Versions Compared

Old Version 15

changes.mady.by.user trscavo@internet2.edu

Saved on

compared with

New Version 16

changes.mady.by.user trscavo@internet2.edu

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Info
titleCurrent Status of InCommon Metadata (December 18, 2013)
Wiki Markup

{div:style=padding-top:1.5ex;}All metadata aggregates are signed with the same metadata signing key and have exactly the same content.{div}

_Production Metadata Aggregate_
* signed using the SHA-256 digest algorithm
* verify with athe new self-signed certificate

_Fallback Metadata Aggregate_
* signed using the SHA-1 digest algorithm
* verify with athe new self-signed certificate

_Preview Metadata Aggregate_
* (identical to the Production Metadata Aggregate)

_Legacy Metadata Aggregate_
* signed using the SHA-1 digest algorithm
* verify with the old CA-signed certificate

See the [InCCollaborate:Phase 1 Implementation Plan] of the Metadata Distribution Working Group for more information.

...

Note
titleAll deployments should migrate ASAP

All SAML deployments shall migrate to one of the new metadata aggregates ASAP but no later than March 29, 2014. See the Phase 1 Implementation Plan FAQ for specific detailed migration instructions.

Multiple metadata aggregates allows InCommon to deploy changes to metadata more quickly, easily, and safely. Metadata consumers choose exactly one of the aggregates depending on the immediate requirements of their deployment.

...