<mlagally_> scribe: mlagally
<inserted> scribenick: mlagally_
mkoster: security discussion in
last meeting: typical setup, how to use oauth and other
technologies
... TLS, access control lists, ...
mccool: security is key at
plugfest
... need use cases, obvious technologies
... goal is a draft presentation by next week
... different levels of complexity - pre-shared keys, ...
... controlling access to resources is important, e.g. use of a
semantic search engine could be expensive
... design question for security - per method or for entire
solution
mkoster: with ACL you have
per-resource control of access, role based
... this is not much different
... embed ACLs in datastructure or separate in a database
mccool: don't have last week's presentation?
mkoster: will put slides into
plugfest directory
... need to describe how does a proxy work, protocol bindings,
annotations in semantic interoperability
... how does scripting, protocol binding work together
mccool: need architecture TF to sort this out
mkoster: we need system level document
to get this right
... we should have TF or other meeting to take back plugfest
results into architecture
mccool: capture plugfest findings in a document, could be informative
mkoster: currently no security / discovery in architecture document, could be a separate paper
kaz: matsukura-san and
kajimoto-san were talking about this too
... so we should talk with them about how to proceed
... unfortunately they are not here, though
mkoster: will publish slides on the
5-6 areas, we can refine ...
... details need to be fleshed out
kaz: at some point we need to add
issues to the plugfest repo
... can add plugfest label
mkoster: plan is to update slides and
create github issues to get this started
... aob?
... meeting adjourned
... reconvene next week