...
Recommendations (service model discussion) |
---|
Have a consistent approach to how federations are expected to publish metadata upstream and downstream |
Improve positioning of Seamless Access in relation to eduGAIN |
Review eduGAIN mission statement |
Consider levels (max 3) that apply to all IdPs (Anon, Pseudon, Personalised) plus CoCo, Sirtfi, Assurance |
Baseline Requirement | Potential eduGAIN Improvements |
---|---|
[FO1] You focus on trustworthiness of Federation as a primary objective and are transparent about such efforts |
|
[FO2] You publish contact information and respond in a timely fashion to operational issues |
|
[FO3] You apply security practices to federation operations and ensure timely incident response |
|
[FO4] You follow good practices to ensure authentic, accurate and interoperable metadata to enable secure and trustworthy federated transactions |
|
[FO5] You implement and support frameworks that improve trustworthy and scalable use of Federation and promote their adoption by members and other participants |
|
[FO6] You collaborate with other organisations to promote realization of baseline expectations nationally and internationally |
|
Notes:
FO1: comments and additions
Davide: some of the potential improvements are linked. Violations & filtering and the decision making (governance structure).
Guy: +1. Not an agile governance model.
Meshna: Where lies the difficulty? Technical or policy?
Davide: The constitutions doesn't allow us to filter entities on the eduGAIN level.
Nicole: The potential impact when taking an IdP down.
Alex: eduGAIN isn't required to publish everything from the upstream feeds.
Davide: Process driven.
Alan: Rules aren't clearly written. It is the FO responsibility to provide clean MD. First step: agreement between FO and eduGAIN to allow filtering.
Guy: Wide range of technical and support abilities. We could do this differently for different federations.
Nicole: Different service models for different types of federations.
Pal: FO still need to take/stay responsible for their MD. Be careful with wording.
Meshna: A need for an entity in Federation X to address changes with other federations?
Nicole: Testing security and technical
...