Page History

Many organisations are working on projects or developing T&I services for the R&E sector that need to securely store and use secret key material to ensure trust in the operations they perform is not undermined. Operations such as issuing and signing certificates used by a PKI, signing of SAML assertions , and OIDC tokens is are crucial to the operation of identity federations. Promoting best security practice among such organisations is in accord with the needs of GDPR - "organisations must implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including the pseudonymisation and encryption of personal data”,  and provision of the testbed service will enable them to gain exposure to HSM usage and (hopefully) will increase the number of services using HSMs in the future.

This activity will be considered complete when:

• The results of the technical trial of the service are available;
• A testbed specification document is delivered defining the capabilities and scope of the service;
• A estimate of the demand for the testbed is produced, and if sufficient;:-
• Documentation to enable administration and use of the service is ready for handover to the entity that will run the testbed.