[Openid-specs-risc] Re-chartering of RISC Working Group

Adam Dawes adawes at google.com
Wed Nov 13 01:07:41 UTC 2019 

This makes a lot of sense to me. I support the change.

On Tue, Nov 12, 2019 at 4:57 PM Richard Backman, Annabelle via
Openid-specs-risc <openid-specs-risc at lists.openid.net> wrote:

> Hello RISC Working Group,
>
> The RISC Working Group was formed to take on the challenge of sharing
> signals and events related to user account security. Since then, additional
> signal sharing use cases have come into the picture, most notably those
> that the Continuous Access Evaluation Protocol (CAEP)
> <https://cloud.google.com/blog/products/identity-security/re-thinking-federated-identity-with-the-continuous-access-evaluation-protocol>
> aims to address. Given the significant overlap in requirements and the
> fundamental problem to be solved (i.e., A needs to inform B about something
> related to C), there is an opportunity for us to collaborate across a
> broader spectrum of use cases than those that are the focus on the RISC
> Working Group today.
>
>
>
> To that end, after discussions between myself, Marius, members of the CAEP
> discussion group, and members of the OIDF board, we decided to re-charter
> the RISC Working Group as the “Shared Signals and Events” Working Group,
> with a broader mandate to “enable the sharing of security events, state
> changes, and other signals” across a broad variety of subjects, and for a
> broad variety of authentication/authorization-related purposes. This change
> will allow us to bring the CAEP work into the working group and advance it
> alongside the on-going RISC work. RISC will benefit by having more parties
> implementing shared components (such as the event stream management API,
> which currently lacks any production implementation), CAEP will benefit by
> having a home for their work in the OIDF and by leveraging the work that
> has already been done within RISC, and both will benefit by the development
> of common protocols and infrastructure for the exchange of security events.
>
>
>
> We are circulating the draft revised charter and collecting feedback this
> week. Barring any significant concerns, we will submit it to the OIDF
> Specifications Council next week. Please take this opportunity to review
> the draft revised charter (linked below) and share any questions or
> comments you have regarding it or the re-chartering process in general.
>
>
>
> A few notes about what the re-charter means, logistically:
>
>    - Atul Tulshibagwale of Google will join Marius and me as a co-chair
>    of the working group. Atul has been the driving force behind the CAEP work
>    thus far, and we welcome his help in steering this combined group.
>    - Development of CAEP will move from the existing caep-discuss mailing
>    list to the RISC Working Group mailing list.
>    - CAEP documents will be added and tracked within the existing RISC
>    BitBucket repository.
>    - Contributions to CAEP will be subject to the OIDF’s Contribution
>    Agreement <https://openid.net/intellectual-property/>. I believe most
>    organizations involved in CAEP thus far already have executed agreements on
>    file with OIDF, but not all. I believe all executed agreements are
>    available on the OIDF site
>    <https://openid.net/executed-contribution-agreements/>, but don’t
>    quote me on that.
>    - Mailing list and repository names will not change; we will continue
>    to use openid-specs-risc at lists.openid.net. Life isn’t perfect. 😃
>
>
>
> The draft version of the revised charter can be found in the RISC
> BitBucket repository, here:
>
> https://bitbucket.org/openid/risc/src/recharter/working-group-charter.md
>
>
>
> For those interested in understanding more about CAEP, I suggest looking
> through the caep-discuss mailing list archives, available here:
>
>
> https://groups.google.com/forum/?utm_medium=email&utm_source=footer#!forum/caep-discuss
>
>
>
> (Due to different moderation policies, this message is being sent out
> separately to the RISC and CAEP mailing lists. Apologies to those of you
> who are receiving this twice. 😃)
>
>
>
>>
> Annabelle Richard Backman
>
> Co-chair, RISC Working Group, OpenID Foundation
> _______________________________________________
> Openid-specs-risc mailing list
> Openid-specs-risc at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-risc
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-risc/attachments/20191112/88f07027/attachment-0001.html>

More information about the Openid-specs-risc mailing list