Child pages
  • InCommon Assurance Program
45 more child pages

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.



[Identity Assurance Assessment Framework;|^IAAF-V1.2-Feb2013.pdf] Version  Version 1.2 Feb 2013 \ [PDF\][
  • Identity Assurance Profiles;|^IAP-V1.2-Feb2013.pdf] Version  Version 1.2 Feb 2013 \ [PDF\]
  • Alternative Means; Multi-factor Authentication for Silver certification
  • DIFFS with 1.1: Framework and Profiles
  • Deprecated Versions
  • Project Status: Shibboleth Identity Provider Enhancements (Multi-Context Broker)

    The MCB v1.0 for development of Assurance Enhancements for the Shibboleth Identity Provider has been completed and is available now for use. For more information and a project status, see Shibboleth Enhancements - Project Status.

    See  news on the Multi Context Broker.

    See slides from IAM Online on the Multi-Context Broker (April 30, 2014)

    Alternative Means

    Community Resources


    Technical InterOp

    Community Contributions

    Webinars and Presentations


    InCommon Assurance Community Wiki

    Table of Contents

    Baseline Expectations for Trust in Federation

    Baseline Expectations links and information

    Baseline Expectations Foundational Document


    Assurance Webinar, Wed. Sept. 3, 2014

    Successful Security Practices: Counting Failed Login Attempts
    Wed., Sept. 3, 2014 at Noon ET

    Looking to change your security practices by counting failed login attempts and locking accounts after the agreed-upon threshold has been reached? Interested in finding out how two institutions plan to do that? While monitoring unusual login activity is considered good security practice, counting failed logins is also part of the strategy for addressing the requirements of InCommon Bronze and Silver Identity Assurance Profiles.

    Join us for an informal one-hour webinar presentation to hear how two campuses are approaching this issue and what they have under development.

    Moderator: Jacob Farmer, University of Indiana

    -Brett Bieber, University of Nebraska-Lincoln
    -Benn Oshrin, University of California-Berkeley

    Connection Information:
    Adobe Connect:

    Community Trust and Assurance Board (CTAB) Minutes Publicly Available

    InCommon Community Trust and Assurance Board (CTAB) Minutes are publicly available here

    The charter for the InCommon Community Trust and Assurance Board (CTAB) is here

    InCommon MFA Interoperability Profile Working Group

    The mission of the working group was to develop and document requirements for creating and implementing an interoperability profile to allow the community to leverage MFA provided by an InCommon Identity Provider by allowing SPs to rely on a standard syntax and semantics regarding MFA. See the working group wiki and the Final Work Products.

    InCommon Silver with Active Directory Domain Services Cookbook for 1.2 Released

    The final version of the InCommon Silver with Active Directory Domain Services Cookbook is available now! For an overview of the important bits, see the May 2014 webinar recording (​). 

    Reading Bronze: Understanding the InCommon Profile (recordings available)

    InCommon sponsored a community reading of the Bronze InCommon Assurance Profile to aid in the understanding and intent of the requirements. There were four calls during Dec. 2013 and Jan. 2014.  The calls have now concluded. Thanks to all who participated for the excellent comments and questions.

    Recordings are available at this link.

    Assurance Program

    Specification Documents

    Wiki Markup
    Wiki Markup


    RSS Feed


    InCommon Community Trust and Assurance Web page

    InCommon Certified Identity Providers

    Board (CTAB) Minutes

    CTAB Charter

    CTAB Nominations for Term Starting 2019

    Baseline Expectations for Trust in Federation Web Page

    Federal ICAM Approved Identity Providers

    titleStay Informed

    Add yourself to our assurance email list by sending an email to with this in the subject: subscribe assurance

    Join our monthly Implementers calls scheduled for Noon ET on the first Wednesday of every month. 
    +1-866-411-0013 (toll free US/Canada Only)
    PIN: 0113802#

    titleCall Minutes
    titleCommunity Assurance Call Minutes (these calls were suspended starting in 2018)

    6-Dec-2017 Assurance webinar (Introducing CTAB )

    4-Oct-2017 Assurance Call (Refocusing Community Guidance of InCommon's Trust Programs: Baseline and Bronze)

    7-June-2017 Assurance Call (Baseline Expectations Implementation)

    1-March-2017 Assurance Call (NIST 800-63 / Digital Identity Guidelines

    4-January-2017 Assurance Call (REFEDs Assurance Working Group)

    2-November-2016 Assurance Call (2017 AAC Workplan Discussion)

    5-October-2016 Assurance Call - Baseline Expectations and their Implementation (Slides) and (AdobeConnect)

    3-August-2016 Assurance Call (Baseline Expectations - Last Call for Comments)

    6-July-2016 (webinar on Baseline Expectations for Trust in Federation)

    6-July-2016 (comments in Adobe Connect Chat during Assurance Call on Baseline Expectations

    4-May-2016 (webinar on Federated Security Incident Response (SIRTFI) Effort)

    6-April-2016 (webinar on MFA Interop Profile WG)

    3 Feb 2016 (webinar on Insights in Assurance: Developments from Across the Pond)

    4 Nov 2015 (webinar on survey results and baseline practices)

    2 Sept 2015 (webinar on Shib IdP v3 and Duo MFA)

    8 July 2015

    6 May 2015 (flexible vetting)

    1 April 2015 (password reset)

    4 March 2015

    5 Nov 2014
    15 Oct 2014
    4 Sep 2014
    9 Jul 2014
    19 March 2014 (presentation on Multi-Context Broker)
    12 Feb 2014
    4 Dec 2013
    6 Nov 2013
    2 Oct 2013
    4 Sep 2013
    7 Aug 2013
    10 July 2013
    5 June 2013
    8 May 2013
    3 April 2013
    6 March 2013
    13 Feb 2013
    9 Jan 2013
    12 Dec 2012