Application Bridging for Federated Access Beyond Web (ABFAB) Use Cases

Note: This ballot was opened for revision 04 and is now closed.

(Stephen Farrell) Yes

(Sean Turner) Yes

Comment (2012-09-06 for -04)
No email
send info
In section 3 maybe we could remove the marketing paragraph because it's not really relevant why somebody might use the cloud - the fact is they do so this is not needed:

   The main benefits of cloud computing are that it offers on-demand
   services with pay per-use removing the need for users/organizations
   to build and maintain their own hardware or infrastructure, and that
   it allows for the dynamic scaling of resources required for solving
   specific tasks.

(Ron Bonica) No Objection

(Stewart Bryant) No Objection

(Gonzalo Camarillo) No Objection

(Benoît Claise) No Objection

Comment (2012-09-11 for -04)
No email
send info
I support the publication of this draft. 

   Adding federated authentication to IPP [RFC3229] (and other relevant
   protocols) would enable this kind of remote printing service without
   the administrative overhead of credentialing these visitors (who, of
   course, may well one time visitors to the organisation). 

Are you sure it's the right RFC?

Regarding the next two comments, take them or leave them, up to the WG authors/chairs/AD

1. There are multiple sentences that speak about the ABFAB architecture and specifications.

-  The goal of this document is to document a selection
   of the wide variety of these contexts whose user experience could be
   improved through the use of technologies based on the ABFAB
   architecture and specifications.

-   This document enumerates some of these use cases,
   describing how technologies based on the the ABFAB architecture
   [I-D.lear-abfab-arch] and specifications could be used.

-  This document enumerates some of these use cases,
   describing how technologies based on the the ABFAB architecture
   [I-D.lear-abfab-arch] and specifications could be used.

-  ABFAB could help in this context as its specifications would enable
   federated authentication for a variety of non-web protocols, ...

-  The use of ABFAB technologies in this case would enable both the
   front or back end attribute exchange required to provide subject

-  etc...

You chose to have a use cases RFC before the architecture RFC. That's your choice, and that's fine!
However, it would be nice to explain in one paragraph (potentially with a figure) how you envision the architecture:
    organization A,
    organization B,
    a user who authenticates in the org A and needs to access the information in org B
    a RADIUS connection from org. A to org B. with SAML content within the RADIUS data.
I had to dig outside of the draft to find this information, but it helped me tremendously to start to understand the technology challenges behind the use cases.
In 5 years from now, which RFC should a new newcomer read first to start understanding what the WG does? Is it this one or the architecture? 

2.  A sentence or two regarding the relationship with the ABFAB and SCIM use cases (in this document or in a different subsequent document, not sure)
As far as I can tell:
    SCIM: pre-provisioning identity management across domains
    ABFAB: Single Sign On across domains

(Ralph Droms) No Objection

(Wesley Eddy) No Objection

(Adrian Farrel) No Objection

(Brian Haberman) No Objection

(Russ Housley) No Objection

Barry Leiba No Objection

Comment (2012-08-31 for -04)
No email
send info
-- Section 3.1 --

Lots of editorial stuff, but it'll all be sorted by the RFC Editor.  One nit that might not be is this one:

   o  Common application software such as email, shared storage,
      business applications such as Customer Relationship Management
      (CRM) or scientific applications ("Software as a Service", or

The last letter of "SaaS" needs to be capitalized.

(Pete Resnick) No Objection

(Robert Sparks) No Objection

(Martin Stiemerling) No Objection