CILogon CA Update

Transcript

1. CILogon CA
   TAGPMA Update
   This material is based upon work supported by the National Science Foundation under grant numbers 0850557, 0943633, 1053575, 1440609, and 1547268
   and by the Department of Energy under award number DE-SC0008597. Any opinions, findings, and conclusions or recommendations expressed in this material
   are those of the authors and do not necessarily reflect the views of the United States Government or any agency thereof.
   Jim Basney
   [email protected]
   May 2018
   

   View Slide

2. CILogon www.cilogon.org
   Certificate Authority IGTF Profile
   certificates issued
   so far in 2018
   CILogon OSG CA classic 3,151
   CILogon Basic CA IOTA 86,519
   CILogon OpenID CA experimental 152
   CILogon Silver CA MICS 0
   

   View Slide

3. CILogon www.cilogon.org
   OSG CA Retirement
   ❏
   Certificate issuance ends May 31 2018
   ❏
   Back-end CA operations continue
   ❏
   Certificates valid through June 2019
   ❏
   CRL publication and revocation processing
   ❏
   Monitoring, incident response, support, etc.
   ❏
   Contact:
   ❏
   [email protected] or [email protected]
   

   View Slide

4. CILogon www.cilogon.org
   CILogon Silver CA
   ❏
   A MICS CA based on InCommon
   Assurance Program
   ❏
   Inactive: no InCommon IdPs accredited at
   Silver level of assurance
   ❏
   Need: Limits to acceptance of IOTA
   certificates from CILogon Basic CA
   

   View Slide

5. CILogon www.cilogon.org
   CILogon Silver CA: Rebirth
   ❏
   REFEDS Assurance Framework (RAF)
   ❏
   Recent pilot with CILogon, XSEDE, others
   ❏
   https://refeds.org/assurance/IAP/medium is
   comparable to IGTF BIRCH
   ❏
   Idea: Revise CILogon Silver CP/CPS to use
   RAF medium/high (cappuccino/espresso)
   and hope IdPs support it!!!
   

   View Slide