edugain-discuss AT lists.geant.org

Subject: An open discussion list for topics related to the eduGAIN interfederation service.

List archive

Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership

From: Guy Halse <guy AT tenet.ac.za>
To: <edugain-discuss AT lists.geant.org>
Subject: Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership
Date: Thu, 15 Mar 2018 15:32:39 +0200
Organization: Tertiary Education & Research Network of South Africa NPC

On 2018/03/13 19:59, Brook Schofield wrote:

their policy and MRPS is linked from their federation page http://www.runnet.ru/en/services-en/runnetaai-en but for completeness you can find them here:

* Policy http://www.runnet.ru/images/docs/federation/RUNNetAAI_Identity_Federation_Policy_en.pdf

* MRPS http://www.runnet.ru/images/docs/federation/RUNNetAAI_MRPS_en.pdf

The RUNNetAAI Identity Federation Policy draws in the Terms of Service document, so those need to be read in conjunction to get a full policy understanding.

One thing that's confusing or misleading is that the policy has on page four a term of five years where as the terms of service has a term of 12 months (3.1). The policy has an automatic renewal clause, but the terms of service does not which suggests it has to be resigned every year? In either case, it might make sense to cross-reference the different validity periods so it is clear when one reads the policy that federation members are not necessarily bound for five years.

Some other relatively minor things in the policy document:

It seems that a search was done for "Identity Federation" and RUNNetAAI inserted where it appeared. There are some places where this doesn't make sense, for example in the first paragraph of the Introduction where the broad concept of a federation is introduced.
Under section 5.1, I think references to appendix 1 and 2 may be the wrong way around (the terms of service are labelled appendix 2, but 5.1 suggests that is appendix 1).

In the Metadata Registration Practice Statement:

You have your registration authority as http://runnet.ru/en/services-en/runnetaai-en -- it is more common for this to simply be the FQDN, i.e. http://runnet.ru/.

- Guy

--
Guy Halse
Director: Trust & Identity Tertiary Education & Research Network of South Africa NPC Fault Reporting: +27(21)763-7147 or support AT tenet.ac.za
Office: +27(21)763-7156
http://www.tenet.ac.za/contact
https://orcid.org/0000-0002-9388-8592

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

[eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Brook Schofield, 13-Mar-2018
- Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Peter Schober, 14-Mar-2018
  - Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Порхачев Василий, 15-Mar-2018
    - Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Peter Schober, 15-Mar-2018
      - Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Alan Buxey, 15-Mar-2018
        
        Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Peter Schober, 15-Mar-2018
        
        Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Порхачев Василий, 16-Mar-2018
        
        Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Peter Schober, 16-Mar-2018
  - Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Brook Schofield, 20-Mar-2018
- Re: [eduGAIN-discuss] Assessment of Russia/RUNNet AAI for eduGAIN membership, Guy Halse, 03/15/2018