Blog


Introducing CTAB: Renewing Community Guidance for InCommon's Trust and Assurance 
Community Webinar - Wednesday, December 6, 2017
Noon ET / 11 am CT / 10 am MT / 9 am PT

The InCommon Community Assurance webinar December 6, 2017 focused on InCommon’s Assurance Advisory Committee (AAC) changing to the Community Trust and Assurance Board (CTAB).

  • The CTAB will have an expanded focus and change the AAC into a board that is representative of the InCommon community in support of our Baseline Expectations.
  • The expanded duties will include shepherding the community consensus, guiding InCommon’s Trust Programs, and leading dispute resolution when concerns about participants arise.
  • Members will have a substantial and lasting impact on how InCommon enables the academic mission.

This  webinar 

 Host and Presenter

  • Brett Bieber, University of Nebraska and Chair of the InCommon Assurance Advisory Committee (AAC)


 

 


Refocusing Community Guidance of InCommon's Trust Programs: Baseline and Bronze
Community Call and Webinar - Wednesday, October 4, 2017
Noon ET / 11 am CT / 10 am MT / 9 am Pt

Please join us for the InCommon Community Assurance call Wednesday, October 4, 2017 at noon ET

The Assurance Advisory Committee (AAC) was initially established to manage the US Government-approved assurance program to enable access to Federal services requiring 800-63-2 conforming credentials. However, uptake of that program has been primarily by schools interested in showing credential due diligence to their stakeholders, primarily because the US Government services in InCommon currently don't require an assurance profile.

But the AAC has been active in finding ways to increase the trust across the inCommon community, including developing the MFA Interoperability Profile – which is now under the wing of the international federation operators (REFEDS) -- and of course the InCommon Baseline Expectations program. 

Come join us on how the AAC is evolving and provide input on where the group should go by attending the upcoming webinar Refocusing Community Guidance of InCommon's Trust Programs: Baseline and Bronze. The discussion will cover:

  • Baseline Expectations and AAC responsibilities
  • Membership changes needed in the AAC
  • Survey results of InCommon Bronze members
  • Adjustments to AAC charter and recruitment of new members

Host and Presenter

  • Brett Bieber, University of Nebraska and Chair of the InCommon Assurance Advisory Committee (AAC)

 

Connection Details

  • Adobe Connect
  •  If you have never attended a Connect Pro meeting before:


  • eDial Connection Information:
    •  +1-734-615-7474 (English I2, Please use if you do not pay for Long Distance)
    •  +1-866-411-0013 (English I2, toll free US/Canada Only)
    •  PIN: 0135622 #

 

The InCommon Community Assurance call Wednesday, June 7 at noon ET.  focused on Baseline Expectations Implementation 

Baseline Expectations for Trust in Federation were vetted and approved in fall of 2016.  To move this work forward, the InCommon Assurance Advisory Committee (AAC) has developed a draft Baseline Expectations Implementation plan which will be presented on this call.  We look forward to the community's input and comments. Please review the key documents prior to the June 7,  2017 call: https://spaces.at.internet2.edu/x/E5qTBg

Host and Presenter

  • Brett Bieber, University of Nebraska and Chair of the InCommon Assurance Advisory Committee (AAC)

 

 


NIST 800-63-3 Digital Identity Guidelines: We Want to Hear from You on March 1

 

 

The InCommon Community Assurance call on March 1 featured Ken Klingenstein of Internet2 who led a discussion of the evolution of the NIST Special Publication (SP) 800-63 Electronic Authentication Guideline specification now known as the Digital Identity Guidelines. NIST is in the process of revising this important publication, and a 90-day comment period is underway until March 31, 2017. The InCommon Assurance Advisory Committee is hosting this webinar both to provide information on the changes to 800-63 and to highlight the ways for you to provide input.

Presenter

Ken Klingenstein, Internet2  

Host

Brett Bieber, University of Nebraska - and Chair 2017 of the InCommon Assurance Advisory Committee (AAC)

 

 

The InCommon Assurance Advisory Committee calls upon the Research and Education Trust and Identity community to participate in the Public Call for Comments on the latest draft of the NIST Digital Identity Guidelines, aka 800-63-3.
InCommon and the broader Research and Education sector have significant reason to pay close attention to the standards used by our partners within the U.S. government. This type of standard has the potential to shape electronic identity assurance for many years to come, and our alignment and interoperability with these standards are critical to collaborating with government sectors and beyond our own geographical borders.
Additionally, the Research and Education communities have continued to increase identity assurance through the MFA Interoperability Profile, Baseline Expectations, Entity Categories, and SIRTFI. We have a significant body of work and experience to offer our fellow identity professionals, and the responsibility to ensure that our paths are aligned as much as possible.
Please consider
The InCommon Assurance Advisory Committee will provide the Community Consultation feedback to NIST before the March 31st deadline.

The InCommon Community Assurance call Wednesday, Jan 4 at noon ET focused on REFEDS Assurance Work.

REFEDs the international organization of federation operators, convened an Assurance Working Group  to develop a new authentication assurance profile guided by requirements identified in a prior survey of the needs of research organizations. This work is nearing its first complete draft, and the approach taken has some novel aspects. The REFEDS Assurance WG chair is Mikael Linden, who will give us a look at the new profile and ask for your feedback. Of note, one aspect of the profile relies on adoption by REFEDS of the InCommon-developed MFA Profile. Mikael will also update us on its status.

Presenter

Mikael Linden (CSC -  Finnish IT Center for Science) 

Host 

Brett Bieber, University of Nebraska - and Chair 2017 of the InCommon Assurance Advisory Committee (AAC)

 

 

Nominations are open for the InCommon Assurance Advisory Committee (AAC) for three-year terms beginning in 2017.

Think you’re familiar with the AAC? Think again. The AAC shifted its focus in 2016 to increasing and communicating trust across federation participants. Our work included:

  • Baseline Expectations for all participants

  • Multi-factor Authentication Implementation Profile which is in the process of being adopted internationally

In the coming year, we will continue to develop trust practices built on top of the Baseline to add more value to the federation.

  • Develop new programs and standards that increase trust and assurance in federation.

  • Lead the discussion within the InCommon community and with peers internationally to achieve consensus on what steps should be taken next.

  • Coordinate community review in connection with current and future InCommon trust practices programs.

  • Advise on the US-Government approved InCommon Assurance Program

  • Update the Charter to reflect the new focus

We would like to invite participation from four areas: Auditor/Security, Service Provider, Identity Provider, and Member at Large. If you’d like to know more and have input into the AAC and what it does, please contact any of the AAC members listed at https://www.incommon.org/about.html.

The committee meets, virtually, every two weeks and has one or two face-to-face meetings per year, with terms lasting for three years. We welcome personal nominations, volunteers, and recommendations for the positions on the committee. Please reach out to express interest or with any questions to Chris Spadanuda, InCommon Assurance Committee Chair, cspada@uwm.edu.

Nominations will be accepted through Friday, December 2, 2016.

The InCommon Community Assurance call Wednesday, Nov. 2, 2016 focused on
Looking at the future of Trust and Identity – A Discussion about the 2017 Assurance Advisory Committee work plan

The Assurance Advisory Committee is beginning to look at its work plan for 2017. On this call we will be discussing the future plans for the AAC, possible modifications to the AAC charter, additional tags, collaborations with other groups such as REN-ISAC and the further development of the MFA profile. Additional discussion items and topics will be solicited from callers, please bring your ideas and thoughts to help make our community better!

Presenters

Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC)

Brett  Bieber, University of Nebraska and Vice Chair of the AAC

 

 

Download the slides (PDF)

View the webinar recording (Adobe Connect) - note: the first few minutes of the webinar are missing from the recording, please review the slides

The Aug. 3, 2016 InCommon Community Assurance call focused on  Baseline Expectations – Last Call for Comments

Many of you have already shared your thoughts on the Consultations page here (if not, please do):  

https://spaces.at.internet2.edu/display/InCAssurance/Baseline+Expectations+for+Trust+in+Federation

Note that the consultation period continues until Aug. 10, 2016

 

Host and Presenter

Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC)

 

 

The InCommon Community Assurance call next Wednesday, July 6th discussed the Baseline Expectations for Trust and the proposed next steps.  We would like to hear your thoughts and concerns!

Host
Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC)

Presenter

Tom Barton, University of Chicago


 

 

Who Ya Gonna Call? Get SIRTFI’d! - Update on the Federated Security Incident Response (SIRTFI) Effort

 

 

The InCommon Assurance Community webinar on Wednesday, May 4, 2016 focused on SIRTFI, the federated security incident response effort.

The expanding network of higher education and research facilities through interfederation presents some new risks. What if a single user account is compromised, and that person has access to many services globally? Such an incident may provide an entry point to our global network of resources linking thousands of organizations. How can we notify all interested parties in a way that is automated and timely? The Security Incident Response Trust Framework (SIRTFI) is working to enable a coordinated response to a security incident in a federated context, which will serve organizations in many countries and continents. 

 

Presenter
Tom Barton, University of Chicago

Host
Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC)


 

 

Resources from this webinar are now available.

Slides (PDF) are here. The Adobe Connect webinar recording is here.


The InCommon Assurance Community call on Wednesday. April 6 focused on the recent work of the Multifactor Authentication (MFA) Interoperability Profile Working Group.

Karen Herrington, Virginia Tech, and chair of the MFA Interoperability Profile working group, shared the working group's proposals, including: 

The host for the call was be Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC). 

 

 

 

Developments in Assurance: Insights from Across the Pond
Wed., Feb. 3, 2016 at noon ET

Resources from this webinar are now available!

Slides (PDF) are here. The Adobe Connect webinar recording is here.


The InCommon Assurance call on Wednesday. February 3 discussed “Developments in Assurance: Insights from Across the Pond.”  The discussion focused on two papers:

Important issues covered in the papers include:

  • Baseline assurance profile for IdPs
  • SP requirements
  • Self assessment tools
  • Recommended best practices

One of white paper authors joined us on the call:

  • Daniela Pöhn (Leibniz Supercomputing Centre) 
     
  • Mikael Linden (CSC -  Finnish IT Center for Science) (unable to join but provided slides)

The host for the call was  Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC). 

 

Do you enjoy being involved, want to be part of something great? Are you interested how Identity Assurance, Security, and Trust impact Higher Education? The InCommon Assurance Advisory Committee, part of the InCommon Assurance Program, is looking for new members to help shape the future! We are a fun collegial group, with a diverse background, who welcome new ideas. 

We would like to invite participation from three individuals:  someone in an Auditor/Security role, a Service Provider representative, and an Identity Provider representative.  

The InCommon Assurance Program is based on the tenet that good security and identity practices help ensure that an individual using an electronic credential is the person you think he or she is. For Service Providers in an identity federation, having Identity Provider Operators support a standard practice set (or profile) can mitigate the risk of service compromise. For Identity Providers it is a way to provide single sign-on access to applications requiring an increased level of confidence in a credential.

InCommon has two available profiles, Bronze and Silver, both approved by the US government's Identity Credential and Access Management program. The profiles are written by higher education for higher education, and are compatible with the US government's NIST Levels of Assurance 1 and 2. A major goal of the group is to evolve the InCommon Assurance Program into something that is better able to meet the needs of the community. We need your input and participation in order to accomplish this.

The Assurance Advisory Committee (AAC) is the oversight body of the InCommon Identity Assurance Program and advisory to the InCommon Steering Committee. According to the AAC charter, responsibilities include:

  • Providing oversight of the entire InCommon Identity Assurance Program;
  • Reviewing applications for certification to one or more InCommon Identity Assurance Qualifiers as set forth in the latest published InCommon Identity Assurance documents and make recommendations to the InCommon Steering Committee for the award or denial of such certifications; and
  • Recommending changes to the Identity Assurance documents and program.

Technologies are rapidly changing and the InCommon Assurance Advisory Committee is looking for people willing to bring new ideas and spearhead the future of Identity Assurance, Security and Trust. These items are foundational pieces of the InCommon Federation. In order to build and strengthen these foundational items, in bigger and better ways for the community, we need you!

The committee meets, virtually, every two weeks and has one or two face to face meetings per year. We welcome personal nominations, volunteers, and recommendations for the positions on the committee. Please reach out to express interest or with any questions to Chris Spadanuda, InCommon Assurance Committee Vice Chair, cspada@uwm.edu

 

Adobe Connect recording and slides from the Nov. 4, 2015 Assurance call:

 

The InCommon Assurance monthly call on Wednesday, Nov. 4 at noon ET focused on:

  • Results from the Assurance Survey conducted in Sept. 2015
  • Preliminary Proposal of InCommon Federation Baseline Practices
    to replace the InCommon Participant Operating Practices (POP)

Presenters

  • Jacob Farmer, Indiana University, InCommon Assurance Advisory Committee, Chair
  • Chris Spadanuda, University of Wisconsin-Milwaukee, InCommon Assurance Advisory Committee, Vice-Chair