Skip to Content.
Sympa Menu

edugain-discuss - Re: [eduGAIN-discuss] FIDO2 and SSO?

edugain-discuss AT lists.geant.org

Subject: An open discussion list for topics related to the eduGAIN interfederation service.

List archive

Re: [eduGAIN-discuss] FIDO2 and SSO?


Chronological Thread 
  • From: Peter Schober <peter.schober AT univie.ac.at>
  • To: edugain-discuss AT lists.geant.org
  • Subject: Re: [eduGAIN-discuss] FIDO2 and SSO?
  • Date: Wed, 27 Feb 2019 14:20:11 +0100
  • Authentication-results: prod-mail.geant.net (amavisd-new); dkim=pass (1024-bit key) header.d=univie.ac.at
  • Organization: ACOnet

János,

* Janos Mohacsi <mohacsi.janos AT kifu.gov.hu> [2019-02-27 13:57]:
>     What do you think about FIDO2 movement and current SSO systems
> provided by eduGAIN and various federations behind it?

Authentication is one thing and ubiquitous WebAuthn will certainly be
interesting.

But to the degree that you're interested in data about subjects and
which parts of that data you'd prefer to be vouched for by a third
party (i.e., not self-asserted) you'll still need those Trusted Third
Parties. Either asserting the data (as do the institutional IDPs of
today) or one step beyond when registrars vouch for the
trustworthiness of the institutions themselfs (or at least their keys).

You might be interested in a new work group REFEDS has established for
2019, https://wiki.refeds.org/display/GROUPS/Federation+2.0
As most things REFEDS does it is open to interested parties.

I notice there also seems to be a full-day workshop on that topic
co-located with TNC19 in Tallin/Estonia, cf. Thursday
https://tnc19.geant.org/schedule/
(Too bad I've already arranged for departing that morning.)

-peter



Archive powered by MHonArc 2.6.19.

Top of Page