common solutions group january 12, 2010
DESCRIPTION
Common Solutions Group January 12, 2010. Where we were…. Rewind to CSG, January 2010 Developing levels of assurance for personal digital identities at Virginia Tech Developing method for determining LoA Developing technology for authenticating at LoA - PowerPoint PPT PresentationTRANSCRIPT
![Page 2: Common Solutions Group January 12, 2010](https://reader035.vdocument.in/reader035/viewer/2022081511/568164cd550346895dd6f0c8/html5/thumbnails/2.jpg)
Where we were…
Rewind to CSG, January 2010• Developing levels of
assurance for personal digital identities at Virginia Tech
• Developing method for determining LoA
• Developing technology for authenticating at LoA
• Aware that InCommon Silver was “out there”
![Page 3: Common Solutions Group January 12, 2010](https://reader035.vdocument.in/reader035/viewer/2022081511/568164cd550346895dd6f0c8/html5/thumbnails/3.jpg)
Where we are now…CSG January 2011• Established
Standard for Personal Digltal Identity Levels of Assurance
• CAS recognizes LoA of authentication credential
• CAS front-ends Shibboleth• Ex-officio member of CIC Silver
Project planning group
![Page 4: Common Solutions Group January 12, 2010](https://reader035.vdocument.in/reader035/viewer/2022081511/568164cd550346895dd6f0c8/html5/thumbnails/4.jpg)
Where we are going…Initially, achieve InCommon Silver
with• personal digital certificates on
eToken Later possibilities • VASCO Digipass one-time
password devices• soft personal certs for
employees
![Page 5: Common Solutions Group January 12, 2010](https://reader035.vdocument.in/reader035/viewer/2022081511/568164cd550346895dd6f0c8/html5/thumbnails/5.jpg)
How we decided…• Participated in CIC Silver
project calls• Learned challenges re: identity
proofing – in-person desirable• Issuing VASCO devices
currently not scalable• Soft certificates require
infrastructure changes, development of new user interfaces
![Page 6: Common Solutions Group January 12, 2010](https://reader035.vdocument.in/reader035/viewer/2022081511/568164cd550346895dd6f0c8/html5/thumbnails/6.jpg)
How we decided…• Realized we already had most
of process, security, and documentation in place for personal certificates on eTokens
• Realized users were likely to be faulty/staff – not students.
• eTokens already available to faculty, staff, graduate students
![Page 7: Common Solutions Group January 12, 2010](https://reader035.vdocument.in/reader035/viewer/2022081511/568164cd550346895dd6f0c8/html5/thumbnails/7.jpg)
Remaining tasks…• Wait for Silver to be finalized• Ensure line-item compliance
with Silver – may require change to record (and encrypt) DL/passport number
• Ensure that CAS checks certificate revocation list
• Request audit• Apply for Silver