This document provides a description of the journey that ensues from the time that your institution signs the InCommon Participation Agreement. This journey will likely raise issues for various areas of your institution, potentially affecting technology, policy, and operations. None of these are particularly onerous; your institution has probably already addressed most of them. Here's your itinerary:
Sign the Participation Agreement
The InCommon Federation
“The InCommon Federation is the U.S. education and research identity federation, providing a common framework for trusted shared management of access to online resources.” - InCommon Federation
This "common framework" creates multilateral trust among all federation participants, facilitated by the Federation Operator, to exchange identity information in a secure manner. Service Providers trust Identity Providers to provide accurate information, and Identity Providers trust Service Provides not to misuse the information they receive. Community Members trust both Identity Providers and Service Providers to respect their privacy, making use of their identity information only as needed, according to legal and institutional policy. Trusted Relationships for Access Management: The InCommon Model provides a detailed description of this.
By signing the Participation Agreement, your institution agrees to comply with multiple aspects of that multilateral trust, including:
- Deployment of conformant software
- Use of common syntax and semantics for Identity Assertions
- Provision of accurate information for the Trust Registry
- Provision of accurate contact information
- Respect for intellectual property rights
- Respect for privacy of identity information
- Adherence to Baseline Expectations for the mature and secure operation of IdPs and SPs
Compliance issues...
- From PA
- From Baseline Expectations
- Organizational vetting...
Establish Organizational Contacts
- Executive
- Billing (?)
- Site Admin
- Delegated Admins
Deploy Software
- IdP
- MFA
- SP
Register Federation Metadata
Congratulations! You Are Now Up and Running!
Keeping Current
- Mailing lists
- Internet2 Technology Exchange
- Internet2 Global Summit
Recommended Certifications
- R&S
- SIRTFI
Community Involvement
- Working Groups
- CACTI, TAC, CTAB
- PAG, Steering
- REFEDS