INTERNATIONAL TELECOMMUNICATION UNION JCA-IdM TELECOMMUNICATION STANDARDIZATION SECTOR LS 001 English only STUDY PERIOD 2005-2008 Original: English Question(s): Ref.: Source: Co-Conveners of the Joint Coordination Activity for Identity Management (JCAIdM) Title: Initial Meetings of the Joint Coordination Activity for Identity Management (JCA-IdM) and of the Global Standards Initiative for Identity Management (IdMGSI) LIAISON STATEMENT To: All ITU-T SGs, JCA-NGN, JCA-NID, JCA-HN, JCA-IPTV, ITU-D, ISO/IEC JTC 1/SC 6, SC 27, SC 37, ETSI, ATIS, 3GPP, IETF Security Area, OECD, Liberty Alliance, OASIS, OMA (Open Mobile Alliance), NIST (National Institute of Standards and Technology), W3C, Concordia, Eclipse (Higgins Project), InCommon, Open ID Foundation, The Open Group, Shibboleth, GSMA Approval: Co-Conveners of JCA-IdM For: Action Deadline: 15 January 2008 Richard Brackney DoD USA Olivier Dubuisson France Telecom France Chae-Sub Lee ETRI Korea Contact: Tél.: +33 2 96 05 38 50 Email: olivier.dubuisson@orange-ftgroup.com Introduction The Telecommunication Standards Advisory Group (TSAG) which manages the overall work of the ITU-T, at its December 2007 meeting, approved the creation of the Joint Coordination Activity on Identity Management (JCA-IdM) together with a Global Standards Initiative for Identity Attention: Some or all of the material attached to this liaison statement may be subject to ITU copyright. In such a case this will be indicated in the individual document. Such a copyright does not prevent the use of the material for its intended purpose, but it prevents the reproduction of all or part of it in a publication without the authorization of ITU. -2JCA-IdM LS 001 Management (IdM-GSI). The purpose of the JCA-IdM is to coordinate the ITU-T Identity Management (IdM) work among ITU-T Study Groups. Other SDOs, consortia and forums are invited to nominate one or two representatives. The JCA-IdM will provide a report on its work to the TSAG which next meets in July 2008. The IdM-GSI is a grouping of ITU-T Study Group Rapporteur meetings working on IdM for telecommunications. The terms of reference for these two entities are attached in Annexes 1 and 2 respectively. For internal ITU-T SG coordination and external outreach, it is important to emphasize the broad meaning that we give to the term “Identity Management”. For the purposes of the JCA-IdM, it includes all the many components and management processes of managing and using identities for users, network elements, objects, etc., to include credentials, identifiers, attributes, and patterns. Membership of the JCA-IdM The membership of the JCA-IdM is composed of representatives from the ITU Study Groups and invited representatives from recognized IdM external SDOs, consortia and forums. It would be helpful if the ITU Study Groups and forums external to the ITU could provide the co-Conveners the name, organization, telephone number and email address for one or two individuals that can serve as a representative to the JCA-IdM Specific Tasks of the JCA-IdM In order to fulfil its objectives, the JCA-IdM will: Assist ITU-T Study Groups to identify, enhance, and progress their IdM activities in a manner that is consistent and harmonized with the ensemble of IdM work; Collaborate and seek cooperation from external bodies working in the field of IdM and enable effective two-way communications with these bodies; Develop an ITU-T IdM Standardization Roadmap; Develop, coordinate, and publish a ITU-T IdM problems list; Expand ITU-T coordination with outside organizations involved in IdM; Maintain a JCA-IdM email list of invited representatives of ITU Study Groups and other SDOs, consortia and forums for its coordination purposes; Maintain a moderated IdM email list for communication about the work of the JCA-IdM; Consider and coordinate any new Questions in the area of IdM; and Manage the IdM-GSI events and activities. Working Methods of the JCA-IdM The JCA-IdM will progress its work by face-to-face meetings held in conjunction with relevant ITU-T meetings (e.g., Study Group meetings, workshops, joint Rapporteur meetings, GSI events, etc.), supplemented by email correspondence and teleconference calls. Inaugural meetings The first IdM-GSI event will occur on 18 and 21 January 2008 in Seoul, Korea, and will involve Q.6/17 and Q.15/13. Representatives from interested external SDOs, consortia and forums are -3JCA-IdM LS 001 invited to contact the Rapporteurs (Abbie Barbir, abbieb@nortel.com; Igor Faynberg, faynberg@alcatel-lucent.com) if they want to participate. The first JCA-IdM meeting will occur on 22 January 2008 at the same venue. For those who will not be able to attend in person, the following telecommunication bridge will be available from 9 am to 6 pm, Seoul time (GMT +8): Telephone Number: +33 1 58 99 29 15 Please inform the co-Conveners of intended remote participation. More details of these IdM related events in Seoul are found in TSB Circular 174, revision 1 (http://www.itu.int/md/meetingdoc.asp?lang=en&parent=T05-TSB-CIR-0174) and available on the JCA-IdM website at http://www.itu.int/ITU-T/jca/idm/index.html. Other IdM GSI events are planned during the 7 – 18 April 2008 SG 17 joint meeting with ISO/IEC JTC 1/SC 6, and during the 14 – 23 May NGN-GSI event. Both events will be held in Geneva. Detailed meeting information (including final dates) will be available on the IdM-GSI website at http://www.itu.int/ITU-T/idm/index.html. Contributions to the first JCA-IdM meeting For the first JCA-IdM meeting on 22 January, we request contributions/briefings that describe: The IdM work that is occurring in your study group/organization, to include objectives, scope, milestones and other information that you believe would be useful to the JCA-IdM; Your views on new IdM work items that could be undertaken by the ITU-T; What material in the reports of the Focus Group on IdM (see Annex 3) are relevant to your activities and should be pursued by your organization; and What is your definition and scope of IdM. Please send contributions to the TSB secretariat by electronic mail to tsbidm@itu.int by Sunday midnight, Geneva time, 15 January 2008. -4JCA-IdM LS 001 ANNEX 1 Joint Coordination Activity on Identity Management (JCA-IdM) Terms of Reference 1 Scope The scope of the JCA is coordination of the ITU-T Identity Management (IdM) work. The term IdM is understood as "management by providers of trusted attributes of an entity such as a subscriber, a device, or a provider." This management of digital identities is not intended to indicate positive validation of a person. Note – The use of the term “identity” in this ToR and in the future ITU-T activities relating to IdM does not indicate its absolute meaning. In particular, it does not constitute any positive validation. 2 3 Objectives a. The JCA-IdM will ensure that the ITU-T IdM work is progressed in a well-coordinated way. Planning issues can be brought to the attention of the JCA-IdM. The JCA-IdM will facilitate work assignment through the involved Study Groups when it is not clear under which Question work should be done and recommend an allocation of tasks. b. The JCA-IdM will develop and analyze IdM standardization items and develop an associated roadmap based initially on the reports of the Focus Group on Identity Management to provide guidance to TSAG in its role of coordination of ITU-T work. c. The JCA-IdM will act as a point of contact within ITU-T and with other SDOs/Fora on IdM in order to avoid duplication of work and assist in implementing Resolution 4 of GSC-12 on Identity Management. d. In carrying out the JCA-IDM’s internal coordinating role, participants in the JCA-IdM will include representatives of relevant ITU-T Study Groups and other ITU groups. e. In carrying out the JCA-IDM’s external collaboration role, representatives from other relevant recognized SDOs/Fora and regional/national organizations may be invited to join the JCA-IdM. f. The JCA-IdM should ensure that the above note would be taken into account in accomplishing its tasks. Co-Conveners Richard Brackney (DoD, USA), Chae-Sub Lee (ETRI, Korea) and Olivier Dubuisson (France Telecom, France). 4 Administrative support The TSB Secretariat will provide secretariat and facilities required by JCA-IdM. 5 Meetings The first meeting of JCA-IdM will be held during the weeks of 14-25 January 2008 in conjunction with NGN-GSI event and JCA-NID meetings. JCA-IdM will work electronically using teleconferences and with face-to-face meetings as needed. Meetings will be held as determined by the JCA-IdM and will be announced to its participants and on the ITU-T website. -5JCA-IdM LS 001 6 Progress reports The JCA-IdM will report to TSAG at its meetings. -6JCA-IdM LS 001 ANNEX 2 Global Standards Initiative for Identity Management (IdM-GSI) Terms of Reference 1 Scope The IdM-GSI is a grouping of Study Group Rapporteur Groups working on Identity Management (IdM) for telecommunications. The term IdM is understood as "management by providers of trusted attributes of an entity such as a subscriber, a device, or a provider." This management of digital identities is not intended to indicate positive validation of a person. Note – The use of the term “identity” in this ToR and in the future ITU-T activities relating to IdM does not indicate its absolute meaning. In particular, it does not constitute any positive validation. 2 Administrative support The TSB Secretariat will provide secretariat and facilities required by the IdM-GSI. 3 Events The first IdM-GSI event will be held for 3 days during January 2008 in conjunction with the NGNGSI event in Korea. -7JCA-IdM LS 001 ANNEX 3 Reports of the ITU-T Focus Group on IdM The FG IdM’s deliverables are available as listed below using Username: “fgidmuse” and Password “fgidmuse”: 1. FG IdM Report No.1: Report on Activities Completed and Proposed; http://ftp3.itu.ch/fgidm/Deliverables/0292-att-1.doc 2. FG IdM Report No.2: Overview Report on the Deliverables; http://ftp3.itu.ch/fgidm/Deliverables/0293-att-1.doc 3. FG IdM Report No.3: Report on Identity Management Ecosystem and Lexicon; http://ftp3.itu.ch/fgidm/Deliverables/0294-att-1.doc 4. FG IdM Report No.4: Report on Identity Management Use Cases and Gap Analysis; http://ftp3.itu.ch/fgidm/Deliverables/0295-att-1.doc 5. FG IdM Report No.5: Report on Requirements for Global Interoperable Identity Management; http://ftp3.itu.ch/fgidm/Deliverables/0296-att-1.doc 6. FG IdM Report No.6: Report on Identity Management Framework for Global Interoperability; http://ftp3.itu.ch/fgidm/Deliverables/0297-att-1.doc With the exception of the Report on Global Interoperable IdM Framework (FG IdM Report No.6), all of the FG IdM reports are considered completed documents. Although FG IdM Report No.6 is incomplete, it is an excellent basis for future work on a generic identity management framework that supports global harmonization and bridging of disparate IdM solutions and systems within and external to a network environment. Consequently, we plan to continue the development of this framework. We believe a consistent and structured approach needs to be taken for IdM related work to support internetworking. We expect our IdM program to leverage work being performed by organizations such as yours. We encourage you to use the information provided in FG IdM Reports. Specifically, we invite you to review and comment on: 1. The Lexicon in FG IdM Report No.3, to include additional definition of terms that are needed to support your IdM activities; 2. The IdM use cases and gaps analysis in FG IdM Report No.4 to include providing additional use cases that can be used to derive requirements in your area of IdM work; 3. The generic query-response IdM architectural model used as the basis for the use case gap analysis (Section 5.2 of FG IdM Report No.4) and the requirements discussion (Section 5.1 of FG IdM Report No.5), to include suitability of this model to your area of IdM work; 4. The IdM framework components/services (Section 8.0 of FG IdM Report No.6), especially the IdM bridging function services (Section 8.14 of FG IdM Report No.6); and 5. The NGN Identity Plane concept (Section 6.4.2 of FG IdM Report No.4 and Section 5.1 of FG IdM Report No.5). -8JCA-IdM LS 001 _____________