Goal of this challenge is to assess a critical part of the eduGAIN communication infrastructure. In this first round the security contact addresses of Participants (see below) were tested. The security contacts email addresses were retrieved from the eduGAIN Database using the APIs published on the technical site. The procedure used to retrieve the email addresses is available on the GEANT gitlab:
The security contacts stored in the eduGAIN Database can also be browsed on the Member Federations page:
https://technical.edugain.org/status
In the eduGAIN CommsChallenge2020-12 the following eduGAIN participants were challenged:
AAF, AAI-EDUHR, ACONET, AZSCINET, CAF, CYNET-IF, DFN-AAI, EDUID-CZ, FENIX, GRNET, HAKA, IDEM, INCOMMON, LEAF, LITNET-FEDI, LK-LIAF, PIONIER-ID, RIF, ROEDUNETID, SAFIRE, SIR, SURFCONEXT, SWAMID, SWITCHAAI, TAAT, TUAKIRI, UK-FEDERATION, WAYF
eduGAIN participants that didn't communicate their security contacts were excluded from the challenge.
Besides the validity of the available contact addresses also the reaction time was measured. This information was collected to be used as input for a later discussion on response times. The community would need to define target reaction times, which are regarded to be useful to be used in security incident coordination situations.
Assuming that all contacted participants received the challenge mail and understood what action was expected from them we have a 86% success rate, in absolute numbers, 24 participants out of 28 have reacted.
The graph above shows that the all reactions were recorded within 10h the majority within approx 2h. Given that almost all time zones were covered in this global exercise the reaction times are very good and indicate that the security contact addresses of the participants are also monitored during out-of-office hours.
The participants that have not reacted to the challenge mail will be contacted by eduGAIN support via alternative channels and a solution for the communication issues will be implemented and tested.