...
Current work items (supported by AARC TREE)
- New AARC-I082 - G082 trust framework structure: https://docs.google.com/document/d/1ApYHYVOpfuPnVmahSiJ_CgZsjgkGCuTE/edit (older version (contextual framing document) here)Trust framework for proxies and Snctfi research services
- EU Identity Wallets (VCs) and assurance step-up
Under review
- AARC-G084 - Security Operational Baseline (public page: https://aarc-community.org/guidelines/aarc-g084/)
Recently completed documents and guidelines
- AARC-G083 - Guidance for Notice Management by ProxiesAARC-G084 - Security Operational Baseline
Policy activities are continuously evolving
- Security Incident Response in federated environments
- including guidelines on how to property protect your community attribute system
- and how to prepare and what to do in case of incidents
- traceability of events through a (network of) AARC BPA Proxies
- Service- and Infrastructure-centric policy support, including
- e-Researcher centric policies,
- simplified policy development kit also for smaller and mid-sized communities
- alignment of Acceptable Use Policies
- Assurance Level baseline and differentiated assurance profiles (alongside a self-assessment tool) including the use of government e-ID for step-up of assurance
- untangling identity assurance framework complexity
- novel federation models and trust paths (e.g. in OpenID Connect Federation)
- Engagement and coordination with FIM4R and the global community
- Support for Infrastructures and Communities with the Policy Development Kit (PDK)
Lastly, it is imperative that any policies are agreed to in a scalable way: bi-lateral agreements do not work in a multi-stakeholder environment. The work on scalable policy negotiation addresses this issue by exploring ways of expressing and agreeing policy in a federated world: Snctfi.
...