Asia Pacific Advanced Network Meeting

Grand Millennium Hotel Auckland 5th - 9th August 2018


Register Now!

Session Details

IAM TF Meeting


ObjectivesThe Identity and Access Management Task Force meeting focuses on APAN nations that are working on developing their federations. It provides the opportunity to exchange experience and knowledge in federation technologies and policies. The task force will bring experienced practitioners of identity federation (technology, policy and operations) to share their knowledge and skills. There will an examination of the successes and failures experienced to help given to guide participants to successful federation deployments on their return home. In order to understand the state of campus identity management, eduroam deployments, identity federations and integrations with the global eduGAIN initiative, we accept short status reports from participating members and shared ideas on solutions as issues as they are identified. The task force will review the status of the Asis@Connect Backfire project and map out the next phase of this project between APAN46 and APAN47.
Target AudienceCampus IT and Library, NRENs, Service providers and anyone with an interest in tackling the problems of deploying and operating identity management system at a campus thru to deploying and operating regional identity federations. In particular beneficiary nations involved in the Asis@Connect Backfire project.
Session Co-ordinator(s)Terry Smith, Australian Access Federation
Expected No. of Participants30
Seating ArrangementClassroom

Session 1 : Federation Policies

Date:Tuesday 2018-08-07
Time:13:30 - 15:00
Location:Millennium 2
Session Chair(s):Nicole Harris, GÉANT, Netherlands
No. of Participants:34, out of which 9 have provided feeedback
Agenda
1.  Developing the federation policies for your federation   Slides (PDF)
Nicole Harris, GÉANT, Netherlands
This presentation will discuss the the purpose of the federation policies, which policies are required, where you can find templates for;
  • Federation rules
  • Acceptable use policies
  • Metadata Practice Statement
  • Privacy statements and the impact of GDPR
Beyond federation policies there are an number of standards and specifications that have been developed to support the Research Federations (REFEDS) community. Of particular note are
  • Research and Scholarship entity category
  • Security Incident Response Trust Framework for Federated Identity (Sirtfi) which help eduGAIN function.
Considering these standards now will save you time and effort in the future.
2.  User attributes   Slides (PDF)
Terry Smith, Australian Access Federation
A federation with a clearly defined and documented set of user attributes that are available from Identity providers for use by service providers will certainly improve the utility of your national identity federation. This session will discuss the reasons for releasing attributes, identity provider and service provider expectations and some the issues associated with the release of user attributes.
3.  General discussion   Slides (PDF)
Brook Schofield, Project Development Officer, GÉANT Association
Leading up to and at APAN46 the federation operators of nations who are starting on their identity federations journey have been provided with much technical, and policy information and guidance on how to move forward. In this general discussion we will open the floor to any questions and discussion topics that participants would like to reflect on. It is an opportunity to share the successes and failures will all participants and to gain insight from federation operators and experienced practitioners.

Session 2 : IAM Presentations

Date:Tuesday 2018-08-07
Time:15:30 - 17:00
Location:Millennium 2
Session Chair(s):Brook Schofield, Project Development Officer, GÉANT Association
No. of Participants:9, out of which 10 have provided feeedback
AgendaIdentity and Access Management presentations from advanced federations across the Asia Pacific region
1.  Identity Federation in New Zealand   Slides (PDF)
Sat Mandri, REANNZ
An update on identity federations within New Zealand
2.  eduroam-on-NGH Development and the Collaboration with Commercial Operators   Slides (PDF)
Hideaki Goto, Tohoku University, NII
A short summary or overview of the presentation Next Generation Hotspot (NGH), together with Passpoint, brings higher security, better usability comparable with mobile phones, and roaming capabilities to Public Wi-Fi services. This presentation introduces our latest activities of developing eduroam-on-NGH and also shows our experiences in the City Wi-Fi Roaming trial by the Wireless Broadband Alliance (WBA) in 2018.

Session 3 : Project Backfire - the next 6 months

Date:Tuesday 2018-08-07
Time:17:00 - 18:00
Location:Millennium 2
Session Chair(s):Terry Smith, Australian Access Federation
No. of Participants:8, out of which 8 have provided feeedback
Agenda Slides for Project Backfire - The Next 6 Months