Interfederation

[Ian Young <>]

Here is the covering note I sent to our TAG members the other day describing 
the draft technical documents I mentioned in today's call.  The more relevant 
one for our current discussion is the UKFTS (Federation Technical 
Specifications), most of the relevant material is in section 3.  Most of the 
parts of section 3 that have change bars in the draft are worth skimming, 
with the exception of 3.10 and 3.11.

All of 3.9, even the old text, is probably of interest to the LIGO use case.

        -- Ian

Begin forwarded message:

> From: Ian Young 
> <>
> Subject: initial draft of UKFTS 1.4
> Date: 22 March 2013 18:02:16 GMT
> To: 
> 
> Reply-To: Ian Young 
> <>
> 
> Dear TAG members,
> 
> As you will recall from the last couple of meetings, I have for some time 
> been preparing a new edition of the two base technical documents for the UK 
> federation, to become UKFTS and UKTRP edition 1.4.  I think it would be 
> realistic to aim for releasing this new revision after consideration at the 
> next TAG meeting, which will be in Edinburgh on April 16th.
> 
> To give everyone the maximum time to consider the substantial additional 
> content for this edition (the current UKFTS draft is 11 pages longer than 
> 1.3.1) I have prepared snapshots of the current drafts for download:
> 
> UKFTS: http://dl.dropbox.com/u/236274/FTS-1.4-20130322.pdf
> 
> UKTRP: http://dl.dropbox.com/u/236274/TRP-1.4-20130322.pdf
> 
> The more we can review in the next week or so, the less we'll have issues 
> we need to discuss in the Edinburgh meeting.  So I'd greatly appreciate any 
> review feedback that TAG members can provide.
> 
> The main areas covered by the current draft are:
> 
> * Inter-federation metadata exchange and its implications,
> 
> * The previously discussed trust fabric evolution, in which we move away 
> from 1024-bit keys and the use of PKIX,
> 
> * Much more documentation of the UK federation's use of metadata extensions 
> such as MDRPI and MDUI.
> 
> * A new proposed transition to the use of a stronger digest algorithm in 
> metadata signatures, in accordance with NIST recommendations to entirely 
> discontinue the use of SHA-1 for digital signatures after 2013.
> 
> There is much more material which could usefully be included in a 1.4 
> revision (more about the export aggregate, usage of domains and synthetic 
> scopes, and potentially a high-level registration practice statement), and 
> if I develop additional content to the point where I think it is polished 
> enough to be included I will present new drafts before the meeting.  
> However, I'm sure you will all be aware that writing this kind of material 
> is quite tricky and as a result I expect most of that to need to be left 
> for a later edition, probably towards the end of 2013.
> 
> Enjoy,
> 
>       -- Ian

Attachment: smime.p7s
Description: S/MIME cryptographic signature