|Objectives||The Identity and Access Management Task Force meeting focuses on APAN nations that are working on developing their federations. It provides the opportunity to exchange experience and knowledge in federation technologies and policies. The task force will bring experienced practitioners of identity federation (technology, policy and operations) to share their knowledge and skills. There will an examination of the successes and failures experienced to help given to guide participants to successful federation deployments on their return home. In order to understand the state of campus identity management, eduroam deployments, identity federations and integrations with the global
eduGAIN initiative, we accept short status reports from participating members and shared ideas on solutions as issues as they are identified.
The task force will review the status of the Asis@Connect Backfire project and map out the next phase of this project between APAN46 and APAN47.|
|Target Audience||Campus IT and Library, NRENs, Service providers and anyone with an interest in tackling the problems of deploying and operating identity management system at a campus thru to deploying and operating regional identity federations. In particular beneficiary nations involved in the Asis@Connect Backfire project.|
|Session Co-ordinator(s)||Terry Smith, Australian Access Federation|
|Expected No. of Participants||30|
|Time:||13:30 - 15:00|
|Session Chair(s):||Nicole Harris, GÉANT, Netherlands|
|No. of Participants:||34, out of which 9 have provided feeedback|
|1. ||Developing the federation policies for your federation Slides (PDF)|
Nicole Harris, GÉANT, Netherlands
This presentation will discuss the the purpose of the federation policies, which policies are required, where you can find templates for;
Beyond federation policies there are an number of standards and specifications that have been developed to support the Research Federations (REFEDS) community. Of particular note are
- Federation rules
- Acceptable use policies
- Metadata Practice Statement
- Privacy statements and the impact of GDPR
Considering these standards now will save you time and effort in the future.
- Research and Scholarship entity category
- Security Incident Response Trust Framework for Federated Identity (Sirtfi) which help eduGAIN function.
|2. ||User attributes Slides (PDF)|
Terry Smith, Australian Access Federation
A federation with a clearly defined and documented set of user attributes that are available from Identity providers for use by service providers will certainly improve the utility of your national identity federation. This session will discuss the reasons for releasing attributes, identity provider and service provider expectations and some the issues associated with the release of user attributes.
|3. ||General discussion Slides (PDF)|
Brook Schofield, Project Development Officer, GÉANT Association
Leading up to and at APAN46 the federation operators of nations who are starting on their identity federations journey have been provided with much technical, and policy information and guidance on how to move forward. In this general discussion we will open the floor to any questions and discussion topics that participants would like to reflect on. It is an opportunity to share the successes and failures will all participants and to gain insight from federation operators and experienced practitioners.
|Time:||15:30 - 17:00|
|Session Chair(s):||Brook Schofield, Project Development Officer, GÉANT Association|
|No. of Participants:||9, out of which 10 have provided feeedback|
|Agenda||Identity and Access Management presentations from advanced federations across the Asia Pacific region|
|1. ||Identity Federation in New Zealand Slides (PDF)|
Sat Mandri, REANNZ
An update on identity federations within New Zealand
|2. ||eduroam-on-NGH Development and the Collaboration with Commercial Operators Slides (PDF)|
Hideaki Goto, Tohoku University, NII
A short summary or overview of the presentation Next Generation Hotspot (NGH), together with Passpoint, brings higher security, better usability comparable with mobile phones, and roaming capabilities to Public Wi-Fi services. This presentation introduces our latest activities of developing eduroam-on-NGH and also shows our experiences in the City Wi-Fi Roaming trial by the Wireless Broadband Alliance (WBA) in 2018.
|Time:||17:00 - 18:00|
|Session Chair(s):||Terry Smith, Australian Access Federation|
|No. of Participants:||8, out of which 8 have provided feeedback|
|Agenda|| Slides for Project Backfire - The Next 6 Months|