2 nd APGrid PMA F2F Meeting Osaka University Convention Center October 15 09: :20 # Participants: 26
Federation of Grid Authentication Each regional PMA is responsible for coordination of CA policy within the region coordination of CA policy with the other regional PMAs Three PMAs are the founders of the International Grid Trust Federation (IGTF) CA CA CA CA EUGrid PMA CA CA CA CA CA CA APGrid PMA CA CA CA CA TAG PMA Regional PMA is responsible for coordination of security policies within the region Three PMAs compose IGTF
APGridPMA: Members Ex Officio Membership AIST Yoshio Tanaka Japan APAC David Bannon Australia ASGCC Eric Yen Taiwan CNIC/SDG Kai Nan China IHEP Sun Gonxing China KEK Takashi Sasaki Japan KISTI Sangwan Kim Korea NAREGI Rumiko Masuko Japan NCHC Alex Wu TaiwanNECTEC Sornthep Vannarat ThailandNGO Jon Lau Singapore SDSC Mason Katz USA ThaiGrid Sugree Phatanapherom Thailand General Membership HKU Chen Lin, Elaine China U. Hyderabad Arun Agarwal India USM Boon Yaik Malaysia U. Osaka Susumu Date Japan
General Architecture of the IGTF Member PMAs are responsible for accrediting authorities The IGTF maintains a set of authentication profiles (APs) that specify the policy and technical requirements for a class of identity assertions and assertion providers. Each AP is assigned by the IGTF to a specific member PMA. Classic AP (EUGrid PMA) Short Lived Credential Services (SLCS) AP (TAGPMA) Member Integrated Credential Services (MICS) AP (TAGPMA) Experimental AP (APGrid PMA)
Scope of the APGrid PMA Manage the PMA membership Define charter and minimum CA requirements Publish related documents Maintain and revise the documents Accredit authorities with respect to the minimum CA requirements Coordinate auditing and re-certification of accredited authorities Monitor member CA signing namespaces Operate a secure collection point for information about accredited CAs Be primarily concerned with Grid communities in Asia Pacific, and their external partners
Agenda of the F2F meeting 09: :15 Welcome Shinji Shimojo 09: :45 Status Updates All CAs 09: :30 Recap of PMA/IGTF Yoshio Tanaka 11: :45 Accreditation NECTEC GOC CA 11: :30 In Depth Report KISTI Grid CA 13: :15 Invited Talk Yasuo Okabe 14: :20 Open Discussions - Procedures for Incident Response - Procedures for Incident Response - Grid Certificate Profile - Grid Certificate Profile - Classic Authentication Profile - Classic Authentication Profile - Short Lived Credential Services AP - Short Lived Credential Services AP - Member Integrated Credential Services AP - Member Integrated Credential Services AP
Highlights of the meeting NECTEC GOC CA was accredited as a IGTF-Classic compliant Certificate Authority. NECEC GOC CA will be included in the IGTF CA distribution after it will be ready for operation. Agreed that KISTI Grid CA will be removed from a list of accredited CAs due to some fundamental problems of its operation. PRAGMA CA will be ready to be accredited soon. Being a catch-all CA for PRAGMA community We have roughly reviewed the PRAGMA CA compliance with the IGTF Classic AP (minimum requirements) Animated discussions on reviewing proposed changes for the Classic AP Figured out some issues need to be revised. Report to the IGTF as comments from the APGrid PMA
Members (13 + 4) 9 Accredited CAs In operation AIST (Japan) APAC (Australia) ASGCC (Taiwan) CNIC (China) IHEP (China) KEK (Japan) NAREGI (Japan) Will be in operation NCHC (Taiwan) NECTEC (Thailand) 1 CA under review NGO (Singapore) 1 CA will be ready soon PRAGMA (USA)Planning ThaiGrid (Thailand) Will be accredited KISTI (Korea) General membership Osaka U. (Japan) U. Hong Kong (China) U. Hyderabad (India) USM (Malaysia)
Acknowledgements PRAGMA PRAGMA LA Date-sensei, Nozaki-sensei, Takao-san, Nakagawa-san NEDO (New Energy and Industrial Technology Development Organization) Funding support