Difference between revisions of "Is Assurance Real?"
|Line 1:||Line 1:|
'''Convener:''' RL BobMorgan
Latest revision as of 15:29, 3 February 2011
Convener: RL "Bob" Morgan
Identity Assurance Frameworks:
- E-Auth - CAF
- Kantara IAF
- InCommon IAF
Challenges for universities to achieve level 2:
- Need to evaluate if employees' and students' has been properly validated / verified.
- Possibility that an unknown university service collects creds in the clear. Nothing stops someone from publishing an unencrypted web form that binds against the university LDAPS or Kerberos system.
- Cost: assurance = money. Fundamental problem: IDP bears the cost, but the RP gets the benefit.