You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 30 Next »

 Topic participants

Topic proposers
GN4-3 project participants working on this topic
NameOrganisationEmailRole

uros.stevanovic@kit.eduP.I.
DFN-LRZjule.ziegler@lrz.deScrum Master
SURFnetniels.vandijk@surfnet.nlMentor
Halil AdemGRNET
A-Team: Developer
Litnetandrejshliamin@gmail.comA-Team: Developer
Stakeholders for this topic
Name
Organisation
EmailRole 
Hannah Short

Sirtfi community (REFEDs)

also in GN4-3 WP5 T4

hannah.short@cern.ch


 Review and feedback
David Group 

Sirtfi community (REFEDs)

also in GN4-3 WP5 T4

davidg@nikhef.nlReview and feedback
Tom Barton

Sirtfi community (REFEDs)

University of Chicago & Internet2

tbarton@uchicago.netReview and feedback
Scott Koranda 

 Sirtfi community (REFEDs)

LIGO


 Implement & test solution in context of LIGO

 Topic overview

Description

Research communities have a need to express and potentially share certain trust marks on IdPs and SPs. These trust marks may differ from existing trust marks issued by identity federations, or may be put in to compliment existing ones, in case the federation operator does not support these, like e.g. in the case of SIRTFI.

This project tries to implement a technical solution that matches the requirements as described by the SIRTFI community and investigates usability of the solution for research communities and the impact of the solution of Identity federations. It also explores potential other scenarios where a similar methodology could be used, like e.g. REFEDs MFA and in the context of the IdP self assessment tool that was developed in GN42

It does not consider itself with the questions on where and how such a tool would be used in the context of existing trust frameworks.

Goals

Topic goals:

  • Create technical implementation based on Sirtfi + Registry document
  • Distill technical requirements from Sirtfi + Registry document;
  • Create/Describe technical design;
  • Buy or build (or modify existing);
  • Improve trough sprint iterations;
  • Interact with Sirtfi working group to improve features if needed.
  • Learn and discuss flows and usability in ‘real world’ (Collaborate with LIGO)
  • Deploy working setup so it can be tested with stakeholders
  • Explore and describe (& implement) authZ architecture in collaboration w/ Sirtfi working group

Topic Details

Technical details

Initial technical details:

The project is supposed to represent a web portal, where users (i.e. dusters) will access using their federated credentials. The users will, upon invitation, be able to assert Sirtfi tag for the entity under their control. The flow will resemble https://access-check.edugain.org/ . The more detailed description can be found here: https://docs.google.com/document/d/1Hwdi7iO3v2U-RrzgT_EhL7AA0xkE9RIr_bQac2IhZ3M

Business case

The current plan is to test the implementation, and to determine whether the trust model is satisfactory. Potentially, potential applications of the solution may extend the current Sirtfi+ use case.


Data protection & Privacy

With the federated access and adhering to basic principles of Federated Identity Management (following DPCoCoV2 and, e.g., applicable AARC guidelines), no new issues regarding processing of personal data are foreseen.


Definition of Done (DoD)

Work is done when the initial version is implemented and evaluated.


Sustainability

When this Incubator project is completed, do you intend to continue using the solution? If yes, can you describe how you intent to sustain it? (E.g. through own staff, by using an e-Infrastructure provider, ...)

<Enter here>

Meetings

Date

Activity

Owner

Minutes

Feb 18, 2017

Kickoff meeting

















Documents

(Attach any documents to this page to get them listed.)



  • No labels