The Steering Committee has approved version 1.1 of the two documents that represent the foundations of its Identity Assurance program: The InCommon Identity Assurance Assessment Framework (IAAF) and the The InCommon Identity Assurance Profiles (IAP), also known as InCommon Bronze and Silver. The documents are available on the assurance page of the InCommon website. Background for Version 1.1 The InCommon Identity Assurance 1.0 document set published in 2008 was largely based on the no-longer-extant US federal government eAuthentication Credential Assessment Framework. The federal government's requirements and priorities have since changed. New materials regarding electronic authentication and trust frameworks were published by the government's Identity, Credential and Access Management (ICAM) initiative in 2009. In addition, a group of early-adopter campuses has been working through the assessment process of the Silver Assurance Profile and developed a number of questions and recommendations, including important contributions from both IT and Audit staff. Together these developments created strong motivation to simplify and clarify the InCommon Identity Assurance documents while retaining their basic structure and intent. Both government requirements and real-world assessment experience from campuses have been incorporated. An FAQ about the InCommon Identity Assurance Program is now available: https://spaces.at.internet2.edu/x/dQBvAQ The community wishes to thank the schools that have been working on the Silver adoption process – the Committee for Institutional Cooperation (CIC)'s Silver Audit team, which includes the Big Ten plus the University of Chicago, along with the University of Washington and Virginia Tech. The University of California schools have also been engaged in a Silver review and in providing feedback. In addition, a group of member-institutions of SURA (Southeastern University Research Association) has recently started a Silver adoption process. Both of these collaborations will document their efforts, which will help all of us as we move to adopt Silver. Members of ACUA, the Association of College and University Auditors, also provided significant comments. We also wish to thank the review committee for their tireless and careful elucidation of the framework and accompanying profiles. General information about the Assurance program can be found here: http://incommon.org/assurance/ Baseline Expectations for Trust in FederationBaseline Expectations links and information Baseline Expectations Foundational Document InCommon Community Trust and Assurance Board (CTAB) Minutes Publicly AvailableInCommon Community Trust and Assurance Board (CTAB) Minutes are publicly available here The charter for the InCommon Community Trust and Assurance Board (CTAB) is here InCommon MFA Interoperability Profile Working GroupThe mission of the working group was to develop and document requirements for creating and implementing an interoperability profile to allow the community to leverage MFA provided by an InCommon Identity Provider by allowing SPs to rely on a standard syntax and semantics regarding MFA. See the working group wiki and the Final Work Products. InCommon Silver with Active Directory Domain Services Cookbook for 1.2 ReleasedThe final version of the InCommon Silver with Active Directory Domain Services Cookbook is available now! For an overview of the important bits, see the May 2014 webinar recording. Reading Bronze: Understanding the InCommon Profile (recordings available)InCommon sponsored a community reading of the Bronze InCommon Assurance Profile to aid in the understanding and intent of the requirements. There were four calls during Dec. 2013 and Jan. 2014. The calls have now concluded. Thanks to all who participated for the excellent comments and questions. Recordings are available at this link. Assurance ProgramSpecification DocumentsAlternative Means Toolkits Technical InterOp Community Contributions Webinars and Presentations
|