1 / 7

Common Solutions Group January 12, 2010

Common Solutions Group January 12, 2010. Where we were…. Rewind to CSG, January 2010 Developing levels of assurance for personal digital identities at Virginia Tech Developing method for determining LoA Developing technology for authenticating at LoA

lamya
Download Presentation

Common Solutions Group January 12, 2010

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Common Solutions Group January 12, 2010

  2. Where we were… • Rewind to CSG, January 2010 • Developing levels of assurance for personal digital identities at Virginia Tech • Developing method for determining LoA • Developing technology for authenticating at LoA • Aware that InCommon Silver was “out there”

  3. Where we are now… • CSG January 2011 • Established Standard for Personal Digltal Identity Levels of Assurance • CAS recognizes LoA of authentication credential • CAS front-ends Shibboleth • Ex-officio member of CIC Silver Project planning group

  4. Where we are going… • Initially, achieve InCommon Silver with • personal digital certificates on eToken • Later possibilities • VASCO Digipass one-time password devices • soft personal certs for employees

  5. How we decided… • Participated in CIC Silver project calls • Learned challenges re: identity proofing – in-person desirable • Issuing VASCO devices currently not scalable • Soft certificates require infrastructure changes, development of new user interfaces

  6. How we decided… • Realized we already had most of process, security, and documentation in place for personal certificates on eTokens • Realized users were likely to be faulty/staff – not students. • eTokens already available to faculty, staff, graduate students

  7. Remaining tasks… • Wait for Silver to be finalized • Ensure line-item compliance with Silver – may require change to record (and encrypt) DL/passport number • Ensure that CAS checks certificate revocation list • Request audit • Apply for Silver

More Related