This consultation was open October 13, 2018 through November 12, 2018. Submissions will be reviewed to contribute to the finalization of the recommendations. 


Background

Internet2 Trust and Identity's Community Architecture Committee for Trust and Identity (CACTI) is seeking feedback on "FIM4Rv2 Assessment for Internet2 Trust and Identity."  This is a white paper outlining gaps between the current state of Trust and Identity's offerings and the FIM4Rv2 recommendations from the research community in Federated Identity Management for Research Collaborations, as well as recommendations for closing those gaps. It is expected that CACTI's recommendations will form the basis for ongoing efforts to enhance its support for research in the future.

Document for review/consultation

Aggregation of Input Received


Change Proposals and Feedback - We welcome your  feedback/suggestions here

If you have comments that do not lend themselves well to the tabular format below, please create a new Google doc and link to it in the suggestion section below.


NumberCurrent TextProposed Text / Query / SuggestionProposer+1 (add your name here if you agree with the proposal)Action
1

CILogon has become a critical service for existing collaborations as well as a foundation for broader collaboration, but there is currently no sustainability model.

CILogon has become a critical service for existing collaborations as well as a foundation for broader collaboration, but its current subscription-based sustainability model could benefit from more stable, long-term support.James Basney (illinois.edu)
The text will be modified as suggested.
2(p36, sB.11, para #2)
The number of participating national identity federations (IDFs) has grown from a handful to 18 in mid 2017, enabling user’s from 1577 organisations to use single sign-on to login to CLARIN services.
The number of participating national identity federations (IDFs) has grown from a handful to 18 in mid 2017, enabling users from 1577 organisations to use single sign-on to login to CLARIN services.
This was in the original FIM4Rv2 paper ("Federated Identity Management for Research Collaborations"), which is already final.
3

(Gap3 - page 10 IdP of last resort)

Researchers from institutions that have not federated their IAM systems are not well served.  An IdP of Last Resort that releases R&S attributes and can be used internationally is needed.

Researchers from institutions that have not federated their IAM systems are not well served.  An IdP or perhaps a set of regional IdPs (hosted in Research Computing facilities) of Last Resort that releases R&S attributes and can be used internationally is needed.  

Warren Curry

(ufl.edu)


The text will be modified as suggested.
4Recommendations related to IdPs as a Service and IdPs of Last Resort.Be more explicit about which of these is indicated, and how they support research activities.Oct-18-2018 Open CACTI meeting at TechEx in Orlando
The recommendations related to IdPaaS and IdPoLR will be made more explicit.
5OIDCThere should be more explicit recommendations regarding use cases that are not handled well with SAMLOct-18-2018 Open CACTI meeting at TechEx in Orlando
6TimelineConsider adding a timeline for recommended actions.Oct-18-2018 Open CACTI meeting at TechEx in Orlando

7The paper's focus on recommendations for InCommonConsider adding recommendations for the other "strata" in the FIM4Rv2 report (e.g., identity providers, research service providers, software developers).Oct-18-2018 Open CACTI meeting at TechEx in Orlando

8SecurityConsider more explicit recommendations for SIRTFI, proactive security assessments, etc.Oct-18-2018 Open CACTI meeting at TechEx in Orlando

9OutreachConsider help for campuses to bridge the gap between researchers and their IAM staff. Also explore ways to reach out to researchers directly.Oct-18-2018 Open CACTI meeting at TechEx in Orlando

10

Improve clarity of collaboration as a service pivoting on adopters (both sites and projects) understanding the tools, readiness and/or maturity of campus IAM solutions to allow ease of use such that adoption barriers are minimal.

Nov 9 Author's meeting

11

For each of the authors listed, please provide the ORCID ID where possible.

Nicholas Roy: https://orcid.org/0000-0001-6515-4316

Emily Eisbruch








See Also