Add to collection(s) Add to saved
  1. Business
  2. Management
  3. Project Management

CSG Short Workshop: InCommon Silver

advertisement 
Winter 2011 CSG Workshop:
InCommon Silver
January 12, 2011
Speakers
Name
Institution
Email
Tom Barton
University of Chicago
tbarton@uchicago.edu
Mary Dunker
Virginia Tech
dunker@vt.edu
Matt Kolb
Michigan State University
mk@msu.edu
Kevin Morooney
The Pennsylvania State
University
kxm@psu.edu
R.L. “Bob” Morgan
University of Washington
rlmorgan@washington.edu
Chris Pruess
University of Iowa
chris-pruess@uiowa.edu
Renee Shuey
The Pennsylvania State
University
rshuey@psu.edu
2
CSG: InCommon Silver
1/12/2011
Happy Valley
3
CSG: InCommon Silver
1/12/2011
Agenda
Time
Who
What
Description
20
min
Chris Pruess
Level-set
CIC Silver project & Identity Assurance
level-set; orientation to the program.
70
min
Matt Kolb, Mary
Dunker, Chris Pruess,
Tom Barton
CIC panel
Brief campus case studies each addressing
campus silver implementation approach,
circumstances, initial & final scope choices.
Then facilitated discussion of
implementation issues among panel and
room.
?
Break
60
min
Renee Shuey, Bob
Morgan
Refining Silver
30
min
Kevin Morooney
CIO/InC wrap-up Why we have to go there: CIO and
InCommon perspectives.
4
Refinement process and expected changes
to InCommon Silver in v1.1.
CSG: InCommon Silver
1/12/2011
Overview: What is “InCommon Silver”?
Identity Assurance Profile (IAP) developed by
InCommon
Set of requirements around best practices for identity
and access management
Aligned with the recommendations in NIST 800-63
for Level of Assurance 2 (LoA 2)
Being “Silver compliant” will ensure that an
institution’s conforming authentication assertions will
be accepted by relying parties at LoA 2.




5
CSG: InCommon Silver
1/12/2011
InCommon Identity Assurance Program’s
Identity Management Functional Model
6
CSG: InCommon Silver
1/12/2011
InCommon Silver Requirements
Eight Assessment Areas
 Three General Categories of Requirements
1. Documentation of policies and procedures
and standard operating practices
2. Strength of authentication and shared
secrets (passwords)
3. Registration of identity subjects and
issuance of credentials

7
CSG: InCommon Silver
1/12/2011
CIC InCommon Silver Project
University of Chicago
University of Illinois
Indiana University
University of Iowa
University of Michigan
Michigan State
University
University of Minnesota
Northwestern
University








8






Ohio State University
The Pennsylvania State
University
Purdue University
University of WisconsinMadison
--------------Virginia Tech
University of Washington
CSG: InCommon Silver
1/12/2011
CIC CIOs and Federation
CIC CIOs Provide Strong Executive Sponsorship
2007 Goal:




Establish federation infrastructure
Join InCommon by 2008
2009 Goal:

9

Enable Collaboration for Above-the-Campus and Cloud
Services

The CIC Universities will implement InCommon
Silver to support LoA 2 by Fall 2011.
CSG: InCommon Silver
1/12/2011
CIC Project Management

Organized with Co-leads
 Renee Shuey (PSU), Tom Barton (Chicago)

Organized in Phases
 Gap Analysis: Campuses had different problems to address
 Leverage commonalities; understand differences
 Identification of “Silver” population: not “all or nothing”

Regular conference calls
 Reviewed IAP detail by detail
 Engaged CIC Internal Auditors
10
CSG: InCommon Silver
1/12/2011
CIC Project Organization

Work teams aligned with types of
requirements
 Developing Documentation
 Authentication
 Active Directory Implementations
 Kerberos Implementations
 Multi-Factor Implementations
 Registration Authority Processes (later)
11
CSG: InCommon Silver
1/12/2011
CIC First Cohort

Impact of Being First Cohort
 Opportunity to test, influence IAP (Identity
Assurance Profile)
 Pain Points submitted to TAC (Technical
Advisory Committee)
 Support Refinement of IAP
12
CSG: InCommon Silver
1/12/2011
What is the target?
13
CSG: InCommon Silver
1/12/2011
Campus Level Project Management
 Fit into Campus Project Management Culture
 Silver project doesn’t stand in isolation
 Recognize alignment; leverage other campus
efforts

Next Segment: Four Campus Stories
 Matt Kolb – Michigan State University
 Mary Dunker – Virginia Tech
 Chris Pruess – University of Iowa
 Tom Barton – University of Chicago
14
CSG: InCommon Silver
1/12/2011
Resources

CIC Identity Management Project
http://www.cic.net/Home/Projects/Technology/IdMgm
t/Introduction.aspx

InCommon Identity Assurance
http://www.incommonfederation.org/assurance/

Internal Audit Involvement
https://www.cic.net/Libraries/Technology/Internal_Au
dit_Involvement_Silver.sflb.ashx

Management Assertions Example
https://www.cic.net/Libraries/Technology/Audit_Managemen
t_Assertions.sflb.ashx
15
CSG: InCommon Silver
1/12/2011
Related documents
local copy
local copy
Silver DBQ
Silver DBQ
Ssssshhhh! Surprise mum on Mother`s Day!
Ssssshhhh! Surprise mum on Mother`s Day!
Standard Client Certificate Profile
Standard Client Certificate Profile
InCommon Federation - Jack Suess, University of Maryland
InCommon Federation - Jack Suess, University of Maryland
document 9a
document 9a
Download
advertisement