Background and liaison with AARC project
- The LoA task of the AARC project has published Milestone MNA3.1: Recommendations on minimal assurance level relevant for low-risk research use cases.
- In April 2017 the AARC project has published Deliverable DNA3.1: Differentiated LoA recommendations for policy and practices of identity and attribute providers, applicable to research use cases.
The goal of this working group is to work together with AARC project to
- deepen the Minimal assurance level recommendation to a profile that is specific enough that it can be self-assessed by home organisations
- develop the differentiated LoA recommendations taking into account the constraints of the federations and home organisations
- deliver orthogonal profiles that can be additive, eg, identity proofing separate from credential technology.
To participate in the group please sign up to the mailing list.
The following terms apply to all REFEDS Working Groups:
- When a working group is agreed, REFEDS Participants will be asked if they wish to participate. Working Groups tend to be small, so consensus can be achieved quickly between participants.
- A chair for the group is chosen from the REFEDS Participants.
- GEANT association provides facilities for the working group, including meeting support, wiki space, mailing lists and, where appropriate, funding.
- An appropriate output from the group is produced. Currently, this is typically a draft white paper or a wiki page.
- When the Working Group is in agreement, the chair shares the outputs with the wider REFEDS community with an open period for discussion and comment. This is typically a period of 4 weeks, but may be longer if appropriate.
- After this period of time, the REFEDS Steering Committee signs off on the work item. Work is either written up as a formal white paper, left on the wiki but promoted as finished work or occasionally submitted as an Internet Draft.
Ideas for work items for the group:
- Minimal assurance level profile
- Differentiated assurance level profile(s)
- Adopting IGTF BIRCH level of assurance for research use cases
- Review and react to Baseline Expectations for Trust in Federation as a level-setting exercise before diving in to work on the substantive deliverables
- Review and potentially incorporate the MFA Profile defined by the InCommon MFA WG.
- published in Assurance space
- second public consultation (May-June 2018)
- first public consultation in (April-June 2017)
- REFEDS Assurance Framework (WG proposal)
- REFEDS Single-factor authentication profile (WG proposal)
Working group calls
- Webinar on REFEDS Assurance Suite 13 December 2018 (stream, slides)
- Presentation on Internet2 2018 Technology Exchange 16 Oct 2018
- Presentation in AARC All-hands meeting 11 Apr 2018
- Presentation in AARC Infoshare 24 May 2017
- Presentation in InCommon assurance call 4 Jan 2017
- AARC LoA task documents
- IGTF Levels of Authentication Assurance
- Baseline Expectations for Trust in Federation
- InCommon Multi-Factor Authentication WG final report