<mlagally_> scribe: mlagally

<inserted> scribenick: mlagally_

mkoster: security discussion in last meeting: typical setup, how to use oauth and other technologies
... TLS, access control lists, ...

mccool: security is key at plugfest
... need use cases, obvious technologies
... goal is a draft presentation by next week
... different levels of complexity - pre-shared keys, ...
... controlling access to resources is important, e.g. use of a semantic search engine could be expensive
... design question for security - per method or for entire solution

mkoster: with ACL you have per-resource control of access, role based
... this is not much different
... embed ACLs in datastructure or separate in a database

mccool: don't have last week's presentation?

mkoster: will put slides into plugfest directory
... need to describe how does a proxy work, protocol bindings, annotations in semantic interoperability
... how does scripting, protocol binding work together

mccool: need architecture TF to sort this out

mkoster: we need system level document to get this right
... we should have TF or other meeting to take back plugfest results into architecture

mccool: capture plugfest findings in a document, could be informative

mkoster: currently no security / discovery in architecture document, could be a separate paper

kaz: matsukura-san and kajimoto-san were talking about this too
... so we should talk with them about how to proceed
... unfortunately they are not here, though

mkoster: will publish slides on the 5-6 areas, we can refine ...
... details need to be fleshed out

kaz: at some point we need to add issues to the plugfest repo
... can add plugfest label

mkoster: plan is to update slides and create github issues to get this started
... aob?
... meeting adjourned
... reconvene next week