Versions Compared

Old Version 1

changes.mady.by.user Mikael Linden

Saved on

compared with

New Version 2

changes.mady.by.user Mikael Linden

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Questions for SP communities (e.g. research infrastructure projects or individual SP admins). (Interview or web based survey) 

How important it is for you that...

Identity concept

  • an account belongs to an individual person?
  • and s/he is traceable (i.e. the home organization knows and can reach him/her)?
  • and Home Organisation is willing to penalize him/her if s/he misbehaves?
  • that you (as an SP community) can block him/her from the service?
  • user identifiers are persistent and i.e. not reassigned to another person?
  • user identifiers are shared by multiple SPs  (i.e. not pairwise/targeted)

...

  • the home organization has a documented identity vetting process?
  • the identity vetting process is f2f or equivalent?

On-line authentication

  • passwords?
  • passwords with quality quarantees? (What kind of?)
  • two factor authentication?

Would you like to use step-up authentication as a service?

...

  • accounts are closed as an individual departs? How promptly?
  • edupersonaffiliation eduPersonAffiliation value is updated as an individual departs? How promptly?

...

  • Is it enough that the Home Organisation self-asserts the above?
  • plus someone who has some enforcement rights (e.g. Home identity federation can remove “compliant” tag from the HO)?
  • also internal audits needed?
  • also external audits needed?

---

Do we want to mix these things here

...