Upgrade to Pro — share decks privately, control downloads, hide ads and more …

CILogon CA Update

CILogon CA Update

Presentation at 26th TAGPMA Face-to-Face Meeting, San Diego, CA, U.S.A.

Jim Basney

May 10, 2018

More Decks by Jim Basney

Other Decks in Technology


  1. CILogon CA
    TAGPMA Update
    This material is based upon work supported by the National Science Foundation under grant numbers 0850557, 0943633, 1053575, 1440609, and 1547268
    and by the Department of Energy under award number DE-SC0008597. Any opinions, findings, and conclusions or recommendations expressed in this material
    are those of the authors and do not necessarily reflect the views of the United States Government or any agency thereof.
    Jim Basney
    [email protected]
    May 2018

    View Slide

  2. CILogon www.cilogon.org
    Certificate Authority IGTF Profile
    certificates issued
    so far in 2018
    CILogon OSG CA classic 3,151
    CILogon Basic CA IOTA 86,519
    CILogon OpenID CA experimental 152
    CILogon Silver CA MICS 0

    View Slide

  3. CILogon www.cilogon.org
    OSG CA Retirement

    Certificate issuance ends May 31 2018

    Back-end CA operations continue

    Certificates valid through June 2019

    CRL publication and revocation processing

    Monitoring, incident response, support, etc.


    [email protected] or [email protected]

    View Slide

  4. CILogon www.cilogon.org
    CILogon Silver CA

    A MICS CA based on InCommon
    Assurance Program

    Inactive: no InCommon IdPs accredited at
    Silver level of assurance

    Need: Limits to acceptance of IOTA
    certificates from CILogon Basic CA

    View Slide

  5. CILogon www.cilogon.org
    CILogon Silver CA: Rebirth

    REFEDS Assurance Framework (RAF)

    Recent pilot with CILogon, XSEDE, others

    https://refeds.org/assurance/IAP/medium is
    comparable to IGTF BIRCH

    Idea: Revise CILogon Silver CP/CPS to use
    RAF medium/high (cappuccino/espresso)
    and hope IdPs support it!!!

    View Slide