An open discussion list for topics related to the eduGAIN interfederation service.

[Rhys Smith <Rhys.Smith AT jisc.ac.uk>]

A couple of quickies:

MDRPS:

6a - Entities shall "Update CAF-Moz metadata at least once every thirty 
days”. I think you need to be a bit more ambitious there! They really should 
be checking for updates at least daily, preferably several times a day. Once 
every thirty days leaves a very long time for updates to appear.

You also don’t have any requirements for other entity types there.

Having said that, both of these are rules for IdPs to follow and aren’t 
related to metadata registration, so don’t need to be in this document at 
all, they should be in the terms of commitment or technical specs doc.



Tech Specs:

* Metadata - this might be an area you want to flesh out a bit, and include 
how often entities should be refreshing their metadata. You might also want 
to include details on how its signed and suchlike.

* Certificates, you don’t say what a “correct certification path policy” 
means. Are self-signed certs allowed, like in most federations?

* Attributes, did you specifically choose not to support any eduPerson* 
attributes? That might make things different when interfederating. You might 
want to revisit your thoughts around this.


Rhys.


> On 25 Jan 2018, at 17:05, Brook Schofield <Brook.Schofield AT geant.org> wrote:
> 
> All,
> 
> I present to you the application of:
>  * Mozambique/CAFMoz
> 
> who has Signed the eduGAIN Declaration, has a policy based on the 
> federation policy template that covers all the prescribed areas, is self 
> declaring their federation as a production service and is wanting to join 
> the global R&E federated environment. 
> 
> Since the policy and MRPS so closely aligns with the REFEDS templates 
> https://wiki.refeds.org/display/FBP/ I’ve decided to forgo the summary 
> document.
> 
> You can find more detailed information about the federation under "eduGAIN 
> Candidates” at
>     https://technical.edugain.org/status.php
> 
> This application is from an organisation that is closely aligned with the 
> GÉANT community via their participation in the AfricaConnect project and 
> their collaboration with UbuntuNet Alliance and RNP. They are also the 
> eduroam .mz roaming operator.
> 
> So I ask the following federations to specifically review the submission by 
> CAFMoz:
>  * Norway / FEIDE
>  * Oman/KID
>  * Poland / PIONIER.Id
>  * Portugal / RCTSaai
>  * Slovenia / ARNES-AAI
> 
> All eduGAIN members can (and should) provide feedback on this but to share 
> the burden of review around, these five (5) federations have a specific 
> responsibility. 
> 
> If you have any questions please contact the CAFMoz team (Lourino + Lino) 
> that are subscribed to this mailing list as well as CC’d to this message.
> 
> Formal components of the membership process will be via the eduGAIN 
> Steering Group mailing list. 
> 
> Brook Schofield
> Project Development Officer
> GÉANT 
> M: +31651553991 
> Skype: brookschofield
>  
> Networks • Services • People 
> 
> GÉANT is the collective trading name of the GÉANT Association and GEANT 
> Limited. Learn more at www.geant.org​
> ​
> GÉANT Vereniging (Association) is registered in the Netherlands with the 
> Chamber of Commerce in Amsterdam. Registration number: 40535155. Registered 
> office: Hoekenrode 3, 1102BR Amsterdam, The Netherlands
> GEANT Limited is registered in England & Wales. Registration number: 
> 2806796. Registered office: City House, 126-130 Hills Road, Cambridge CB2 
> 1PQ, UK.
>

Attachment: smime.p7s
Description: S/MIME cryptographic signature