The InCommon Assurance Program will open for business on Wednesday, February 29, 2012 with a webinar describing the criteria and process for certification. The webinar will take place at 2 pm (ET); connection information is included at the end of this announcement.
The assurance program certifies campuses, not-for-profit research organizations and sponsored partners that meet the identity and credential management requirements for specific profiles or practices. Central to the certification process is the Assurance Advisory Committee, comprised of community members that will make certification recommendations to the InCommon Steering Committee.
InCommon has two published sets of practices, Bronze and Silver, which align with the US government’s NIST levels 1 and 2, respectively. Bronze has a security level that slightly exceeds the confidence associated with a common Internet identity. Silver has a security level appropriate for financial transactions.
More than 15 campuses intend to apply for Silver certification in 2012, anticipating the use of applications from the National Institutes of Health, the National Student Clearinghouse, and other service providers. Several community-developed resources have been contributed to the Assurance wiki, most notably a cookbook for using Microsoft’s Active Directory to comply with the Silver Profile as well as Multi-factor Authentication Guidance for Silver, both developed by the CIC InCommon Silver working group.
The February 29 webinar will introduce the assurance program, outline certification requirements, and review the certification process.
Here are the details on the assurance webinar:
Wednesday, February 29, 2012
2 pm ET / 1 pm CT / Noon MT / 11 am PT
Slides, audio, and chat at internet2.adobeconnect.com/assurance
Back-up phone bridge information (in case of audio problems):
734-615-7474 (preferred), or
866-411-0013 (toll-free US and Canada)
PIN: 0194936
More info:assurance.incommon.org
Shibboleth Workshop Series April 12-13, 2012 – Columbia, Missouri
Identity Provider * April 12, 2012 * 9:00 a.m.-5:00 p.m. (CT)
Service Provider * April 13, 2012 * 9:00 a.m.-5:00 p.m. (CT)
www.incommon.org/educate/shibboleth
Register now for the Shibboleth Workshop Series, April 12-13, 2012, at the offices of MOREnet in Columbia, Missouri
Have you decided to deploy a web single sign-on (SSO) system and leverage it to access resources and contracted services through InCommon? Do you need training on installation and support?
Consider attending one or both:
- Shibboleth Identity Provider Workshop on April 12, 2012
- Shibboleth Service Provider Workshop on April 13, 2012
The InCommon Shibboleth Identity and Service Provider Workshops will provide attendees with technical installation and configuration experience with Shibboleth Single Sign-on and Federating Software, version 2.
Developed for organizations new to Shibboleth and those with existing implementations interested in upgrading to the v2 release, the workshops will offer attendees the chance to:
- Install either a prototype Shibboleth identity or service provider in a virtual machine environment.
- Hear tips for configuring and running the software in production.
- Learn about integration with LDAP directories and selected packages.
AUDIENCE includes higher education and partner organization representatives with knowledge of identity management concepts and related implementation experience. Organizations are encouraged to send one or two attendees who best represent the following functions:
- System install, integration, and ongoing support staff
- Campus technology architects
REGISTER SOON (http://www.incommon.org/educate/shibboleth/registration.html) to reserve a seat. Participation is limited to maintain program quality. For those staying overnight, there is a list of hotels on the workshop website (www.incommon.org/educate/shibboleth). NOTE: There is a separate registration process and fee for each workshop (IdP and SP). If you wish to attend both days, be sure to register for each.
RESOURCES: To learn more about Shibboleth, see the Shibboleth wiki. More information on federated identity can be found at www.incommon.org.
THIS SHIBBOLETH WORKSHOP SERIES event is sponsored by InCommon, Internet2, MOREnet, the University of Missouri, and the Great Plains Network.
The February issue of the InCommon newsletter is available on the web.
In this month's issue:
- Federated Error Handling to Improve User Experience
- First Service Providers Apply for R&S Category
- Two Shibboleth Workshops Planned
- New Certificate Service Subscribers
- New Participants in January
IAM Online - Wednesday, February 8, 2012
3 p.m. ET / 2 p.m. CT / 1 p.m. MT / Noon PT
www.incommon.org/iamonline
Policy and Privacy Considerations for Identity and Access Management in a Federated World
The institutional processes for supporting campus identity management initiatives are fraught with policy challenges, including privacy considerations. The legal and policy concerns intensify under a model of federated identity management where the Personally Identifiable Information collected and managed by a campus is shared as "attributes" with service providers outside the campus. And new concerns arise as US campuses extend their collaborations and resources internationally, and need to be responsive to these international partners. This webinar will discuss the privacy benefits of federations, explore the emerging policy questions, and identity international efforts to find workable solutions.
Speakers
Ken Klingenstein, Director, Middleware and Security, Internet2
Steven Carmody, IT Architect, Brown University
Moderator
Rodney Petersen, Managing Director, EDUCAUSE Washington Office
Connecting
We use Adobe Connect for slide sharing and audio: http://internet2.adobeconnect.com/iam-online. For more details, including back-up phone bridge information, see www.incommon.org/iamonline.
About IAM Online
IAM Online is a monthly online education series including essentials of federated identity management, hot topics from the EDUCAUSE Identity and Access Management Working Group, and emerging topics in IAM. Experts provide overviews, answer questions and lead discussions. IAM is brought to you by InCommon in cooperation with Internet2 and the EDUCAUSE Identity and Access Management Working Group.