InCommon is developing a program, tentatively called the InCommon Defined Identity Assurance Program, to define and certify standard practices for "identity assurance". This permits service providers who require higher levels of assurance for access to sensitive or high-risk resources to have a well-defined process for assessing identity providers. The InCommon program is intended to be consistent with similar initiatives in other communities, including the US Federal Government.
The following DRAFT documents describe the program and profiles:
The Framework and Profiles documents are now available for public comment. We encourage InCommon participants to review these documents and provide feedback. Discussion on various InCommon and Identity email lists is encouraged. You may also send comments to the InCommon Technical Advisory Committee via this email address "tac (at) incommonfederation.org". Or, you may choose to leave comments on this wiki page, below. InCommon expects to finalize the documents and make the program operational in the next few months.
Baseline Expectations for Trust in Federation
Baseline Expectations links and information
Baseline Expectations Foundational Document
InCommon Community Trust and Assurance Board (CTAB) Minutes Publicly Available
InCommon Community Trust and Assurance Board (CTAB) Minutes are publicly available here
The charter for the InCommon Community Trust and Assurance Board (CTAB) is here
InCommon MFA Interoperability Profile Working Group
The mission of the working group was to develop and document requirements for creating and implementing an interoperability profile to allow the community to leverage MFA provided by an InCommon Identity Provider by allowing SPs to rely on a standard syntax and semantics regarding MFA. See the working group wiki and the Final Work Products.
InCommon Silver with Active Directory Domain Services Cookbook for 1.2 Released
The final version of the InCommon Silver with Active Directory Domain Services Cookbook is available now! For an overview of the important bits, see the May 2014 webinar recording.
Reading Bronze: Understanding the InCommon Profile (recordings available)
InCommon sponsored a community reading of the Bronze InCommon Assurance Profile to aid in the understanding and intent of the requirements. There were four calls during Dec. 2013 and Jan. 2014. The calls have now concluded. Thanks to all who participated for the excellent comments and questions.
Recordings are available at this link.
Webinars and Presentations
InCommon Assurance Program website
Add yourself to our assurance email list by sending an email to email@example.com with this in the subject: subscribe assurance