...
Federated identity introduces new challenges for security incident response. Federation participants should consider the impact of federated identity in their incident response practices and treat federated identity partners impacted by a local security incident in a similar manner as they would local parties.
The CIC Identity Management Taskforce published in February 2011 a Federated Security Incident Response Policy upon which much of this material is based.
| Table of Contents |
|---|
Incident Response Policy
...
| Code Block | ||||
|---|---|---|---|---|
| ||||
<md:ContactPerson contactType="other"
xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:ext="urn:mace:incommon:contactType"
ext:extendedType="security">
<md:EmailAddress>mailto:security@example.edu</md:EmailAddress>
<md:TelephoneNumber>999-999-9999</md:TelephoneNumber>
</md:ContactPerson>
|
Acknowledgements
This material was originally developed by the CIC Identity Management Taskforce (see: Federated Security Incident Response Policy).