InCommon Assurance Community Wiki
Baseline Expectations for Trust in Federation
Baseline Expectations links and information
Baseline Expectations Foundational Document
InCommon Community Trust and Assurance Board (CTAB) Minutes Publicly Available
InCommon Community Trust and Assurance Board (CTAB) Minutes are publicly available here
The charter for the InCommon Community Trust and Assurance Board (CTAB) is here
InCommon MFA Interoperability Profile Working Group
The mission of the working group was to develop and document requirements for creating and implementing an interoperability profile to allow the community to leverage MFA provided by an InCommon Identity Provider by allowing SPs to rely on a standard syntax and semantics regarding MFA. See the working group wiki and the Final Work Products.
InCommon Silver with Active Directory Domain Services Cookbook for 1.2 Released
The final version of the InCommon Silver with Active Directory Domain Services Cookbook is available now! For an overview of the important bits, see the May 2014 webinar recording.
Reading Bronze: Understanding the InCommon Profile (recordings available)
InCommon sponsored a community reading of the Bronze InCommon Assurance Profile to aid in the understanding and intent of the requirements. There were four calls during Dec. 2013 and Jan. 2014. The calls have now concluded. Thanks to all who participated for the excellent comments and questions.
Recordings are available at this link.
Assurance Program
Specification Documents
- Identity Assurance Assessment Framework; Version 1.2 Feb 2013 [PDF]
- Identity Assurance Profiles; Version 1.2 Feb 2013 [PDF]
- Alternative Means; Multi-factor Authentication for Silver certification
- DIFFS with 1.1: Framework and Profiles
- Deprecated Versions
Alternative Means
Community Resources
Toolkits
Technical InterOp
- Assurance Technical Implementation Considerations - Draft Guidance for IdPs and SPs.
- See Implementation Examples
- Bronze and Silver AuthnContext Schema
- AD and Silver Cookbook, Multi-factor Considerations, and case studies.
- Assurance Implementation Example from Virginia Tech
- Harvard University Executive Summary of achieving Bronze Certification, Bronze Self-Certification Document, and Enhancing the Harvard Authentication System to Support InCommon Bronze
- Add your Approach to Supporting the Federal Privacy Requirements
- more community contributions
Webinars and Presentations
Refocusing Community Guidance of InCommon's Trust Programs: Baseline and Bronze (recording and slides) - Oct 4, 2017
IAM Online Webinar on Baseline Expectations Implementation and Maintenance (recording and slides) - July 19, 2017
NIST 800-63 / Digital Identity Guidelines - March 1, 2017
REFEDs Assurance Working Groups, Jan 4, 2017 - slides and Adobe Connect here
Baseline Expectations and their Implementation, Oct 5, 2016 (Slides) and (AdobeConnect)
- Baseline Expectations – Last Call for Comments, Aug. 3, 2016 (link to slides and recording)
- Baseline Expectations for Trust in Federation, July 6, 2016 (link to slides and recording)
- Sirtfi for Security Incidents in a Federated Context, May 4, 2016 (link to slides and recording)
- Multifactor Authentication Interop Profile Working Group Update, April, 6, 2016 (link to slides and recording)
Developments in Assurance: Insights from Across the Pond, Feb. 3, 2016 (link to slides and recording)
- Assurance Survey Results and Baseline Standards to replace the POP, at Nov. 2015 Assurance call (link to slides and recording)
- Duo with Shibboleth v3, from U. Chicago and Unicon, at Sept 2015 Assurance call (link to slides and recording)
- Flexible Vetting: using a point system to verify identity, at May 2015 Assurance call. (link to slides and recording)
- Password Reset practices, at April 2015 Assurance call. (link to slides and recording)
- InCommon Bronze Approaches from GW and Harvard, recorded March 4, 2015. See recorded Webinar. See slides (PDF).
- InCommon Bronze and Security, IAM Online with two Bronze case studies (Todd Haddaway, UMBC and Sharon Welna, University of Nebraska Medical Center), (webinar recorded October 15, 2014 and slide deck)
- Successful Security Practices: Counting Failed Login Attempts, PDF slide Deck, Webinar recorded Sept. 3, 2014
- Better Practices Build Better Systems: Identity Assurance, recorded presentation by Ann West, Internet2, and Ron Thielen, U. Chicago, at EDUCAUSE Security Professionals Conference, May 2014
- Open for Business: InCommon Identity Assurance Program (PDF Silde Deck. Webinar recorded February 29, 2012)
- Grab the Bronze and Silver Ring: Identity Assurance Progress (PDF Slide Deck. Webinar recorded June 15, 2011)
InCommon Assurance News
Confluence Syndication Feed |
---|
6-Dec-2017 Assurance webinar (Introducing CTAB )
4-Oct-2017 Assurance Call (Refocusing Community Guidance of InCommon's Trust Programs: Baseline and Bronze)
1-March-2017 Assurance Call (NIST 800-63 / Digital Identity Guidelines
4-January-2017 Assurance Call (REFEDs Assurance Working Group)
2-November-2016 Assurance Call (2017 AAC Workplan Discussion)
5-October-2016 Assurance Call - Baseline Expectations and their Implementation (Slides) and (AdobeConnect)
3-August-2016 Assurance Call (Baseline Expectations - Last Call for Comments)
6-July-2016 (webinar on Baseline Expectations for Trust in Federation)
6-July-2016 (comments in Adobe Connect Chat during Assurance Call on Baseline Expectations
4-May-2016 (webinar on Federated Security Incident Response (SIRTFI) Effort)
6-April-2016 (webinar on MFA Interop Profile WG)
3 Feb 2016 (webinar on Insights in Assurance: Developments from Across the Pond)
4 Nov 2015 (webinar on survey results and baseline practices)
2 Sept 2015 (webinar on Shib IdP v3 and Duo MFA)6 May 2015 (flexible vetting)
1 April 2015 (password reset)
5 Nov 2014
15 Oct 2014
4 Sep 2014
9 Jul 2014
19 March 2014 (presentation on Multi-Context Broker)
12 Feb 2014
4 Dec 2013
6 Nov 2013
2 Oct 2013
4 Sep 2013
7 Aug 2013
10 July 2013
5 June 2013
8 May 2013
3 April 2013
6 March 2013
13 Feb 2013
9 Jan 2013
12 Dec 2012