...
By addressing the structure of the security policy set that binds services ‘hiding’ behind the SP-IdP proxy, Scntfi allows comparison between proxies, assign trust marks for meeting requirements, and it allows a scalable way to negotiate and filter based on such policies. It eases authentication and attribute release by R&E federations as well as service providers (by easier enrolment in federations and because R&E IdPs may be more willing to release attributes if the proxy can convincingly assert DPCoCo and R&S), but also aids assessment by generic e-Infrastructures providers that know the RI proxy meets their trust requirements.
The Snctfi work is managed through the Interoperable Global Trust Federation IGTF with support from AARC and other contributors:
- the Scalable Negotiator for a Community Trust Framework in Federated Infrastructures
- contact the editors by email at snctfi@igtf.net
The Snctfi version of April 25th has also been submitted as a paper to the ISCG 2017 conference: