Introducing CTAB: Renewing Community Guidance for InCommon's Trust and Assurance
Community Webinar - Wednesday, December 6, 2017
Noon ET / 11 am CT / 10 am MT / 9 am PT
The InCommon Community Assurance webinar December 6, 2017 focused on InCommon’s Assurance Advisory Committee (AAC) changing to the Community Trust and Assurance Board (CTAB).
- The CTAB will have an expanded focus and change the AAC into a board that is representative of the InCommon community in support of our Baseline Expectations.
- The expanded duties will include shepherding the community consensus, guiding InCommon’s Trust Programs, and leading dispute resolution when concerns about participants arise.
- Members will have a substantial and lasting impact on how InCommon enables the academic mission.
This webinar
- shared the proposed new charter for the Community Trust and Assurance Board (CTAB) and
- solicited new members to begin in 2018
Host and Presenter
- Brett Bieber, University of Nebraska and Chair of the InCommon Assurance Advisory Committee (AAC)
Refocusing Community Guidance of InCommon's Trust Programs: Baseline and Bronze
Community Call and Webinar - Wednesday, October 4, 2017
Noon ET / 11 am CT / 10 am MT / 9 am Pt
Please join us for the InCommon Community Assurance call Wednesday, October 4, 2017 at noon ET.
The Assurance Advisory Committee (AAC) was initially established to manage the US Government-approved assurance program to enable access to Federal services requiring 800-63-2 conforming credentials. However, uptake of that program has been primarily by schools interested in showing credential due diligence to their stakeholders, primarily because the US Government services in InCommon currently don't require an assurance profile.
But the AAC has been active in finding ways to increase the trust across the inCommon community, including developing the MFA Interoperability Profile – which is now under the wing of the international federation operators (REFEDS) -- and of course the InCommon Baseline Expectations program.
Come join us on how the AAC is evolving and provide input on where the group should go by attending the upcoming webinar Refocusing Community Guidance of InCommon's Trust Programs: Baseline and Bronze. The discussion will cover:
- Baseline Expectations and AAC responsibilities
- Membership changes needed in the AAC
- Survey results of InCommon Bronze members
- Adjustments to AAC charter and recruitment of new members
Host and Presenter
- Brett Bieber, University of Nebraska and Chair of the InCommon Assurance Advisory Committee (AAC)
- Adobe Connect
- If you have never attended a Connect Pro meeting before:
- Test your connection: http://internet2.acrobat.com/common/help/en/support/meeting_test.htm
- Get a quick overview: http://www.adobe.com/products/adobeconnect.html
- eDial Connection Information:
- +1-734-615-7474 (English I2, Please use if you do not pay for Long Distance)
- +1-866-411-0013 (English I2, toll free US/Canada Only)
- PIN: 0135622 #
The InCommon Community Assurance call Wednesday, June 7 at noon ET. focused on Baseline Expectations Implementation.
Baseline Expectations for Trust in Federation were vetted and approved in fall of 2016. To move this work forward, the InCommon Assurance Advisory Committee (AAC) has developed a draft Baseline Expectations Implementation plan which will be presented on this call. We look forward to the community's input and comments. Please review the key documents prior to the June 7, 2017 call: https://spaces.at.internet2.edu/x/E5qTBg
Host and Presenter
- Brett Bieber, University of Nebraska and Chair of the InCommon Assurance Advisory Committee (AAC)
NIST 800-63-3 Digital Identity Guidelines: We Want to Hear from You on March 1
Download the slides (PDF)
View/Listen to the recording (Adobe Connect)
The InCommon Community Assurance call on March 1 featured Ken Klingenstein of Internet2 who led a discussion of the evolution of the NIST Special Publication (SP) 800-63 Electronic Authentication Guideline specification now known as the Digital Identity Guidelines. NIST is in the process of revising this important publication, and a 90-day comment period is underway until March 31, 2017. The InCommon Assurance Advisory Committee is hosting this webinar both to provide information on the changes to 800-63 and to highlight the ways for you to provide input.
Presenter
Ken Klingenstein, Internet2
Host
Brett Bieber, University of Nebraska - and Chair 2017 of the InCommon Assurance Advisory Committee (AAC)
- submitting your feedback directly to NIST using their GitHub issue reporting system by March 31st, and/or
- submitting to the Internet2 Trust and Identity Consultation Feedback page on the wiki by March 15th: https://spaces.at.internet2.edu/pages/viewpage.action?pageId=108987144
Download the slides (PDF)
View the webinar recording (Adobe Connect)
The InCommon Community Assurance call Wednesday, Jan 4 at noon ET focused on REFEDS Assurance Work.
REFEDs the international organization of federation operators, convened an Assurance Working Group to develop a new authentication assurance profile guided by requirements identified in a prior survey of the needs of research organizations. This work is nearing its first complete draft, and the approach taken has some novel aspects. The REFEDS Assurance WG chair is Mikael Linden, who will give us a look at the new profile and ask for your feedback. Of note, one aspect of the profile relies on adoption by REFEDS of the InCommon-developed MFA Profile. Mikael will also update us on its status.
Presenter
Mikael Linden (CSC - Finnish IT Center for Science)
Host
Brett Bieber, University of Nebraska - and Chair 2017 of the InCommon Assurance Advisory Committee (AAC)
Nominations are open for the InCommon Assurance Advisory Committee (AAC) for three-year terms beginning in 2017.
Think you’re familiar with the AAC? Think again. The AAC shifted its focus in 2016 to increasing and communicating trust across federation participants. Our work included:
Baseline Expectations for all participants
Multi-factor Authentication Implementation Profile which is in the process of being adopted internationally
In the coming year, we will continue to develop trust practices built on top of the Baseline to add more value to the federation.
Develop new programs and standards that increase trust and assurance in federation.
Lead the discussion within the InCommon community and with peers internationally to achieve consensus on what steps should be taken next.
Coordinate community review in connection with current and future InCommon trust practices programs.
Advise on the US-Government approved InCommon Assurance Program
Update the Charter to reflect the new focus
We would like to invite participation from four areas: Auditor/Security, Service Provider, Identity Provider, and Member at Large. If you’d like to know more and have input into the AAC and what it does, please contact any of the AAC members listed at https://www.incommon.org/about.html.
The committee meets, virtually, every two weeks and has one or two face-to-face meetings per year, with terms lasting for three years. We welcome personal nominations, volunteers, and recommendations for the positions on the committee. Please reach out to express interest or with any questions to Chris Spadanuda, InCommon Assurance Committee Chair, cspada@uwm.edu.
Nominations will be accepted through Friday, December 2, 2016.
Download the slides (PDF)
View the webinar recording (Adobe Connect)
The InCommon Community Assurance call Wednesday, Nov. 2, 2016 focused on
Looking at the future of Trust and Identity – A Discussion about the 2017 Assurance Advisory Committee work plan
The Assurance Advisory Committee is beginning to look at its work plan for 2017. On this call we will be discussing the future plans for the AAC, possible modifications to the AAC charter, additional tags, collaborations with other groups such as REN-ISAC and the further development of the MFA profile. Additional discussion items and topics will be solicited from callers, please bring your ideas and thoughts to help make our community better!
Presenters
Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC)
Brett Bieber, University of Nebraska and Vice Chair of the AAC
View the webinar recording (Adobe Connect) - note: the first few minutes of the webinar are missing from the recording, please review the slides
The Aug. 3, 2016 InCommon Community Assurance call focused on Baseline Expectations – Last Call for Comments.
Many of you have already shared your thoughts on the Consultations page here (if not, please do):
https://spaces.at.internet2.edu/display/InCAssurance/Baseline+Expectations+for+Trust+in+Federation
Note that the consultation period continues until Aug. 10, 2016
Host and Presenter
Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC)
The InCommon Community Assurance call next Wednesday, July 6th discussed the Baseline Expectations for Trust and the proposed next steps. We would like to hear your thoughts and concerns!
Host
Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC)
Presenter
Tom Barton, University of Chicago
Who Ya Gonna Call? Get SIRTFI’d! - Update on the Federated Security Incident Response (SIRTFI) Effort
Download the slides (PDF)
View the recorded Adobe Connect session
The InCommon Assurance Community webinar on Wednesday, May 4, 2016 focused on SIRTFI, the federated security incident response effort.
The expanding network of higher education and research facilities through interfederation presents some new risks. What if a single user account is compromised, and that person has access to many services globally? Such an incident may provide an entry point to our global network of resources linking thousands of organizations. How can we notify all interested parties in a way that is automated and timely? The Security Incident Response Trust Framework (SIRTFI) is working to enable a coordinated response to a security incident in a federated context, which will serve organizations in many countries and continents.
Presenter
Tom Barton, University of Chicago
Host
Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC)
Resources from this webinar are now available. Slides (PDF) are here. The Adobe Connect webinar recording is here. |
The InCommon Assurance Community call on Wednesday. April 6 focused on the recent work of the Multifactor Authentication (MFA) Interoperability Profile Working Group.
Karen Herrington, Virginia Tech, and chair of the MFA Interoperability Profile working group, shared the working group's proposals, including:
The host for the call was be Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC).
Developments in Assurance: Insights from Across the Pond
Wed., Feb. 3, 2016 at noon ET
Resources from this webinar are now available! Slides (PDF) are here. The Adobe Connect webinar recording is here. |
The InCommon Assurance call on Wednesday. February 3 discussed “Developments in Assurance: Insights from Across the Pond.” The discussion focused on two papers:
a Service Aspects of Assurance white paper produced recently by GÉANT and
Recommendations on Minimal Assurance Level Relevant for Low-risk Research Use Cases produced recently by AARC
Important issues covered in the papers include:
- Baseline assurance profile for IdPs
- SP requirements
- Self assessment tools
- Recommended best practices
One of white paper authors joined us on the call:
- Daniela Pöhn (Leibniz Supercomputing Centre)
- Mikael Linden (CSC - Finnish IT Center for Science) (unable to join but provided slides)
The host for the call was Chris Spadanuda, University of Wisconsin - Milwaukee and Chair of the InCommon Assurance Advisory Committee (AAC).
Do you enjoy being involved, want to be part of something great? Are you interested how Identity Assurance, Security, and Trust impact Higher Education? The InCommon Assurance Advisory Committee, part of the InCommon Assurance Program, is looking for new members to help shape the future! We are a fun collegial group, with a diverse background, who welcome new ideas.
We would like to invite participation from three individuals: someone in an Auditor/Security role, a Service Provider representative, and an Identity Provider representative.
The InCommon Assurance Program is based on the tenet that good security and identity practices help ensure that an individual using an electronic credential is the person you think he or she is. For Service Providers in an identity federation, having Identity Provider Operators support a standard practice set (or profile) can mitigate the risk of service compromise. For Identity Providers it is a way to provide single sign-on access to applications requiring an increased level of confidence in a credential.
InCommon has two available profiles, Bronze and Silver, both approved by the US government's Identity Credential and Access Management program. The profiles are written by higher education for higher education, and are compatible with the US government's NIST Levels of Assurance 1 and 2. A major goal of the group is to evolve the InCommon Assurance Program into something that is better able to meet the needs of the community. We need your input and participation in order to accomplish this.
The Assurance Advisory Committee (AAC) is the oversight body of the InCommon Identity Assurance Program and advisory to the InCommon Steering Committee. According to the AAC charter, responsibilities include:
- Providing oversight of the entire InCommon Identity Assurance Program;
- Reviewing applications for certification to one or more InCommon Identity Assurance Qualifiers as set forth in the latest published InCommon Identity Assurance documents and make recommendations to the InCommon Steering Committee for the award or denial of such certifications; and
- Recommending changes to the Identity Assurance documents and program.
Technologies are rapidly changing and the InCommon Assurance Advisory Committee is looking for people willing to bring new ideas and spearhead the future of Identity Assurance, Security and Trust. These items are foundational pieces of the InCommon Federation. In order to build and strengthen these foundational items, in bigger and better ways for the community, we need you!
The committee meets, virtually, every two weeks and has one or two face to face meetings per year. We welcome personal nominations, volunteers, and recommendations for the positions on the committee. Please reach out to express interest or with any questions to Chris Spadanuda, InCommon Assurance Committee Vice Chair, cspada@uwm.edu
Adobe Connect recording and slides from the Nov. 4, 2015 Assurance call:
The InCommon Assurance monthly call on Wednesday, Nov. 4 at noon ET focused on:
- Results from the Assurance Survey conducted in Sept. 2015
- Preliminary Proposal of InCommon Federation Baseline Practices
to replace the InCommon Participant Operating Practices (POP)
Presenters
- Jacob Farmer, Indiana University, InCommon Assurance Advisory Committee, Chair
- Chris Spadanuda, University of Wisconsin-Milwaukee, InCommon Assurance Advisory Committee, Vice-Chair