notified that any review, dissemination,
distribution or duplication of this communication is strictly prohibited. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message.
<hr>
</div>
</div><br><br clear="all"><div><br></div>-- <br><div class="gmail-m_-304246070898756925gmail-m_-1031312125397625766gmail_signature"><div dir="ltr"><div style="line-height:1.5em;padding-top:10px;margin-top:10px;color:rgb(85,85,85);font-family:sans-serif;font-size:small"><span style="border-width:2px 0px 0px;border-style:solid;border-color:rgb(213,15,37);padding-top:2px;margin-top:2px">Adam Dawes |</span><span style="border-width:2px 0px 0px;border-style:solid;border-color:rgb(51,105,232);padding-top:2px;margin-top:2px"> Sr. Product Manager |</span><span style="border-width:2px 0px 0px;border-style:solid;border-color:rgb(0,153,57);padding-top:2px;margin-top:2px"> <a href="mailto:adawes@google.com" target="_blank">adawes@google.com</a> |</span><span style="border-width:2px 0px 0px;border-style:solid;border-color:rgb(238,178,17);padding-top:2px;margin-top:2px"> <a href="tel:(650)%20214-2410" value="+16502142410" target="_blank"><wbr>+1 650-214-2410</a></span></div><br></div></div>
</div></div>