...
The metadata signing key is the private key used to sign InCommon metadata. The public key corresponding that corresponds to the private metadata signing key is bound to the metadata signing certificate, which is stored on a secure web server (ops.incommon.org). This key pair together form the basis of the trust fabric of the InCommon Federation.
...
Unsigned metadata is stored in a digital repository on a secure server with limited physical and network access. The server is locked in a cage in a secure facility (#2) with strict physical access controls and video surveillance. The server is protected by a firewall that restricts network access to the InCommon Federation Manager and the eduGAIN metadata server.
A software process that aggregates and signs metadata orchestrates metadata import and signing is run daily according to precise hours of operation. This signing software process runs on the offline laptop. The Technical Authority Officer initiates the software process in the presence of the Key Authority Officer.
...