Approve minutes since UMA telecon 2022-06-30
Pensions Dashboard / Open Banking Use-case report, initial discussion
Leadership elections
AOB
NOTE: As of Sept 15, 2022, quorum is 3 of 5. (Peter, Sal, Alec, Eve, Steve)
Voting:
Alec
Sal
Steve
Non-voting participants:
Hanfei
Regrets:
Approve minutes of UMA telecon 2022-08-11, UMA telecon 2022-08-25, UMA telecon 2022-09-08 , UMA telecon 2022-09-15 , UMA telecon 2022-09-22 , UMA telecon 2022-09-29 , UMA telecon 2022-10-06 , UMA telecon 2022-10-13 , UMA telecon 2022-10-20 , UMA telecon 2022-10-27 , UMA telecon 2022-11-03 , UMA telecon 2022-11-10 , UMA telecon 2022-11-24 , UMA telecon 2022-12-01 , UMA telecon 2022-12-08 , UMA telecon 2022-12-15 , UMA telecon 2023-01-05
Alec moves to approve, Sal and Steve 2nd and 3rd it! Motion Passes!!
Draft will be worked on here: Pension Dashboard Use-Case Report
Goals:
show UMA being used for a financial section use-case
UMA implementation and applications
UMA value add to this solution
keep it under 10 pages
Audience? Technical or not? Let’s keep it general/accessible and then put technical information into the appendix
Should we follow the TOC of Julie Adam’s use case?
Why Read This Report
Intro to use case and data-sharing implication/challenges that need to be addressed
individuals have a pension managed by each company they work for, companies have pension partners that manage it for them
3. The Nuts and BOLTS of Policy and How It Impacts Julie’s Journey – need to look into the UK landscape and what BOLTS are relevant here
sharing or PI during find, the finding of advisors
4. Overview of the Pensions Dashboard solution + how it uses UMA
pension provider registration, dashboard registration, user and advisor identity
find pensions (not uma), pension registration (uma fedz), pension management + delegation (@the uma as), pension viewing (Uma grant)
not happy paths
5. UMA vs OAuth – what UMA enabled, why UMA
multiple RSs, federated RSs, delegation/RqP/resource-sharing, self-management of access policy, clients stay unaware of authorization/policy
it’s not OIDC or identity federation, it’s data access
without getting too technically deep!
6. Conclusion, extension to openbanking + other use cases, comparison to other places
Appendix A: Kantara + pensions dashboards programme relationship (About This Report and the Standards Mentioned)
Appendix B: References/ Bibliography
Appendix C+: as needed if we want to get into tech/other details
https://kantara.atlassian.net/wiki/spaces/uma/pages/134512641/UMA+telecon+2023-01-12
Pension Dashboard/Viewer (many, B2C) *- Pension Authorization Service (1 operated by Gov?, G2C) 1-* Pension Providers (B2B, B2C)
Alec will email the Pensions Dashboard folks to inform them of our intention.
Sal nominates Alec to stay in the chair role. Sal nominates Steve to remain in the Vice-Chair role
Hearing no objection. Passes by Acclamation!
NIST 800-63 rev 4 draft is out: NIST Special Publication (SP) 800-63-4 (Draft), Digital Identity Guidelines
Kantara + Better ID Coalition info session coming up on the Jan 24th
Will have it on our Agenda sometime in Feb, once we’ve had some time to read and digest