This is a short summary of ideas that are relevant to European initiatives from the discussions at the Internet2 ACAMP sessions at the Technology Exchange in Miami. This list is intended just to highlight ideas that might be of interest - please follow the links for more in-depth information.
Issues for eduGAIN
- We need to improve metadata: specifically MDUI, ensuring contact metadata doesn’t bounce and presence of error handling urls. There was a suggestion that an IdP that can’t meet these criteria should be hidden from discovery. This was purposefully controversial. From session: Research needs for InCommon Metadata.
- European view on the InCommon Error Handling Service: https://spaces.internet2.edu/display/InCFederation/Error+Handling+Service. From session: Research needs for InCommon Metadata.
- Renewed calls for a central Service Catalogue and a REFEDS working group to support this in Shared Service Catalogue session.
- Lack of engagement with SPs and inability to follow up on the value proposition for SPs discussed in session Increasing SP Participation. Activities to move forward would fall in an international role: Service by affiliation category. Value proposition document. Adoption programme. Shared SP Business Manager? Testing Suites needed. Centre of Excellence with federation skills.
- VO in Reverse: Federation for Campuses without IT Infrastructure - looks at bundling IdPs for organisations without IT infrastructure. Interesting for IoLR, AARC and work in areas such as Africa.
- The issue of non-uniform publication of metadata raised in SP Registration Guidelines session. Interesting to see MET cited as a way to see where your metadata flows.
Issues for campus
- Some discussion around how to separate the concept of someone being staff and student from a security perspective. No concrete proposals.
- A lot of focus on TIER-ish campus stuff - we don't have anything even close to this sort of focus in Europe at the moment. Definite up-tick in number of campuses in room and engagement from campuses.
Issues for AARC
- Standardising vocabulary and group terminology in Grouper was discussed in session Grouper Deployment. Grouper also discussed in a provisioning context.
- Session on federated SSH may be useful for AARC people to look at (and Dick).
- Good session on SIRTFI - outputs have already been picked up by Hannah.
Issues for REFEDS
- European view on the InCommon Error Handling Service: https://spaces.internet2.edu/display/InCFederation/Error+Handling+Service. From session: Research needs for InCommon Metadata.
- Standardising vocabulary and group terminology in Grouper was discussed in session Grouper Deployment. Grouper also discussed in a provisioning context.
- Renewed calls for a central Service Catalogue and a REFEDS working group to support this in Shared Service Catalogue session.
- Lack of engagement with SPs and inability to follow up on the value proposition for SPs discussed in session Increasing SP Participation. Activities to move forward would fall in an international role: Service by affiliation category. Value proposition document. Adoption programme. Shared SP Business Manager? Testing Suites needed. Centre of Excellence with federation skills.
- VO in Reverse: Federation for Campuses without IT Infrastructure - looks at bundling IdPs for organisations without IT infrastructure. Interesting for IoLR, AARC and work in areas such as Africa.
- Good session on SIRTFI - outputs have already been picked up by Hannah.
- Suggestion for REFEDS to do a consultation on Discovery 2.0.
- Metadata submission API. Would this work with enough federations give the diversity of infrastructure?
- Discussion on unaffiliated users that ties to the academia question.
Issues for TrustTech
- OIDC, OIDC, OIDC! In sessions: adding OIDC to CAS and Shib, federation in a post SAML world, OIDC next steps.
- VO in Reverse: Federation for Campuses without IT Infrastructure - looks at bundling IdPs for organisations without IT infrastructure. Interesting for IoLR, AARC and work in areas such as Africa.
- I'm not covering anything Shib specific here as I don't think there is anything for us to pick up, but there were several Shib improvement sessions.
- Session on Multifactor Opt-In Strategies.
- User Centric Federation models.
Other
- Let's Encrypt vs certificate services discussed in Automate Certificate Renewal session.
- Future IDM Roadmap. Do we need a shared one?