Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Published by Scroll Versions from this space and version 2.0
Jan. 2018 Webinar: Baseline Expectations for IdPs and SPs
Infotitle

Contacting Us

For assistance, please contact help@incommon.orge

Baseline Expectations

Webinar - Metadata

Health Checks

- Feb. 21, 2018

The Federation Doctor will See You Now: Metadata Health Checks Are Here!

Webinar - Wednesday, February 21, 2018
2 pm ET | 1 pm CT | Noon MT | 11 am PT

How healthy is your metadata? Is it up to snuff with the new InCommon Baseline Expectations for Trust in Federation? What are these “health checks” that InCommon Site Administrators have started to receive?
The InCommon Baseline Expectations for Trust in Federation requires that every system  in the InCommon trust registry (or metadata) include certain items, such as security contacts, a privacy policy, and several other elements. Join us for this webinar to learn about the health checks that InCommon Operations will send periodically, what you should do with this information, and what to do if you encounter problems.Presenters
Brett Bieber, University of Nebraska, Chair, Community Trust & Assurance Board
Nick Roy, Director of Technology and Strategy, InCommon
Connecting
Slide sharing and audio via Adobe Connect:
http://internet2.adobeconnect.com/incommonbaselineexpectations

Back-up phone bridge:

(734) 615-7474, or 
(866) 411-0013 (toll free US/Canada)

Access code: 0134531

Baseline Expectations

Under the guidance of the InCommon Assurance Advisory Committee, the InCommon community has adopted a set of Baseline Expectations for Trust in Federation. The intent is to:

  • improve interoperability among InCommon Participants
  • ensure that the Federation has a common level of trust by establishing expectations that all Participants agree to meet.

In addition to the expectations themselves, the community has adopted processes by which InCommon Participants and the InCommon Federation operator keep metadata up to date and keep one-another accountable, including:

  • Automated checks of metadata by InCommon to give feedback to each Participant about their entities
  • A process for reaching community consensus on practices that meet the expectations
  • A process for Participants to raise Baseline Expectations-related and other concerns and get them resolved
The

InCommon performs periodic metadata health checks to share Baseline Expectation adoption progress statistics with participants.  To find out how you and your peers are doing, check the Baseline Expectations Adherence by Organization list.

If you would like to find out details about your organization's Baseline Expectations status, please contact help@incommon.org

Baseline Expectations Dashboard - July 17, 2019

Image Added

Image Added

Image Added


About Baseline Expectations

The InCommon Community Trust and Assurance Board hosted a webinar on October 11, 2018  to review Baseline Expectations. The webinar provides an overview of the Baseline Expectations initiative, schedule, and a demo of the Federation Manager, the software Participants use to manage metadata.

Download the slides  (PDF)
Recording

Foundational Documents

Baseline Expectations for Trust in Federation - This core Baseline Expectations document establishes three short lists of expectations expressed at a high level, one for each of three types of Federation actor: an Identity Provider, a Service Provider, and a Federation Operator.

Baseline Expectations of Identity Providers

  1. The IdP is operated with organizational-level authority
  2. The IdP is trusted enough to be used to access the organization’s own systems
  3. Generally-accepted security practices are applied to the IdP
  4. Federation metadata is accurate, complete, and includes:
    1. contacts in metadata (technical, administrative and security)
    2. MDUI information
    3. privacy policy URL
    4. a federated error handling URL
    5. an HTTPS link to a logo for the IdP

Baseline Expectations of Service Providers

  1. Controls are in place to reasonably secure information and maintain user privacy
  2. Information received from IdPs is not shared with third parties without permission and is stored only when necessary for SP’s purpose
  3. Generally-accepted security practices are applied to the SP
  4. Federation metadata is accurate, complete, and includes:
    1. contacts in metadata (technical, administrative and security)
    2. MDUI information
    3. privacy policy URL
    4. an HTTPS link to a logo for the SP
  5. Unless governed by an applicable contract, attributes required to obtain service are appropriate and made known publicly

Baseline Expectations of Federation Operators

  1. Focus on trustworthiness of their Federation as a primary objective and be transparent about such efforts
  2. Generally-accepted security practices are applied to the Federation’s operational systems
  3. Good practices are followed to ensure accuracy and authenticity of metadata to enable secure and trustworthy federated transactions
  4. Frameworks that improve trustworthy use of Federation, such as entity categories, are implemented and adoption by Members is promoted
  5. Work with relevant Federation Operators to promote realization of baseline expectations

Resources

Baseline Processes Roadmap

Baseline Expectations Foundational Document

Baseline Implementation Processes (document in final approval stages)

Implementing Baseline Expectations in InCommon Metadata (this document translates Baseline Expectations into an initial set of requirements for InCommon metadata)

.

Process to Maintain Baseline Expectations by InCommon and its Members - This document defines several processes by which InCommon and InCommon Participants will hold each other accountable for meeting Baseline Expectations.


On This Page

Table of Contents
maxLevel1

Documents and Background

Transitioning the Community - October 2018  

Baseline Processes Roadmap

Implementing Baseline Expectations in InCommon Metadata 

Processes to Maintain Baseline Expectations by InCommon and its Members

Community Consensus Process

Community Dispute Resolution Process  

Testing Your Own Metadata for Baseline Expectations

Organizations That Meet/Don't Meet Baseline: Baseline Expectations Adherence by Organization

Newsletter and Blog Posts

Baseline Expectations: Huge Progress by the Community (November 2018)

Baseline Expectations Newsletter (May 2018)

Baseline Expectations Measurements and Reporting (Feb 2018)


Webinars

InCommon Baseline Expectations: The Business Value Explained - It’s Not Just About Health Checks

 (March 2018)

Download the slides (PDF)
Recording View the recorded webinar (Adobe Connect)

Webinar explaining the expectations (Oct. 5, 2016)

Download the slides
Webinar recording

The Federation Doctor Will See You Now: Metadata Health Checks (Feb 2018)

Download the slides (PDF)
View the recorded webinar (Adobe Connect)

Baseline Expectations for IdPs and SPs (Jan 2018)

Download the slides (PDF)
Recording
 (Adobe Connect)

Webinar explaining implementation Implementation Explanation (July 19, 2017)

Download the slides (PDF)
View the recorded webinar Recording (Adobe Connect)