Metadata is at the heart of the trust fabric of current R&E Identity Federations. For the trust to properly propagate, this metadata is first collected from and then distributed by the federation towards the federation members. Generally speaking this is the same for both national as well as inter-federations like eduGAIN.

The current models for distributing metadata are strained. The most widely used model that distributes a per federation file with entities suffers from file size issues and comes with a risk on long delays for changes to propagate. The MDQ model is more dynamic and resolves both aforementioned issues, but mandates a centralized service to be available at all time. This is a spof not only technically, but may also be a policy control point.

This activity investigates a new proposal from Leif Johansson, called "push MDQ" which introduces a new, potentially highly scalable way of distributing metadata. The fist version of this proposal can be found here: https://docs.google.com/document/d/1wc2MPME-hl6Izt9-x-UHyy880qmNpx3iVrI24TxMMI4/edit?usp=sharing

• Extend the existing proposal from Leif Johansson to include concrete examples, and identify potential challenges
• Discuss the extended proposal with a group of community experts
• Describe how this new protocol could be implemented and operationalized into the current trust fabric of R&E federations. Which roles and responsibilities are needed; who would cover them? Which product(s) may be used to implement the protocol. How to deal with backwards compatibility?
• Draft an RFC based on the proposal in such way that the proposal may be implemented into a technical solution
• If so appropriate, submit the RFC to a relevant body for standardization
• Create at minimum 1 'server'  and 1 'client' implementation of the specification using existing IdP, SP or MDQ software

This activity will define a new standard for exchanging metadata. It will extent at least 1 existing product to demonstrate the protocol can be used for metadata updates.

The fist version of the "Push MDQ" proposal can be found here: https://docs.google.com/document/d/1wc2MPME-hl6Izt9-x-UHyy880qmNpx3iVrI24TxMMI4/edit?usp=sharing

If the idea works as proposed, it would improve the scalability and freshness of metadata exchange tremendously, in its turn improving the ability for IdPs and SPs to interact in a much more secure and less error prone way

No personal data needs to be exchanged

• If so appropriate, submit the RFC to a relevant body for standardization
• The changes to software will be donated to the software projects
• All results of the push MDQ analysis and the POC are transferred to the eduGAIN service task.