Summary
This document provides a breakdown of the work items in the “Gap Analysis” section of the community survey from the InCommon Certificate Service Review Working Group. Primarily, only those items receiving ‘high’ or ‘medium’ priority are listed, though there is a table that outlines those items with ‘low’ priority that are either done or are being pursued. The work items are categorized below by responsible party. |
...
The full report of the subscriber survey from the Certificate Service Review Work Group can be found here:
https://docsspaces.at.googleinternet2.comedu/documentdownload/dattachments/1NZYScUHCzT-miDRJQIa9P2K1tYKBfn9Lr2yLzV4vIF4/edit# 110330197/InCommonCertServiceReviewWGReport_Public.pdf?api=v2
(the gap analysis begins on pg 7)
InCommon's Work Items
Medium Priority
Item | Status | Target |
DCV documentation | Not yet started. Possible webinar topic/doc? | 2017, Q4 |
EV documentation | Have started with new EV process at: https://spaces.at.internet2.edu/x/YAxhBg Possible webinar topic/doc? | 2017, Q3 |
InCommon Cert API | Currently awaiting prioritization/scheduling within TIER | TBD |
High Priority
Item | Status | Target |
FAQ doc RE: how to get support | waiting on potential I2 ServiceNow KB system | 20172018, Q4 |
Comodo's Work Items
Medium Priority
Item | Status | Target | ||
ACME Support | Comodo | is waiting on maturity of the spec.doesn’t support ACME at this time (business decision). | no longer in scope | Pending discussions with Comodo|
SmartCard Certificates | DONE | 2016 | ||
Improve support function for EV process | Ref. ‘anchor certs’ projectDONE | 2017, Q3 | ?||
Dedicated queue for InCommon | DONE (new ccmvalidation@comodo.com, in addition to existing ccmsupport@comodo.com), need to publicize | Q4 2017 | ||
Allow wildcard in CN with SANs | In 5.6 rel; 1/2017 ? | (some software needs to see a wildcard in the CN of a wildcard cert, not as a SAN) | Comodo will document their known workaround for EZProxy, but is still investigating the feasibility of adding this feature. | TBDPending discussions with Comodo |
Bulk certificate management (both API and CCM) | Pending discussions with Comodo | Comodo is discussing only bulk DCV at this time. No other bulk certificate management capabilities are being discussed or planned for either CCM or the API. | no longer in scope | |
Sync DCV expirations per-org | Done/coming soon? | 2017?Comodo has determined that this is not feasible at this time. | no longer in scope |
High Priority
Item | Status | Target | ||
Improve custom notifications (addl. fields, events, documentation) | Pending discussions with Comodo | Verified that this was mis-labeled. It was flagged by the community survey review group as a 'nice to have' and never received additional detail. | insufficient clarity to proceed - no longer in scope. | |
Improve authentication options for API | Pending discussions with Comodo | (passwordless) | DONE, documentation has been updated, need to publicize | Q3, 2017 |
Additional API fields/functions | Pending discussions with Comodo | :
| Will not be fixed; workarounds provided. Workaround for 'external requester' is to call "updateRequesterExt" after the initial request by injecting the external requestor(s). Workaround for omitting optional components is to create a separate DRAO with the exact field requirements desired. | DONE/Not-In-Scope |
CM/CA Status Page | DONE | 2017 | Roadmap for support communications | Uncertain... | Pending discussions with Comodo
Release Roadmap | DONE, see here | Q3, 2017 |
Shared Work Items (both InCommon and Comodo)
Medium Priority
Item | Status | Target |
Single Initial POC for support | Not currently feasible | |
CCM Training | in development | 2017, Q2Q4 |
Support webinars | Need to identify topics - ideas:
| ongoing |
High PriorityPriority
Item | Status | Target | |
Stronger SLA | DONE | 2016 | |
SSO | In developmenttesting | 2017, Q2Q4 | |
MFA | In developmenttesting | 2017, Q2Q4 | |
Support KB, tailored for InCommon issues | Hope to use coming ServiceNow implementation at I2 | 2018, Q1Awaiting KB at Internet2, can discuss whether or not Comodo can provide this. This should be moved to the 2018 Work Plan. | 2018, Q4 |
Work Items Receiving “low” Priority (yet which are being implemented)
Item | Status |
Local CA options | Pending feasibility?, legal, communicationsOut of Scope. InCommon not offering service due to lack of demand. |
AD Integration | Basic functionality DONE |
Better integration of vulnerability scanner | DONE |