Skip to end of metadata
Go to start of metadata

InCommon Assurance Community Wiki

Baseline Expectations for Trust in Federation

Consultation Period Closes on Aug. 10, 2016

InCommon MFA Interoperability Profile Working Group

The mission of the working group is to develop and document requirements for creating and implementing an interoperability profile to allow the community to leverage MFA provided by an InCommon Identity Provider by allowing SPs to rely on a standard syntax and semantics regarding MFA. See the working group wiki space.

Guidance for Supporting SHA-2 Signed Assertions

In August 2014, InCommon released Migrating to SHA-2 to help certified campuses support SHA-2 signed assertions.

In June 2014, InCommon Steering approved the (now expired) "Alternative Means for Bronze and Silver Requirement to Discontinue SHA-1 Encryption for SAML Assertions" to ease the transition for Identity Provider Operators that had been certified by the InCommon Assurance Program or were wishing to apply for certification by January 15, 2015.

InCommon Silver with Active Directory Domain Services Cookbook for 1.2 Released

The final version of the InCommon Silver with Active Directory Domain Services Cookbook is available now! For an overview of the important bits, see the May 2014 webinar recording

Reading Bronze: Understanding the InCommon Profile (recordings available)

InCommon sponsored a community reading of the Bronze InCommon Assurance Profile to aid in the understanding and intent of the requirements. There were four calls during Dec. 2013 and Jan. 2014.  The calls have now concluded. Thanks to all who participated for the excellent comments and questions.

Recordings are available at this link.

Assurance Program

Specification Documents

Alternative Means

Multi-Context Broker Model

The Multi-Context Broker (MCB) was released in February of 2014 to improve support for multi-factor authentication and assurance profiles in version 2.x of the Shibboleth IdP.  MCB functionality is also in the more recent Shibboleth IdP version 3.x.  See Multi-Context Broker for more more background and information on how to configure and deploy the MCB for either version of the Shibboleth IdP.

Community Resources

Toolkits

Technical InterOp

Community Contributions

Webinars and Presentations

Additional Resources

InCommon Assurance Program website


Stay Informed

Add yourself to our email list by sending an email to sympa@incommon.org with this in the subject: subscribe assurance

Join our monthly Assurance calls scheduled for Noon ET on the first Wednesday of every month. 
+1-734-615-7474 
+1-866-411-0013 (toll free US/Canada Only)
PIN: 0129048#

 

 

Assurance Call Minutes

6-July-2016 (webinar on Baseline Expectations for Trust in Federation)

6-July-2016 (comments in Adobe Connect Chat during Assurance Call on Baseline Expectations

4-May-2016 (webinar on Federated Security Incident Response (SIRTFI) Effort)

6-April-2016 (webinar on MFA Interop Profile WG)

3 Feb 2016 (webinar on Insights in Assurance: Developments from Across the Pond)

4 Nov 2015 (webinar on survey results and baseline practices)

2 Sept 2015 (webinar on Shib IdP v3 and Duo MFA)

8 July 2015

6 May 2015 (flexible vetting)

1 April 2015 (password reset)

4 March 2015

5 Nov 2014
15 Oct 2014
4 Sep 2014
9 Jul 2014
19 March 2014 (presentation on Multi-Context Broker)
12 Feb 2014
4 Dec 2013
6 Nov 2013
2 Oct 2013
4 Sep 2013
7 Aug 2013
10 July 2013
5 June 2013
8 May 2013
3 April 2013
6 March 2013
13 Feb 2013
9 Jan 2013
12 Dec 2012

Page: 2016 AAC Roster Page: Approaches to Supporting the Federal Privacy Requirements Page: Assurance 1.2 Specification Review Page: Assurance Call of 6-July-2016-Comments in AdobeConnect Chat Page: Assurance Implementation Example - Virginia Tech Page: Assurance Implementation Toolkits Page: Assurance Technical Implementation Considerations Page: Background on Version 1.1 Page: Baseline Expectations for Trust in Federation Page: Community Contributions Page: Deprecated Versions Page: Footer Page: InCommon Assurance Alternative Means History Page: Minutes of Assurance call of 13-Feb-2013 Page: Minutes of Assurance Call of 1-April-2015 Page: Minutes of Assurance Call of 2-Oct-2013 Page: Minutes of Assurance Call of 3-April-2013 Page: Minutes of Assurance Call of 4-Dec-2013 Page: Minutes of Assurance Call of 4-March-2015 Page: Minutes of Assurance Call of 4-Sep-2013 Page: Minutes of Assurance Call of 4-Sep-2014 Page: Minutes of Assurance Call of 5-June-2013 Page: Minutes of Assurance Call of 5-Nov-2014 Page: Minutes of Assurance Call of 6-March-2013 Page: Minutes of Assurance Call of 6-Nov-2013 Page: Minutes of Assurance Call of 7-Aug-2013 Page: Minutes of Assurance Call of 8-July-2015 Page: Minutes of Assurance Call of 8-May-2013 Page: Minutes of Assurance Call of 9-Jan-2013 Page: Minutes of Assurance Call of 9-Jul-2014 Page: Minutes of Assurance Call of 10-July-2013 Page: Minutes of Assurance Call of 12-Dec-2012 Page: Minutes of Assurance Call of 12-Feb-2014 Page: Minutes of Assurance Call of 15-Oct-2014 Page: Minutes of Assurance Call of 19-March-2014 Page: Multi-Context Broker Page: Reading Bronze Assurance Profile Page: Request for Proposal - Assurance and MFA Enhancements to Shibboleth Identity Provider Page: Shibboleth Enhancements - Project Status Page: Transition to SHA-256 including Alternative Means