Upcoming Assurance CallWed., April 1, 2015 at noon ETEric Goodman, Identity and Access Management Architect, UC Office of the President, will lead a discussion on password reset issues. Guidance for Supporting SHA-2 Signed AssertionsIn June 2014, InCommon Steering approved the Alternative Means for Bronze and Silver Requirement to Discontinue SHA-1 Encryption for SAML Assertions to ease the transition for Identity Provider Operators that have been certified by the InCommon Assurance Program or are wishing to apply for certification by January 15, 2015. Baseline Expectations for Trust in FederationBaseline Expectations links and information Baseline Expectations Foundational Document InCommon Community Trust and Assurance Board (CTAB) Minutes Publicly AvailableInCommon Community Trust and Assurance Board (CTAB) Minutes are publicly available here The charter for the InCommon Community Trust and Assurance Board (CTAB) is here InCommon MFA Interoperability Profile Working GroupThe mission of the working group was to develop and document requirements for creating and implementing an interoperability profile to allow the community to leverage MFA provided by an InCommon Identity Provider by allowing SPs to rely on a standard syntax and semantics regarding MFA. See the working group wiki and the Final Work Products.InCommon recently released Migrating to SHA-2 to help certified campuses support SHA-2 signed assertions. InCommon Silver with Active Directory Domain Services Cookbook for 1.2 ReleasedThe final version of the InCommon Silver with Active Directory Domain Services Cookbook is available now! For an overview of the important bits, see the May 2014 webinar recording. Reading Bronze: Understanding the InCommon Profile (recordings available)InCommon sponsored a community reading of the Bronze InCommon Assurance Profile to aid in the understanding and intent of the requirements. There were four calls during Dec. 2013 and Jan. 2014. The calls have now concluded. Thanks to all who participated for the excellent comments and questions. Recordings are available at this link. Assurance ProgramSpecification DocumentsProject Status: Shibboleth Identity Provider Enhancements (Multi-Context Broker)The MCB v1.0 for development of Assurance Enhancements for the Shibboleth Identity Provider has been completed and is available now for use. For more information and a project status, see Shibboleth Enhancements - Project Status. See news on the Multi Context Broker. See slides from IAM Online on the Multi-Context Broker (April 30, 2014) Alternative Means Toolkits Technical InterOp Community Contributions Webinars and PresentationsAdditional ResourcesInCommon Assurance Program website
|