Presentation is loading. Please wait.

Presentation is loading. Please wait.

Winter 2011 CSG Workshop: InCommon Silver January 12, 2011.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Winter 2011 CSG Workshop: InCommon Silver January 12, 2011."— Presentation transcript:

1 Winter 2011 CSG Workshop: InCommon Silver January 12, 2011

2 Speakers 1/12/2011CSG: InCommon Silver2 NameInstitutionEmail Tom Barton University of Chicagotbarton@uchicago.edu Mary Dunker Virginia Techdunker@vt.edu Matt Kolb Michigan State Universitymk@msu.edu Kevin Morooney The Pennsylvania State University kxm@psu.edu R.L. “Bob” Morgan University of Washingtonrlmorgan@washington.edu Chris Pruess University of Iowachris-pruess@uiowa.edu Renee Shuey The Pennsylvania State University rshuey@psu.edu

3 Happy Valley 1/12/2011CSG: InCommon Silver3

4 Agenda TimeWhoWhatDescription 20 min Chris PruessLevel-setCIC Silver project & Identity Assurance level-set; orientation to the program. 70 min Matt Kolb, Mary Dunker, Chris Pruess, Tom Barton CIC panelBrief campus case studies each addressing campus silver implementation approach, circumstances, initial & final scope choices. Then facilitated discussion of implementation issues among panel and room. ? Break 60 min Renee Shuey, Bob Morgan Refining SilverRefinement process and expected changes to InCommon Silver in v1.1. 30 min Kevin MorooneyCIO/InC wrap-upWhy we have to go there: CIO and InCommon perspectives. 1/12/2011CSG: InCommon Silver4

5 Overview: What is “InCommon Silver”? 1/12/2011CSG: InCommon Silver5  Identity Assurance Profile (IAP) developed by InCommon  Set of requirements around best practices for identity and access management  Aligned with the recommendations in NIST 800-63 for Level of Assurance 2 (LoA 2)  Being “Silver compliant” will ensure that an institution’s conforming authentication assertions will be accepted by relying parties at LoA 2.

6 InCommon Identity Assurance Program’s Identity Management Functional Model 1/12/2011CSG: InCommon Silver6

7 InCommon Silver Requirements 1/12/2011CSG: InCommon Silver7  Eight Assessment Areas  Three General Categories of Requirements 1. Documentation of policies and procedures and standard operating practices 2. Strength of authentication and shared secrets (passwords) 3. Registration of identity subjects and issuance of credentials

8 CIC InCommon Silver Project 1/12/2011CSG: InCommon Silver8  University of Chicago  University of Illinois  Indiana University  University of Iowa  University of Michigan  Michigan State University  University of Minnesota  Northwestern University  Ohio State University  The Pennsylvania State University  Purdue University  University of Wisconsin- Madison ---------------  Virginia Tech  University of Washington

9 CIC CIOs and Federation 1/12/2011CSG: InCommon Silver9  CIC CIOs Provide Strong Executive Sponsorship  2007 Goal:  Establish federation infrastructure  Join InCommon by 2008  2009 Goal:  Enable Collaboration for Above-the-Campus and Cloud Services  The CIC Universities will implement InCommon Silver to support LoA 2 by Fall 2011.

10 CIC Project Management 1/12/2011CSG: InCommon Silver10  Organized with Co-leads  Renee Shuey (PSU), Tom Barton (Chicago)  Organized in Phases  Gap Analysis: Campuses had different problems to address  Leverage commonalities; understand differences  Identification of “Silver” population: not “all or nothing”  Regular conference calls  Reviewed IAP detail by detail  Engaged CIC Internal Auditors

11 CIC Project Organization 1/12/2011CSG: InCommon Silver11  Work teams aligned with types of requirements  Developing Documentation  Authentication  Active Directory Implementations  Kerberos Implementations  Multi-Factor Implementations  Registration Authority Processes (later)

12 CIC First Cohort 1/12/2011CSG: InCommon Silver12  Impact of Being First Cohort  Opportunity to test, influence IAP (Identity Assurance Profile)  Pain Points submitted to TAC (Technical Advisory Committee)  Support Refinement of IAP

13 What is the target? 1/12/2011CSG: InCommon Silver13

14 Campus Level Project Management 1/12/2011CSG: InCommon Silver14  Fit into Campus Project Management Culture  Silver project doesn’t stand in isolation  Recognize alignment; leverage other campus efforts  Next Segment: Four Campus Stories  Matt Kolb – Michigan State University  Mary Dunker – Virginia Tech  Chris Pruess – University of Iowa  Tom Barton – University of Chicago

15 Resources 1/12/2011CSG: InCommon Silver15  CIC Identity Management Project http://www.cic.net/Home/Projects/Technology/IdMgm t/Introduction.aspx http://www.cic.net/Home/Projects/Technology/IdMgm t/Introduction.aspx  InCommon Identity Assurance http://www.incommonfederation.org/assurance/ http://www.incommonfederation.org/assurance/  Internal Audit Involvement https://www.cic.net/Libraries/Technology/Internal_Au dit_Involvement_Silver.sflb.ashx https://www.cic.net/Libraries/Technology/Internal_Au dit_Involvement_Silver.sflb.ashx  Management Assertions Example https://www.cic.net/Libraries/Technology/Audit_Managemen t_Assertions.sflb.ashx

Download ppt "Winter 2011 CSG Workshop: InCommon Silver January 12, 2011."

Similar presentations

How Identity and Access Management Can Help Your Institution Touch Its Toes Renee Woodten Frost Internet2 and University of Michigan Kevin Morooney The.

How Identity and Access Management Can Help Your Institution Touch Its Toes Renee Woodten Frost Internet2 and University of Michigan Kevin Morooney The.
Appropriate Access InCommon Identity Assurance Profiles David L. Wasley Campus Architecture and Middleware Planning workshop February 2008.

Appropriate Access InCommon Identity Assurance Profiles David L. Wasley Campus Architecture and Middleware Planning workshop February 2008.
Bronze and Silver Identity Assurance Profiles for Technical Implementers Tom Barton Senior Director for Integration University of Chicago Jim Green Manager,

Bronze and Silver Identity Assurance Profiles for Technical Implementers Tom Barton Senior Director for Integration University of Chicago Jim Green Manager,
Appropriate Access: Levels of Assurance Stefan Wahe Office of Campus Information Security.

Appropriate Access: Levels of Assurance Stefan Wahe Office of Campus Information Security.
Going for the Silver Winter 2010 CSG January 13, 2010.

Going for the Silver Winter 2010 CSG January 13, 2010.
Identity Assurance Profiles & Trust Federations David Bantz, U Alaska Tom Barton, U Chicago Ann West, Internet2 & InCommon David Bantz, U Alaska Tom Barton,

Identity Assurance Profiles & Trust Federations David Bantz, U Alaska Tom Barton, U Chicago Ann West, Internet2 & InCommon David Bantz, U Alaska Tom Barton,
Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker

Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker
InCommon Assurance Certification VA-SCAN October 3, 2013 Mary Dunker.

InCommon Assurance Certification VA-SCAN October 3, 2013 Mary Dunker.
Getting to Silver: Practical Matters for CIC Universities Tom Barton University of Chicago © 2009 The University of Chicago.

Getting to Silver: Practical Matters for CIC Universities Tom Barton University of Chicago © 2009 The University of Chicago.
Enterprise Architecture 2014 EAAF as a vehicle for LoA Using EAAF processes to incrementally approach InCommon/UCTrust certification.

Enterprise Architecture 2014 EAAF as a vehicle for LoA Using EAAF processes to incrementally approach InCommon/UCTrust certification.
Information Resources and Communications University of California, Office of the President UCTrust David Walker Office of the President University of California.

Information Resources and Communications University of California, Office of the President UCTrust David Walker Office of the President University of California.
1 Penn State’s Identity & Access Management Initiative “It’s all about who you know … and what you know about them”

1 Penn State’s Identity & Access Management Initiative “It’s all about who you know … and what you know about them”
Update on federations, PKI, and federated PKI for US feds and higher eds Tom Barton University of Chicago.

Update on federations, PKI, and federated PKI for US feds and higher eds Tom Barton University of Chicago.
Federated Identity, Levels of Assurance, and the InCommon Silver Certification Jim Green Identity Management Academic Technology Services © Michigan State.

Federated Identity, Levels of Assurance, and the InCommon Silver Certification Jim Green Identity Management Academic Technology Services © Michigan State.
Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.

Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.
Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.

Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.
Mary Dunker Common Solutions Group January 12, 2010.

Mary Dunker Common Solutions Group January 12, 2010.
Www.incommon.org InCommon and Federated Identity Management 1 www.incommon.org.

InCommon and Federated Identity Management 1
Meeting InCommon Silver Profile Standards at UCD and UCB Bob Ono, UC Davis, Dedra Chamberlin, UC Berkeley, David Walker, UC Davis, Doreen Meyer, UC Davis.

Meeting InCommon Silver Profile Standards at UCD and UCB Bob Ono, UC Davis, Dedra Chamberlin, UC Berkeley, David Walker, UC Davis, Doreen Meyer, UC Davis.
User Authentication Recommendations Transport & Security Standards Workgroup December 10, 2014.

User Authentication Recommendations Transport & Security Standards Workgroup December 10, 2014.

Similar presentations

Ads by Google