50 likes | 215 Views
CAOPS-WG. Christos Kanellopoulos - Yoshio Tanaka. Security Area coordination & outreach OGF25, Catania March 2 nd – 3 rd , 2009. Agenda – CAOPS Session. Monday 02 Mar. 2009 17:30 – 19:00 17:45 – 17:45 IPR issues and agenda bashing
E N D
CAOPS-WG Christos Kanellopoulos - Yoshio Tanaka Security Area coordination & outreach OGF25, Catania March 2nd – 3rd, 2009
Agenda – CAOPS Session Monday 02 Mar. 2009 17:30 – 19:00 17:45 – 17:45 IPR issues and agenda bashing 17:45 – 17:50 Review Document Status (Christos Kanellopoulos) 17:50 – 18:20 High Level CA (Jens Jensen) 18:20 – 18:25 CP/CPS Document (Jens Jensen) 18:25 – 18:45 Use Cases for Relying Party Enforced Namespace Constraints (David Groep) 18:45 – 19:00 Report from the Authorization Working Group (David Kelsey)
Agenda - IGTF Session Tuesday 03 Mar. 2009 11:00 – 12:30, 14:00 – 15:00 11:00 – 11:05 IPR Issues and Agenda bashing 11:05– 11:20 Use Cases for Relying Party Enforced Namespace Constraints (David Groep) 11:20 – 11:30 Updates of the EUGridPMA (David Groep) 11:30 – 11:40 Updates of the TAGPMA (Scott Rea) 11:40 – 11:50 Updates of the APGridPMA (Yoshio Tanaka) 11:50 – 12:10 Proposed changes for the Classic Profile (David Groep) 12:10 – 12:20 Proposed changes for the federation document (David Groep) 12:20 – 12:30 Report from the IGTF-RAT 12:30 – 14:00 Lunch 14:00 – 15:30 Providing Grid Credentials Using OpenCA (Scott Rea)
Working Documents • Audit Guidelines • Status: Final Draft • Editor: Yoshio Tanaka • Provide guidelines for auditing CAs • Auditing Check List • Relying Party Defined Namespace Policies • Status: Final Draft • Editors: David Groep, Olle Mulmo, Von Welch • Identify the requirements on the expression of the namespace constraints policy and on the processing and interpretation semantics of the policy by the relying parties • document the existing signing policy file format • discuss alternatives to this format • Authentication Service Profiles • Status: Discussed in the WG • Editors: Christos Kanellopoulos, David Groep • Definition of what and Authentication Profile is • Requirements for writing Authentication Profiles • This acts as the document template for the Authentication Profiles used in the IGTF 4
Working Documents • A gap analysis of current LoA definitions versus LoA requirements in e-Science/Grid context • Status: Final Draft • Editor: Mike Jones, et.al. • give an overview of current LoA definitions and the related efforts, and identify gaps between these definitions and the potential use of LoA in the e-Science/Grid context. • A risk analysis in relation to LoA and use case gathering in an e-Science context • Status: Stalled • Editor: Mike Helm • Present a risk analysis from the prospective of relying parties (or service providers) • OCSP requirement for Grids • Status: Stalled • Editors: Olle Mulmo, Mike Helm, Jesus Luna, Oscar Manso, Milan Sova • Requirements on relying parties and responders, • Service architecture options, • Site caches, clearing house, high-level responders 5