Proposed Charter: PKI Review Working Group
Name
PKI Review Working Group
Sponsor
--
Group Leader (Chair)
--
The text below is copied from the External Identities WG charter and needs to be updated as of July 30, 2015
Mission/Goals
The mission of the PKI Review Working Group is to move the community of knowledge towards the goal of making external identities useful and sufficiently trusted in a variety of campus-based use cases. This group is focused on the use of external identities by individuals, rather than an enterprise using an external identity provider as their enterprise IdP.review and provide input on matters pertaining to the next generation of the InCommon Certificate Service.
Specific goals for the PKI Review Working Group include:
Membership
Membership in the Working Group is open to all interested parties. Members join the Working Group by subscribing to the mailing list, participating in the phone calls, and otherwise actively engaging in the work of the group.
The chair of the Working Group is appointed by the InCommon TAC and is responsible for keeping the TAC informed regarding the Working Group's status.
Deliverables
- Social account linked to a campus-issued account
- Social identity used by a non-community member
- Accounts can be linked either centrally (in a campus Person Registry, and visible via the campus IDP), or at a specific SP (application).
- Linking a campus account to a known external account, and linking an external account to an existing campus-issued account, where both accounts are used by the same person.
- Identify the properties that an external account must/should possess that would affect its use.
- Using an external authentication provider to authenticate to a campus-based service.
- Identify ways that campus-owned attributes could be asserted following authentication with an external account (e.g., group memberships)
Potential Deliverables Considered to be Out of Scope for this Phase
- This WG will not be looking at the use of personal external accounts; it will NOT be looking at situations where an enterprise is using a social provider as their IDP, for access to enterprise apps outside of google.
- Technical requirements for Interop/deployment profile for OpenID Connect (OIDC)
- Recommendations on approaches for elevating an external account authentication event to LoA 2.
- Identify and document pro's and con's of having students continue to use their social account to access campus business systems during their student days. Identify an interim step toward this milestonethe permanent PKI Advisory Committee that will report to the InCommon Steering Committee. That group will be chartered and formed later.
Expected End Date
The working group is expected to complete all deliverables by xx.
Required Resources
- wiki space
- phone line for conference calls: usual Internet2 conference call line
- incommon.org group email list
Recent space activity
Recently Updated | ||||||||
---|---|---|---|---|---|---|---|---|
|
Space contributors
Contributors | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|
|