Blog from December, 2010

Next IAM Online Jan. 12 - Focus on Persistent Identifiers
Dean Woodbeck (internet2.edu) posted on Dec 21, 2010

IAM Online - Wednesday, January 12, 2011

3 p.m. EST / 2 p.m. CST / 1 p.m. MST / Noon PST

www.incommon.org/iamonline

A Panel Discussion About Persistent Identifiers for Education

A number of factors are coalescing around the need for a globally unique, persistent, non-reassigned, transparent identifier for each individual. Join our panel to hear about these factors during the next IAM Online.

Chief among these factors is the mobility of users across sectors and services and the rise of virtual and collaborative organizations. The movement towards state longitudinal data systems (that track academic progress of students from pre-school to postsecondary education) and the rollout of the National Strategy for Trusted Identities in Cyberspace are forcing us to rethink the role of identifiers and credentials for education and beyond.

There remain a number of difficult technical, policy, and process issues, especially when personal identity, trust, privacy, and accountability must be considered. This panel discussion will explore some of the current technology and policy challenges presented by unique identifiers and credentials, as well as opportunities for establishing standards and practices for the education community and what is required for a global Identity, Credential, Access Management (ICAM) approach.

Panelists

Keith Hazelton, Senior IT Architect, University of Wisconsin-Madison
Steve Midgley, Deputy Director, Office of Education Technology, United States Department of Education
Tracy Mitrano, Director of IT Policy, Cornell University
Tim Poe, Senior Collaborative Technologist, MCNC
Tom Scavo, Operations Manager, InCommon
Bill Weems, Assistant VP for Academic Computing, The University of Texas Health Science Center at Houston

Hosts

Chris Duffy, CIO, Peirce College
Rodney Petersen, Government Relations Officer and Director of the Cybersecurity Initiative, EDUCAUSE

Connecting

We use Adobe Connect for slide sharing and audio: http://internet2.acrobat.com/iam-online.

For more details, see www.incommon.org/iamonline.

ABOUT IAM Online

IAM Online is a monthly online education series including essentials of federated identity management, hot topics from the EDUCAUSE Identity and Access Management Working Group, and emerging topics in IAM. Experts provide overviews, answer questions and lead discussions. IAM is brought to you by InCommon in cooperation with Internet2 and the EDUCAUSE Identity and Access Management Working Group.

No Metadata Updates Dec. 24 - Jan. 2
Dean Woodbeck (internet2.edu) posted on Dec 21, 2010

A reminder that Internet2 offices will be closed beginning Friday, December 24, and will reopen on Monday, January 3, 2011. During this period, InCommon metadata will not be updated. For more information on InCommon hours of operation, and metadata updates, please see: http://www.incommonfederation.org/ops/hours.html

WAYF Server Maintenance Dec. 27 - Check Firewall Settings
Dean Woodbeck (internet2.edu) posted on Dec 21, 2010

The server wayf.incommonfederation.org will undergo routine maintenance on Monday, December 27, 2010. To prevent disruption of services, the server (in Ann Arbor) will be cut over to a hot spare (in Indiana) on Sunday, December 26 at approximately 8:00 pm EST. The normal server configuration will be restored on Tuesday, December 28 at approximately 8:00 am EST.

There should be no disruption of services from wayf.incommonfederation.org during this maintenance window. However, if your environment is protected by a firewall, you may experience an issue unless you adjust your firewall settings, as described on this wiki page: https://spaces.at.internet2.edu/x/JwQjAQ

If you have questions, please send e-mail to incommon-admin@incommon.org.

Discovery Service Deployment Moves to January 5, 2011
Dean Woodbeck (internet2.edu) posted on Dec 14, 2010

We are rescheduling the production deployment of the new InCommon Discovery Service for January 5, 2011, rather than the December 15 date previously announced (https://spaces.at.internet2.edu/x/5IIaAQ). The DS depends on a new hot spare server, which is coming online on December 15 (https://spaces.at.internet2.edu/x/mwIjAQ). Due to this infrastructure change, the deployment of the production DS has been delayed.

The production Discovery Service will be deployed at a new URL, which is different than the URL of the InCommon WAYF. The FAQ (https://spaces.at.internet2.edu/x/FgEFAQ) shows how to reconfigure your software to use this new URL. We recommend that you do this as soon after January 5 as possible since we plan on making a permanent cut-over to the new Discovery Service on February 2.

This new schedule allows us to extend the time for feedback. Please visit the test service (https://service1.internet2.edu/test) and send any comments or suggestions to discovery@incommon.org by January 3, 2011. We have already received some valuable comments from a number of organizations, including UMBC, NCSA, UCLA, and the Trondent Development Corp. We look forward to receiving your comments, as well.

We will incorporate as many of your suggestions as possible into the service deployed on January 5. The desire for an incremental search interface has been heard loud and clear, but that feature (and some others) will require more time to implement and test. We have decided to release the production service without such features so that we can support those who wish to migrate to SAML V2.0 (which the old WAYF does not support).

For complete information about this new service, please visit the FAQ at https://spaces.at.internet2.edu/x/FgEFAQ.

InCommon Moving Hot Spare Server Dec. 15
Dean Woodbeck (internet2.edu) posted on Dec 10, 2010

InCommon metadata and discovery services are hosted at wayf.incommonfederation.org. Currently this hostname resolves to one of two identical servers, either in Michigan (207.75.165.125) or Ohio (192.148.244.135). The actual server used at any given point in time is unspecified and left to the discretion of InCommon operations. If one of the servers goes down or requires maintenance, the other can be brought up within minutes, with minimal disruption of services.

On December 15, 2010, the server in Ohio will be permanently cut over to an identical server in Indiana (140.182.44.53). This cut over will cause NO immediate disruption of services, but depending on the configuration of your environment, future services MAY be disrupted unless you take the following action.

If your SAML implementation (usually Shibboleth) or your metadata refresh processes are configured with hostnamewayf.incommonfederation.org (as opposed to an IP address), then there is NOTHING you need to do UNLESS you had to poke a hole in a firewall to configure metadata refresh in your environment. In that case, you should reconfigure your firewall settings to allow IP addresses 207.75.165.125 and 140.182.44.53 (not 192.148.244.135).

If you have questions, please send e-mail to incommon-admin@incommon.org.

InCommon Newsletter - December 2010
Dean Woodbeck (internet2.edu) posted on Dec 02, 2010

InCommon News - December 2, 2010

---------------
In This Issue:

  • Open Call for Steering Nominations - Dec. 6 Deadline
  • New Test Discovery Service Available
  • IAM Online December 9 - Federating Access to Virtual Organizations
  • New Documentation on X.509 Certificates in Metadata
  • InCommon Resources from Internet2 Member Meeting
  • New Participants

---------------
Open Call for Steering Nominations
InCommon is seeking nominations for three-year terms on the InCommon Steering Committee. The deadline is noon on Monday, Dec. 6 (EST). More information is at www.incommon.org/sc

---------------
New Test Discovery Service Available
InCommon has released a pre-production test version of a new Discovery Service, which will eventually replace the current WAYF. https://spaces.at.internet2.edu/x/5IIaAQ

---------------
IAM Online December 9 - Federating Access to Virtual Organizations
Increasingly, virtual organizations (VOs) of scientists are collaborating across organizational boundaries. This IAM Online will look at work being done to enable federated access to these services and infrastructures, and lower the barriers for such adoption. https://spaces.at.internet2.edu/x/UYAXAQ

---------------
New Documentation for X.509 Certificates in Metadata
Documentation regarding the use of X.509 certificates in federation metadata has been updated and expanded, particularly a new document on certificate migration. https://spaces.at.internet2.edu/x/zgEOAQ

---------------
InCommon Resources from Internet2 Member Meeting
A number of resources developed for the Internet2 Fall Member Meeting are available on the InCommon website and wiki, including the latest InCommon Update, notes from the InCommon Forums, and Netcasts of various sessions. http://www.incommon.org/2010FMM.html

---------------
New Participants in November
InCommon added two participants in November and now has 261 participants. These are the participants that joined in November.

Higher Education

  • Goodwin College (www.goodwin.edu)

Sponsored Partners

  • Serials Solutions (www.serialssolutions.com)

---------------
About Serials Solutions
Serials Solutions is the global leader in E-Resource Access and Management Services (ERAMS) that serves more than 3,000 libraries of all sizes and types. Serials Solutions' comprehensive suite of discovery tools and management services helps improve access to and use of collections, eases librarian workloads, and ultimately reduces operating costs. Solutions include: 360 Core E-Journal Portal, 360 Search, 360 Link and 360 Access Control all powered by KnowledgeWorks, the authoritative e-resource knowledgebase. For more information, please visit http://www.serialssolutions.com or call 1 (206) 545-9056. Serials Solutions is a business unit of ProQuest LLC.

--------------------
InCommon News is published by the InCommon Federation (www.incommon.org) for its participants and other interested parties. InCommon is an LLC of Internet2. Send feedback or comments to incommon-info@incommonfederation.org.

This newsletter is sent to incommon-announce@incommonfederation.org. To subscribe or unsubscribe, send an email to sympa@incommonfederation.org with one of these messages in the subject: subscribe incommon-announce or unsubscribe incommon-announce. You can also subscribe to the InCommon RSS news feed, which includes this newsletter, by visiting www.incommon.org/contacts.cfm.

InCommon Seeks Nominees for Steering Committee
Dean Woodbeck (internet2.edu) posted on Dec 01, 2010

The InCommon Federation announces an open call for nominations to serve on the governing InCommon Steering Committee. If selected, the term of service would be three years. Self-nominations are encouraged, as well as nominations of people that you feel would be excellent to serve.

To submit a nomination send an email to incommon-nom@incommon.org by noon (Eastern) on Monday, December 6th. InCommon Steering will confirm interest for all candidates put forth on the recommended slate to the Internet2 CEO.

For more information on InCommon Steering or the governance process please visit the URL: http://www.incommon.org/sc.