Child pages
  • InCommon Assurance Program
45 more child pages

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


Section


Frequently Asked Questions About the Assurance Program and the Refinement Process

InCommon Assurance Web page

Column
width50%60%
The

InCommon

Steering Committee has approved version 1.1 of the two documents that represent the foundations of its Identity Assurance program: The InCommon Identity Assurance Assessment Framework (IAAF) and the The InCommon Identity Assurance Profiles (IAP), also known as InCommon Bronze and Silver. The documents are available on the assurance page of the InCommon website.

Background for Version 1.1

The InCommon Identity Assurance 1.0 document set published in 2008 was largely based on the no-longer-extant US federal government eAuthentication Credential Assessment Framework. The federal government's requirements and priorities have since changed. New materials regarding electronic authentication and trust frameworks were published by the government's Identity, Credential and Access Management (ICAM) initiative in 2009.

In addition, a group of early-adopter campuses has been working through the assessment process of the Silver Assurance Profile and developed a number of questions and recommendations, including important contributions from both IT and Audit staff.

Together these developments created strong motivation to simplify and clarify the InCommon Identity Assurance documents while retaining their basic structure and intent.  Both government requirements and real-world assessment experience from campuses have been incorporated.

An FAQ about the InCommon Identity Assurance Program is now available: https://spaces.at.internet2.edu/x/dQBvAQ

The community wishes to thank the schools that have been working on the Silver adoption process – the Committee for Institutional Cooperation (CIC)'s Silver Audit team, which includes the Big Ten plus the University of Chicago, along with the University of Washington and Virginia Tech. The University of California schools have also been engaged in a Silver review and in providing feedback. In addition, a group of member-institutions of SURA (Southeastern University Research Association) has recently started a Silver adoption process. Both of these collaborations will document their efforts, which will help all of us as we move to adopt Silver.  Members of ACUA, the Association of College and University Auditors, also provided significant comments.  We also wish to thank the review committee for their tireless and careful elucidation of the framework and accompanying profiles.

General information about the Assurance program can be found here:
http://incommon.org/assurance/

Column
width50%
Info
iconfalse
titleAssurance links
Wiki Markup
*[Silver Report from the CIC: Phase 1|http://www.cic.net/Libraries/Technology/IdM_InCommonSilverPhase1.sflb.ashx]* \[PDF\] - A report from the first of three phases of the CIC effort to implement Silver.

Assurance Community Wiki

Table of Contents
minLevel2

Baseline Expectations for Trust in Federation

Baseline Expectations links and information

Baseline Expectations Foundational Document

InCommon Community Trust and Assurance Board (CTAB) Minutes Publicly Available

InCommon Community Trust and Assurance Board (CTAB) Minutes are publicly available here

The charter for the InCommon Community Trust and Assurance Board (CTAB) is here

InCommon MFA Interoperability Profile Working Group

The mission of the working group was to develop and document requirements for creating and implementing an interoperability profile to allow the community to leverage MFA provided by an InCommon Identity Provider by allowing SPs to rely on a standard syntax and semantics regarding MFA. See the working group wiki and the Final Work Products.

InCommon Silver with Active Directory Domain Services Cookbook for 1.2 Released

The final version of the InCommon Silver with Active Directory Domain Services Cookbook is available now! For an overview of the important bits, see the May 2014 webinar recording

Reading Bronze: Understanding the InCommon Profile (recordings available)

InCommon sponsored a community reading of the Bronze InCommon Assurance Profile to aid in the understanding and intent of the requirements. There were four calls during Dec. 2013 and Jan. 2014.  The calls have now concluded. Thanks to all who participated for the excellent comments and questions.

Recordings are available at this link.

Assurance Program

Specification Documents

Alternative Means

Community Resources

Toolkits

Technical InterOp

Community Contributions

Webinars and Presentations



Column
width30%

RSS Feed
showTitlesOnlytrue
urlhttps://spaces.at.internet2.edu/createrssfeed.action?types=blogpost&spaces=InCAssurance&labelString%3D&excludedSpaceKeys%3D&sort=created&maxResults=4&timeSpan=90&publicFeed=true&title=InCommon+Assurance+News

Info
iconfalse
titleLinks

InCommon Community Trust and Assurance Board (CTAB) Minutes

CTAB Charter

CTAB Nominations for Term Starting 2019

Baseline Expectations for Trust in Federation Web Page

Federal ICAM Approved Identity Providers


Info
iconfalse
titleStay Informed

Add yourself to our assurance email list by sending an email to sympa@incommon.org with this in the subject: subscribe assurance



Panel
borderColor#3C78B5
bgColor#ffffff
borderWidth1px
titleBGColor#99ccff
borderStylesolid
titleCommunity Assurance Call Minutes (these calls were suspended starting in 2018)

6-Dec-2017 Assurance webinar (Introducing CTAB )

4-Oct-2017 Assurance Call (Refocusing Community Guidance of InCommon's Trust Programs: Baseline and Bronze)

7-June-2017 Assurance Call (Baseline Expectations Implementation)

1-March-2017 Assurance Call (NIST 800-63 / Digital Identity Guidelines

4-January-2017 Assurance Call (REFEDs Assurance Working Group)

2-November-2016 Assurance Call (2017 AAC Workplan Discussion)

5-October-2016 Assurance Call - Baseline Expectations and their Implementation (Slides) and (AdobeConnect)

3-August-2016 Assurance Call (Baseline Expectations - Last Call for Comments)

6-July-2016 (webinar on Baseline Expectations for Trust in Federation)

6-July-2016 (comments in Adobe Connect Chat during Assurance Call on Baseline Expectations

4-May-2016 (webinar on Federated Security Incident Response (SIRTFI) Effort)

6-April-2016 (webinar on MFA Interop Profile WG)

3 Feb 2016 (webinar on Insights in Assurance: Developments from Across the Pond)

4 Nov 2015 (webinar on survey results and baseline practices)

2 Sept 2015 (webinar on Shib IdP v3 and Duo MFA)

8 July 2015

6 May 2015 (flexible vetting)

1 April 2015 (password reset)

4 March 2015

5 Nov 2014
15 Oct 2014
4 Sep 2014
9 Jul 2014
19 March 2014 (presentation on Multi-Context Broker)
12 Feb 2014
4 Dec 2013
6 Nov 2013
2 Oct 2013
4 Sep 2013
7 Aug 2013
10 July 2013
5 June 2013
8 May 2013
3 April 2013
6 March 2013
13 Feb 2013
9 Jan 2013
12 Dec 2012