AARC and GEANT GN4 projects are studying the Service Provider (SP) communities' (such as research infrastructures/communities) requirements on Level of Assurance (LoA). The survey results will serve the future development of federated authentication and authorization where end users' Home Organisation (e.g. the university or research institute employing the researcher) delivers him/her the authentication credentials and authenticates him/her.
1.Introduction to LoA
Narrowly speaking, LoA for user authentication covers two things:
...
The intention is to collect SP communities' needs for the Level of Assurance (LoA) of the identity and authentication provided by research Home Organisations i.e. the universities or other institutes employing the researchers and assigning them user identities.
...
2. Questions on the research infrastructures/communities
Who are your end users (who need to log in to your services):
- researchers with a Home Organisation (that operates or potentially operates an IdP)
- citizen scientists
- students with a Home Organisation (that operates or potentially operates an IdP)
- else/what?
...
3.How important it is for you that...
Identity concept
- all account belongs to an individual person (i.e. there are no shared accounts like "libraryuser1")?
- and all users are traceable (i.e. the home organization knows and can reach him/her)?
- and Home Organisation is willing to collaborate with you if their user misbehaves?
- that you (as an SP) can block him/her from your services?
...