Title | Fed Ops Security Incident Response |
---|
Description | Most federations have wording in their federation policy to support incident response but this tends to be a few words committing the Op, IdP and SP to work together on issues. There is no developed idea of the workflow for incident reporting and it is difficult for SPs to understand the process across different federations or contact multiple federations. REFEDS should define a common process and workflow descriptions for federations and support a lightweight model for supporting incident reporting and discussion - possibly via the FOG list or an XMPP type approach. As discussed at ACAMP. |
Proposer | Nicole on behalf of ACAMP session. |
Resource requirements | REFEDS Coordinator time, buy in from federations, possibly some small infrastructure support requirements. |
+1's | Tom Barton, CAF, Dave Kelsey, Scott Koranda |