Certificate+Discovery+for+the+Direct+Project+-+Harmonization+8-1-2011+Meeting


 * Date**: 08-01-2011
 * Meeting**: Certificate Discovery for the Direct Project - Harmonization Meeting


 * **Topic** ||= **Time Allotted** ||
 * Introduction to LDAP Guidance Development || 10 min ||
 * Discuss and establish guidance re: global automated query and federation ||= 20 min ||
 * Discuss and establish guidance re: discovering the DNS SRV record on a global basis ||= 20 min ||
 * Discuss and establish guidance re: protection of provider attributes/ certificates ||= 20 min ||
 * Discuss and establish guidance re: possible federation for pilot participants ||= 15 min ||
 * Post-Meeting Reviews ||= 5 min ||
 * 1) **The need for global automated query and federation.** We’d like to explore and document why Direct pilot participants considered this a major reason for not implementing LDAP and how this can be mitigated with the proposed hybrid approach.
 * 2) **How to discover the DNS SRV record on a global basis**. One possible option is that DNS would still be offered as a way to publish certificates on a global basis and the LDAP method could be offered where digital certificates can be discovered using LDAP by allowing for the discovery of LDAP entry points using the DNS SRV record
 * 3) **How to provide protection of provider attributes/certificates** should an organization or provider desire to achieve this level of security through use of non-anonymous query.
 * 4) **How to possibly provide some level of federation** if the pilot participant requires it. The Query for Digital Certificate for Direct Project does not specifically indicate federation as a specific requirement, however, we may want to explore this topic optionally in the event that it becomes relevant in the future.