...
| Line Number / Reference | Proposed Change or Query | Proposer / Affiliation | Action / Decision (please leave blank) | |
|---|---|---|---|---|
| 1 | 152, 180, 205 | "labelled TLP AMBER or higher"; not sure how to interpret 'higher' in the context of colours, assume higher means that GREEN and WHITE are also ok but RED would not. Might be good to use more explicit wording. | Thijs Kinkhorst, SURFconext / SURFcert | |
| 2 | 159 | Unsure why "inside one federation" must be reported to the eduGAIN security team. If there's an issue with one idp and one sp both inside the federation and no relation to any eduGAIN service, I see no need to involve more parties than necessary to solve the issue. Involving more parties has costs and should not be done if there's no clear role for the party in the ongoing incident. Propose to delete: "whether inside one federation or". There's always paragraph 182-184 that states that you can involve the eduGAIN security team at any time when you need its help. | Thijs Kinkhorst, SURFconext / SURFcert +1 Nicole Harris, GÉANT | |
| 3 | General | What is the authority of the handbook? Is it best practice recommendations or will the statements be REQUIRED for federation participants? Needs to be stated more explicitly in the document | Nicole Harris, GÉANT | |
| 4 | Scope | What is the scope of incidents that you expect to be reported to eduGAIN? Any security incident involving the organisation or service in question or those that directly have an impact on federated identity? This isn't clear in the document. | Nicole Harris, GÉANT | |
| 5 | ||||
| 6 | ||||
| 7 | ||||
| 8 |
...