Home
Topics
Proceedings
2020
2019
2018
2017
2015
2014
2013
Terms
About
Trust and Internet Identity Meeting Europe
2013 - 2020: Workshops and Unconference
2019
2018
2017
2015
2014
2013
Topics 2014
Security
Letsencrypt.org for OV + EV certificates (2014)
How to use; obstacles and alternatives. Use: for DOMAIN-validated certificates, probably with upsell model by IdenTrust https://www.identrustssl.com/ Deploy Python script on your webserver, solves hassles of getting low assurance certificate. Currently investigating within eduROAM/GÉANT to apply the same principles to a RADIUS/TLS system. Concerns that letsencrypt is only half of the steps, extra Apache configuration is needed for security, e.g. disable insecure ciphers System admins might just run letsencrypt on the command line and think they’re done (need to maintain your systems).
Policy/Assurance
Federations within Federations: Enabling Local/Ad Hoc Policy Spheres (2014)
Use cases: (1) How to add additional policy on top of exiting federation (this could be state fed); (2) Different policies could pertain to privacy, news; (3) Pick out specific Service Providers that are suited for a group of IdPs; (4) Specific IDPs certificated to be able to be AuthN providers for Government (this is the FICAM program);
Partner 2020