IGTF All Hands and EUGridPMA 38 meeting

19 Sept 2016, 09:30 → 21 Sept 2016, 13:00 Europe/Amsterdam

IT auditorium (CERN, Geneva)

pictures IMG_2075.JPG

Monday, 19 September

1 Welcome and introduction

Speakers: David Groep (Nikhef), Paolo Tedesco (CERN)

Slides Geneva-2016-intro.ppt

2 Trusting External Identity Providers for Global Research Collaborations - Mind the Gap!

Who do we trust to provide identity and access management services for our research collaborations? When do we decide to implement it ourselves versus relying on others? How do we create incentives for establishing trust? How do we bridge the gaps in trust, functionality, and reliability? In this presentation, Jim will review lessons learned from his experiences working with IGTF certificates, eduGAIN SAML assertions, and OpenID Connect claims for access to scientific research applications. What new challenges appear when moving from 1 to 10 to 100 to 1000 identity providers? Why does identity information flow more easily in some federations and not others? How do we determine what levels of assurance we need and find providers who can meet those needs? How do we mitigate the risks? How do we effectively federate services operated by the research community, higher education institutions, NRENs, and commercial providers?

Speaker: Jim Basney (NCSA)

Slides 2016-igtf-basney.pdf

11:00 Coffee

3 Trust and coordination of incident response information in a federated world

Speaker: Hannah Short (CERN)

Slides 20160919_EUGridPMA_Sirtfi.pptx

12:30 Lunch

4 The HPCI Infrastructure and AAI

Speaker: Eisaku Sakane (NII)

Slides hpci-20160913-sakane.pdf

15:00 Tea

5 The AARC model: developing an architecture and trusted pilots to support research

Speaker: Christos Kanellopoulos (GRNET)

Slides AARC-Archiecture-Trusted-pilots.pptx

Tuesday, 20 September

6 Welcome to the (closed) meeting

Speaker: David Groep (Nikhef)

7 Updated from the APGridPMA

Speaker: Eric Yen (ASGC)

Slides APGridPMA-20160920.pdf

8 Updated from the TAGPMA

Speaker: Derek Simmel (PSC)

9 Accreditation I: DarkMatter/UAE

Speaker: Scott Rea (DarkMatter)

Slides DM-PKI.pdf

11:00 Coffee

10 Self-audit status reports

Speaker: Cosmin Nistor (ROSA)

11 Credential life time for host credentials: from one year to 3 years for hosts?

12:30 Lunch

12 Update on the EGI Catch All CA

Speaker: Christos Kanellopoulos (GRNET and EGI)

Slides 20160920-EGI-CatchALL-CA-EUGridPMA-CERN.pdf

13 Generalising the IGTF assurance levels for use in SAML federations

Speaker: Jim Basney (NCSA)

Slides 2016-igtf-assurance.pdf

15:00 Tea

14 IPv6 support in IGTF

Speaker: David Kelsey (STFC RAL)

Slides http://indico.rnp.br/getFile.py/access?sessionId=5&resId=0&materialId=0&confId=217

15 Jens’ Soap Boxes (tbc)

Speaker: Jens Jensen (RAL STFC)

Slides soapbox.pptx VirtualF2F.pptx

16 CAOPS WG: GFD225 publication

Wednesday, 21 September

17 Checklist for MICS-based CAs

Speaker: Eisaku Sakane (NII)

Slides checklist_MICS-sakane.pdf

18 Remote vetting models and approved procedures

Speaker: Eisaku Sakane (NII)

Slides remote_vetting-sakane.pdf

19 Disaster Recovery development group

Speaker: Shahin Rouhani (IPM)

10:45 Coffee

20 Generalised Assurance Levels in federation land

Speaker: David Groep (Nikhef)

Slides IGTF-LoA-comments-by-fedops.ppt

21 Business considerations for prospective CAs: do you need to run your own

do you need to run your own, or: who can provide services to new groups in our constituency? (Scott Rea) could we draft a list of providers in the IGTF that are willing to support new communities?

Speaker: Scott Rea (DarkMatter)

22 Closing