...
10:30 - 12:30 | GÉANT Project Future Workplan |
12:30-13:30 | Lunch |
13:30 | State of the Interfederation Service - Brook Schofield (PDF) |
14:00 | Thinking of best practices in eduGAIN - Nicole Harris |
14:30 | eduGAIN Support - Thomas Baerecke (PDF) |
15:00 - 15:30 | Coffee break + Catch-Up Time |
15:30 | T&I Operations - Dick Visser (PDF) |
16:00 | Any other Business (PDF) |
16:30 | Summary and Actions |
17:00 | Close |
...
9:15 - 12:00 |
Attendance
Registration information available at https://eventr.geant.org/events/2786
Federations in Attendance (26)
...
- GRNET
- SURFconext
- LITNET FEDI
- DFN-AAI
- WAYF
- LEAF
- SWAMID
- SWITCHaai
- ARNaai
- FEIDE
- InCommon
- RCTSaai
- FEBAS
- IDEM
- eduID.cz
- eduID.lu
- SIR
- ACOnet Identity Federation
- eduID.hu
- IIF
- UK Federation
- CIF
- BIF
- GIF
- CAF
- SAFIRE
Attendees (50)
...
- Kostas Koumantaros - Greek Research and Technology Network - GRNET
- Mischa Sallé - Nikhef
- Niels van Dijk - SURFnet bv
- Eimantas Šerpenskas - Litnet | Kaunas University of Technology
- Nicole Harris - GÉANT
- Henny Bekker - SURFnet bv
- Wolfgang Pempe - DFN
- Mads Freek Petersen - wayf.dk
- Tangui Coulouarn - DeIC
- Brook Schofield - GÉANT
- Hans-Peter Ligthart - SURFmarket
- Maarten Kremers - SURFnet bv
- David Groep - Nikhef
- Chris Atherton - GÉANT
- Gerben Venekamp - SURFsara
- Valentin Pocotilenco - RENAM
- André Moreira - CLARIN ERIC
- Pål Axelsson - SUNET
- Ann Harding - SWITCH
- Molnár Péter - NIIF Programme / KIFU
- Klaas Wierenga - GEANTGÉANT
- Ouafa Bentaleb - Algerian Research Network, ARN
- Jaime Pérez Crespo - Feide
- Licia Florio - GÉANT
- Nick Roy - Internet2
- Lars Kviteng - UNINETT - Feide
- Sam Jones - Mimoto
- Leif Johansson - SUNET
- Thomas Baerecke - SWITCH
- Lukas Haemmerle - SWITCH
- Esmeralda de Jesus Galamba Pires - FCT|FCCN
- Andrey Novosad - UIIP NASB / BASNET
- Oleg Nosylovsky - UIIP NASB / BASNET
- Davide Vaghetti - Consortium GARR
- Michal Procházka - CESNET, z. s. p. o.
- Slávek Licehammer - CESNET, z. s. p. o.
- Alan Buxey - MyUniDAYS Ltd
- Jule Ziegler - LRZ/DFN
- Mario Reale - Consortium GARR
- Stefan Winter - RESTENA
- Jose-Manuel Macias Luna - RedIRIS
- Peter Schober - ACOnet staff
- José María Fontanillo Muñiz - RedIRIS (Pruebas SIR2 directo) - Spanish Research and Academic Network
- Dick Visser - GÉANT
- Christos Kanellopoulos - GÉANT
- Casper Dreef - GEANTGÉANT
- Michael Schmidt - Leibniz Supercomputing Centre (LRZ)
- Hendrik Ike - GEANTGÉANT
- Amina Khedimi - cerist
- Héder Mihály - MTA SZTAKI
...
Virtual Attendees (
...
22)
...
- Eli Beker - IUCC
- Rhys Smith - Jisc
- Mohácsi János - NIIF Programme / KIFU
- Keith Hazelton - University of Wisconsin-Madison
- Keith Hazelton - University of Wisconsin-Madison
- Ingimar Örn Jónsson - University of Iceland / RHnet
- Antonis Tzirkallis - CYNET
- Szabó Gyula - MTA SZTAKI Hungary eduID.hu
- Frank Tamás - WIGNER Research Centre for Physics
- Stefan Paetow - Jisc
- Reimer Karlsen-Masur - DFN-CERT Services GmbH
- Georgi Tsochev - BREN
- José María Fontanillo Muñiz - RedIRIS (Pruebas SIR2 directo) - Spanish Research and Academic Network
- Temur Maisuradze - GRENA
- Marina Adomeit - AMRES
- Ralf Groeper - DFN
- Yuri Demchenko - University of Amsterdam
- Christoph Graf - SWITCH
- Chris Phillips - CANARIE
- Lalla Mantovani - Consortium GARR
- Hannah Short - CERN
- Marco Leonardi - ESA/ESRIN
- Guy Halse - TENET
- Harry V. Lalor - SheerID, Inc.
Apologies (7)
...
- Marco Malavolti - Consortium GARR
- Andrea Biancini - RETI
- Mark Bevers - SURFmarket
- Filip Marinic - European Space Agency
- Miroslav Milinovic - SRCE
- Thomas Lenggenhager - SWITCH
- Arnout Terpstra - SURFnet bv
...
Thinking of best practices in eduGAIN
Nicole clarified that work on reviewing all policies has largely been completed. There was no need to change the eduGAIN Policy Declaration. The constitutions is completely published and that new constitution requires a SAML profile going with it. The current status of the consultation was presented and a few "sticking points" were discussed.
Peter Schober clarified his comment about MetaIOP where "you must trust a key that is contained in the MD, purely since you trust the MD. You cannot NOT TRUST a certificate as a result and ADFS is not always compliant". In the balancing act of not kicking out ADFS and making use of existing definitions, further discussion will be required to resolve this.
In the current version of the policy, we require registrationinstant - but if nobody uses it, why do we keep it? There weren't any good reasons to enforce its use (which we don't anyway because it is SHOULD) simpler to remove.
Finally, regarding MD aggregators that aggregate metadata from multiple sources MUST use <mdrpi: PublicationPath> but since MDS only accepts metadata from a registrationAuthority and would ignore other entries this isn't needed. Delete.
[ACTION] Nicole to review and republish the eduGAIN SAML Profile.
...
Any other business was triggered by a short slide deck by Niels van Dijk (PDF) which presented on a proposal to make community signed metadata (in the vein of PEER/REEP) available with decorations. No concrete action resulted from this discussion.
All presentations can be found online.
...