Upgrade to Pro — share decks privately, control downloads, hide ads and more …

CILogon CA Update

CILogon CA Update

Presentation at 26th TAGPMA Face-to-Face Meeting, San Diego, CA, U.S.A.

Jim Basney

May 10, 2018

More Decks by Jim Basney

Other Decks in Technology


  1. CILogon CA TAGPMA Update This material is based upon work

    supported by the National Science Foundation under grant numbers 0850557, 0943633, 1053575, 1440609, and 1547268 and by the Department of Energy under award number DE-SC0008597. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the United States Government or any agency thereof. Jim Basney [email protected] May 2018
  2. CILogon www.cilogon.org Certificate Authority IGTF Profile certificates issued so far

    in 2018 CILogon OSG CA classic 3,151 CILogon Basic CA IOTA 86,519 CILogon OpenID CA experimental 152 CILogon Silver CA MICS 0
  3. CILogon www.cilogon.org OSG CA Retirement ❏ Certificate issuance ends May

    31 2018 ❏ Back-end CA operations continue ❏ Certificates valid through June 2019 ❏ CRL publication and revocation processing ❏ Monitoring, incident response, support, etc. ❏ Contact: ❏ [email protected] or [email protected]
  4. CILogon www.cilogon.org CILogon Silver CA ❏ A MICS CA based

    on InCommon Assurance Program ❏ Inactive: no InCommon IdPs accredited at Silver level of assurance ❏ Need: Limits to acceptance of IOTA certificates from CILogon Basic CA
  5. CILogon www.cilogon.org CILogon Silver CA: Rebirth ❏ REFEDS Assurance Framework

    (RAF) ❏ Recent pilot with CILogon, XSEDE, others ❏ https://refeds.org/assurance/IAP/medium is comparable to IGTF BIRCH ❏ Idea: Revise CILogon Silver CP/CPS to use RAF medium/high (cappuccino/espresso) and hope IdPs support it!!!