Skip to Content.
Sympa Menu

assurance - [Assurance] Assurance Call and Update: Dec 2013

Subject: Assurance

List archive

[Assurance] Assurance Call and Update: Dec 2013


Chronological Thread 
  • From: Ann West <>
  • To: "" <>
  • Subject: [Assurance] Assurance Call and Update: Dec 2013
  • Date: Tue, 3 Dec 2013 22:00:47 +0000
  • Accept-language: en-US

Dear Colleagues,

Our next monthly Assurance Implementers call is tomorrow at Noon ET.

+1-734-615-7474 
+1-866-411-0013 (toll free US/Canada Only)
Access codes: 0113802#

Agenda
-----------
  • Assurance Program Update Update – See below
  • AD- Assurance
  • Assurance Advisory Committee Update
  • Shibboleth Multi-context Broker Plugin 
  • Your item here
  • Round robin
Best,
Ann
-------
Ann's Update on Assurance
  • Identity Week – If you attended Identity Week in November, you know that multifactor authentication (MFA) and addressing phishing for both on and off campus services was a big topic. Building on that, there was interest from the national LIGO research project in developing a community (not US Government) assurance profile that coupled MFA with federated incident notification. Hmmm…...
  • SHA –1 – If you're working on applying for Bronze or Silver certification, you probably know that you have to support SHA-2 signed assertions by January 1, 2014. The InCommon is developing a plan to ease this transition for assurance-certified organizations and those planning to apply for certification. Stay tuned. 
  • Reading Bronze – Looking for some light reading? Join the community every other Thursday for a discussion of the Bronze Identity Assurance Profile. First call is December 5 at 3:00 pm. See the wiki for more info.
  • US Government Stuff and Virginia Tech– The Federal Cloud Credential Exchange (FCCX pronounced F-6), slated to be released in January, is new gateway (think credential aggregator) for the purpose of easing the load on US Government agencies offering federated services. The services behind FCCX will only be available to certified IdPs. First agencies to get connected will be the VA, USDA, and Commerce (NIST). Virginia Tech is in discussion with them on testing with InCommon. Thanks Virginia Tech!!
  • Bronze as POP replacement – A while back, we discussed using Bronze as a Participants Operating Practices (POP) replacement for IdPs which requires IdPs and SPs to post their practices on a website. It turns out that Bronze is really a subset of the POP and doesn't address things like interoperability, attribute integrity, and so on. However, the POP is still an issue for the Federation---maybe 2014 will be the year of the new POP.

  • [Assurance] Assurance Call and Update: Dec 2013, Ann West, 12/03/2013

Archive powered by MHonArc 2.6.16.

Top of Page