Summary
This document provides a breakdown of the work items in the “Gap Analysis” section of the community survey from the InCommon Certificate Service Review Working Group. |
...
Primarily, only those items receiving ‘high’ or ‘medium’ priority are listed, though there is a table that outlines those items with ‘low’ priority that are either done or are being pursued. |
...
The work items are categorized below by responsible party. |
...
Subscriber Survey
The full report of the subscriber survey from the Certificate Service Review Work Group can be found here:
https://docsspaces.at.googleinternet2.comedu/documentdownload/dattachments/1NZYScUHCzT-miDRJQIa9P2K1tYKBfn9Lr2yLzV4vIF4/edit#110330197/InCommonCertServiceReviewWGReport_Public.pdf?api=v2
(the gap analysis begins on pg 7)
InCommon's Work Items
Medium Priority
...
Item | Status | Target |
DCV documentation |
Not yet started. Possible webinar topic/doc? | 2018, |
Q1 | ||
EV documentation | DONE? Have started with new EV process at: https://spaces.at.internet2.edu/x/YAxhBg Possible webinar topic/doc? | 2017, Q3 |
InCommon Cert API |
Postponed due to requirements. | TBD |
High Priority
Item | Status | Target |
FAQ doc RE: how to get support |
(depends on whether KB implemented and/or whether single POC implemented)
2017, Q4
Postponed due to requirements. | TBD |
Comodo's Work Items
Medium Priority
...
Item | Status | Target |
ACME Support | Comodo |
doesn’t support ACME at this time (business decision). | no longer in scope |
SmartCard Certificates | DONE | 2016 |
Improve support function for EV process |
DONE | 2017, Q3 |
Dedicated queue for InCommon | DONE (new ccmvalidation@comodo.com, in addition to existing ccmsupport@comodo.com), need to publicize | Q4 2017 |
Allow wildcard in CN with SANs |
In 5.6 rel; 1/2017 ?
(some software needs to see a wildcard in the CN of a wildcard cert, not as a SAN) | Comodo will document their known workaround for EZProxy, but is still investigating the feasibility of adding this feature. | TBD |
Bulk certificate management (both API and CCM) |
Comodo is discussing only bulk DCV at this time. No other bulk certificate management capabilities are being discussed or planned for either CCM or the API. | no longer in scope |
Sync DCV expirations per-org |
Done/coming soon?
2017?
Comodo has determined that this is not feasible at this time. | no longer in scope |
High Priority
Item | Status | Target |
Improve custom notifications (addl. fields, events, documentation) |
Verified that this was mis-labeled. It was flagged by the community survey review group as a 'nice to have' and never received additional detail. | insufficient clarity to proceed - no longer in scope. |
Improve authentication options for API |
(passwordless) | DONE, documentation has been updated, need to publicize | Q3, 2017 |
Additional API fields/functions |
:
| Will not be fixed; workarounds provided. Workaround for 'external requester' is to call "updateRequesterExt" after the initial request by injecting the external requestor(s). Workaround for omitting optional components is to create a separate DRAO with the exact field requirements desired. | DONE/Not-In-Scope |
CM/CA Status Page |
DONE | 2017 |
Release Roadmap |
Uncertain...
Pending discussions with Comodo
DONE, see here | Q3, 2017 |
Shared Work Items (both InCommon and Comodo)
Medium Priority
...
Item | Status | Target |
Single Initial POC for support | Not currently feasible |
CCM Training |
in development |
2018, early Q2 | ||
Support webinars | Need to identify topics - ideas:
| ongoing |
High Priority
Item | Status | Target |
Stronger SLA | DONE | 2016 |
SSO |
DONE | 2017, |
Q4 |
MFA |
DONE | 2017, |
Q4 |
Support KB, tailored for InCommon issues |
Hope to use coming ServiceNow implementation at I2
2018, Q1
Postponed due to requirements | TBD |
Work Items Receiving “low” Priority (yet which are being implemented)
...
Item | Status |
Local CA options |
Out of Scope. InCommon not offering service due to lack of demand. | |
AD Integration | Basic functionality DONE |
Better integration of vulnerability scanner | DONE |
...