Versions Compared

Old Version 3

changes.mady.by.user Former user

Saved on

compared with

New Version Current

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Baseline Expectations for Trust and Federation Legal - The legal relationship of the participants with the Federation has changed. 
  • They begin started a Metadata metadata health check (quality of the metadata of entities in the federation).
  • REFEDS: International Assurance Framework , is still incomplete, and try to be less rigorous than NIST and Kantara requirements. More The more stable part is the Associated associated profile single factor authentication.

Kantara Identity Assurance Working Group (IAWG) Report provided by Scott Shorter 

  • SAC Kantara Service Assessment Criteria for 800-63-3 is ready for grant approvals at this point.
  • Create There are some participants contributing and providing feedback on the spreadsheet that was shared.Draft Id policy from OMB comment period until May 6NIST spreadsheet as the basis for the NIST 800-63-3 Implementation Guidance.
  • Kantara is preparing comments on the OMB draft policy concerning Strengthening the Cybersecurity of Federal Agencies through Improved Identity, Credential, and Access Management
    (OMB Comment period closes on May 6).

SAFE BioPharma Report provided by Peter Alterman and Matt King

...

Open Mic - NIST spreadsheet with 63A identity evidence 

  • Build comments on this. 63A – 3 tables of strengths.
  • PA Giving PA suggested giving a numeric value to each one of these the categories and determine what the min minimum number required for each of the IAL, which would be easier to work with alternatives. PA Calculate He added that the group should calculate acceptability of various combines combined strategies.
  • Multiple cases SL stressed the importance of the combination of the identity evidence and said that the group should agree upon a process on a fair evidence that could be provided to these use the multiple cases. CombinationBroader than US based identity douments? We need  
  • TB asked if we should consider identity documents broader than US based. He requested clarity on the methodology to add a row. PA added that we need to have as many rows as we need to have, how a row gets added?, and how it is assessed in terms of strength, methodology to add a row.?
  • SL suggested we should differentiate among the evidence types, as the US social security number a is weak a but the card more is strongerFinancial ; financial account statement , document but bank account numbers We should differentiate.Public is a document and has a different strength than a bank account number.  
  • TB highlighted that we should build a public and transparent processNeeds to .

  • PA said that NIST sheet should be imported into a spreadhsheet not a NIST spreadhsheet, new spreadsheet that represents a wide variety of inputs from the TFS Stakeholders.