Versions Compared

Old Version 2

changes.mady.by.user Casper Dreef

Saved on

compared with

New Version Current

changes.mady.by.user Nicole Harris

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

16:15 UTC
18:15 CEST

Arrival & "Can you hear me now?" (see  Connection Details)

16:30 UTC
18:30 CEST

Welcome, Introductions & Agenda Agreement

16:35 UTC
18:35 CEST

Membership Updates and Joining
  • 68 participant members / 2 members / 8 candidates
  • New Members (2)
    • China / CSTCloud Federation - 08-May-2020
    • Slovakia / safeID - 08-May-2020
  • Candidates Under Assessment (2)
    • Mexico / FENIX - 21-Nov-2019
    • Tajikistan / TARENA Identity Federation - 28-Nov-2019
  • https://technical.edugain.org/status.php

16:45 UTC
18:45 CEST

Maintaining trust relationships in a growing eduGAIN environment

  • Presentation by eduGAIN Secretariat
17:00 UTC
19:00 CEST

Baseline expectations preliminary results

  • Update for REFEDS WG
17:10 UTC
19:10 CEST

Support / Security/ Operations team update

17:20 UTC
19:20 CEST

F-Ticks for eduGAIN pilot

  • Presentation and brief Q&A
17:35 UTC
19:35 CESTAny other business, Summary and Actions
  • ...
17:45 UTC
19:45 CEST

Future SG Meetings

17:45 UTC
19:45 CEST

Any other business, Summary and Actions

17:45 UTC
19:45 CEST

Meeting Close

Connection Details

...

Federations in Attendance (xx)

  1. IDEM
  2. AAF
  3. SWAMID
  4. UK Federation
  5. SAFIRE
  6. LEAF
  7. eduID.hu
  8. DFN-AAI
  9. FÉR
  10. Gakunin
  11. GRNET
  12. PIONEER.id
  13. InCommon
  14. CAF
  15. COFRe
  16. CAFe
  17. safeID
  18. AAI@EduHr
  19. ReEduNetID
  20. MINGA
  21. eduIDM.ma
  22. LIAF

Attendees (

...

37)

  1. Casper Dreef, GÉANT
  2. Davide Vaghetti, IDEM/GARR
  3. Terry Smith, AAF
  4. Nicole Harris, GÉANT
  5. Pål Axelsson, SWAMID
  6. Donald Coetzee, SAFIRE
  7. Alex Stuart, UK Federation
  8. Valentin Pocotilenco, LEAF
  9. Attila Laszlo, eduID.hu/KIFU
  10. Wolfgang Pempe, DFN-AAI
  11. Anass Chabli, FER
  12. Guy Halse, SAFIRE
  13. Eisaku Sakane, Gakunin
  14. Halil Adem, GRNET
  15. Rhys Smith, UK Federation
  16. Thomasz Wolniewicz, PIONEER
  17. Martin Stanislav, safeID
  18. Nick Roy, InCommon
  19. Chris Phillips, CAF
  20. János Mohácsi, eduID.hu/KIFU
  21. Licia Florio, GÉANT
  22. Alejandro Lara (COFRe / REUNA)
  23. Jean Carlo Faustino, CAFe
  24. Maja Gorecka-Wolniewicz, PIONEER
  25. Martin Stanislav, safeID
  26. Miroslav Milinovic, SRCE / AAI@EduHr
  27. Sami X
  28. Thomas Bärecke, eduGAIN Support
  29. Valeriu Vraciu, (RoEduNet)
  30. Claudio Chacón (CEDIA)
  31. Thilina Pathirana, LIAF
  32. Boro Jakimovski
  33. Rafal Lawrukiewicz, CAF
  34. Hassan Bouhaddou, eduIDM.ma
  35. Daniel Muscat, RicerkaNet
  36. Emilio Nakamura (RNP)

Apologies (xx)

  1. Saeed Khademi IRFED....
  2. Jiri Borik eduID.cz
  3. José Manuel Macías, SIR

Notes

Welcome, Introductions & Agenda Agreement

The Chair welcomed everyone to the 4rd 1st meeting of 2019 2020 ...

See the Open Actions & Previous Meeting notes. The major open action will be covered within the meeting.

Minutes of the previous meeting No open actions. Minutes were approved. All action remain open.

Membership Updates and Joining

...

  • China / CSTCloud Federation - 18-Oct-2019
  • Slovakia / safeID - 24-Oct-2019
  • Mexico / FENIX - 21-Nov-2019
  • Tajikistan / TARENA Identity Federation - 28-Nov-2019

eduGAIN Operation Processes

  • Modification of production systems
  • Summary of the deployment of profile v2

Documentation: eduGAIN Operations - SAML
Thomas and Davide explainend that the beta feed will be removed after implementation to avoid confusing. Should probably renamed in e.g. testing feed. This is different than preproduction.
Chris seconded the idea of having a test and preproduction feed. This will be benefiting the smaller federations that don't have the resources to run tests themselves.

eduGAIN Town Hall

Possibly in March 2020, but needing to include topics broader than just eduGAIN to justify travel + wider participation (to include eduroam, possibly REFEDS WGs, invite FIM4R, FIM4L, possibly some “CAMP” type sessions). This will be coordinated by Casper Dreef and was broadly supported. A Town Hall hasn't been convened since 2017, the end of 2018 event was skipped because of the preparation of the GN4-3 project. This event is to have a global focus to better support transcontinental travel.

eduGAIN "baselining"

The eduGAIN Compliance Issues wiki page has been updated but required more attention and this is an ongoing process.

  • Countries in Europe with no Federation, currently only available for Europe, extend to all regions?

Validator report at https://technical.edugain.org/profile_v2 now shows:

  • 1 red (non-compliant) -MATE.  Belnet and WAYF moved to green, Oman KID moved to yellow
  • 32 yellow (partially compliant) - previously 44 decrease of 12
  • 35 green (fully compliant) - previously 15 increase of 20

The AAF and 32 other federations situation include issues with logo requirement for discovery. Pål also highlighted the logo issue as not being important. Rhys stated that priority needs to be with the RED (non-compliant) issues. Davide explained that the eduGAIN Support team is able to contact federations to work on these issues.

Identifying those with more than logo issues could provide the next tranche to address, maybe an Orange group for those with more that missing logos?

Technical suspension: MATE, CAFMoz.

Maintaining trust relationships in a growing eduGAIN environment

Please find slides and Mentimeter results here:

View file
nameMaintaining trust eG SG June 2020.pdf
height250

Baseline expectations preliminary results

Three Baseline meetings took place over the last couple of months. You can find the notes here: https://wiki.refeds.org/display/GROUPS/Baseline+Expectations+Working+Group

Resolving eduGAIN issues

R&S, SIRTFI, baselining, validators and the many other tools are all helping to resolve and even prevent issues occuring for a researcher in one federation seamlessly accessing a service on the other side of the planet. When it all works great!

But when it doesn't determining the fault can be complex. Issues include;

  • federation and organisation policies
  • awareness
  • working across many organisational and national boundaries
  • working across time zones

Simple guidance for commuities communicating issues and identifying parties that need to be involved?

Improving awareness for organisations and federations interoperating and particularly sharing and tracking the issues and the solutions.

Terry provided an example of a R&S service within Australia having difficulty working with a UK Federation identity provider not supporting R&S. Liaising with Jisc has been useful as they want to promote R&S within their federation. Chris Phillips highlighted that there are services that required SIRTFI in addition to R&S and sometimes these issues are urgent or conveying the importance and urgency doesn't always pass between support functions. Davide highlighted that the resolution time can often be in the order of weeks. Davide to provide statistics on eduGAIN support topics/issues for the next meeting.

Four categories: SPs, IdPs, Federation Operators and Interfederation Operators.

Current results: https://docs.google.com/document/d/1u0XuvPRFKH5RaDEcgdp3jyfgNZbWAR4Q1yl0GzNkCro/

You can also subscribe to the mailing list:https://lists.refeds.org/sympa/info/federation-baseline and the eduGAIN Slack channel: #baseline.

Support / Security/ Operations team update

Support: new manuals and updated "How to join eduGAIN as a Service Provider". Comments are very welcome.  More work on proactive tickets.  Haven't seen a significant month on month change despite changes in working environments. 

Operational: improvements on the technical site, eduGAIN database and the metadata validator - issues with validation currently on the radar for the OT were shared earlier in the meeting. 

Security: drafted eduGAIN Security Incident Response Handbook. In collaboration with SIRTFI.  Handbook will be shared with eduGAIN SG and REFEDS alongside a proposal to create an eduGAIN CSIRT.

Members discussed how this works with other security initiatives and whether there could be synergies with GÉANT CERT.  The plans are still at a very early stage so there are many opportunities to work out how to make these relationships work.  We need to be mindful of potential information sharing with countries that are embargoed by other countries within eduGAIN.

F-Ticks for eduGAIN pilot

Who and how to provide guidance is an open issue for a different forum.Miro gave a demo of f-ticks for eduGAIN: https://f-ticks.edugain.org/.  Members are invited to share statistics with the team by contacting support@edugain.org.  Details are on the website. 5 federations are currently participating. 

Future meetings

The dates for the next SG meetings and Drop-in sessions will be shared in due course.

It was agreed to allocate some time in SG meetings to give an update on the Drop-in sessions.

The next SG meeting was confirmed to take place on Tuesday 10th December 2019 13:00 UTC Drop in sessions:

are available here: eduGAIN Steering Group

  • the T&I Town Hall has been postponed to 27/28 October 2020. The organisors will keep a close eye on travel restrictions.
  • Next SG meeting 15th September 7:00 UTC 15th October *Asia* 7:00 UTC / 9:00 Amsterdam / 00:00 Los Angeles / 3:00 Washington / 18:00 Sydney
         - https://timeanddate.com/s/3skv12th November *Americas* 20:00 UTC / 21:00 Amsterdam / 12:00 Los Angeles / 15:00 Washington / 07:00 Sydney
    419d
  •      - Next Drop-in session 21st July 12:00 UTC https://timeanddate.com/s/3skw

Terry highighted some topics from the previous drop in sessions:

  • Need for usage statistics is major driver of FIM4L and displacing EZproxy.
  • Service Catalogue (although there is a range of work groups on this topic).

Members were supportive of moving the town hall online if it is not possible to travelChris raised the issue of discussion documents on service catalogue. Terry highlighted emerging federations needing a service catalogue to point people toward a service - in a follow-up email he also flagged REFEDS Service Catalogue Best Practices and 2018 REFEDS Workplan. Pål highlighted the fact that with more than 3000 SPs within eduGAIN it is difficult to curate and maintain a list. Terry highlighted the desire of service providers to provide good information to encourage update of their service. Chris flagged the importance of a service might differ between federations.

AoB and Close

What to do with non-compliant federations? Should we remove them from the participants list and demote them to membership or create a 'suspended' list?

The Secretariat is testing the voting tool Zeus to be used for future membership voting. A test vote will be carried out in due course.

CAF is looking into proxy with different toolsFurther discussions in future SG meetings and T&I Town Hall.
Davide anounced the SG on the creation of eduGAIN security team as part of the wider support team. By the end of the year documentation will be published and shared with the eduGAIN community.
Thomas Bärecke prepared a report on the eduGAIN support tickets. The report will be published soon.The meeting was closed at 15:02 CET.