XSEDE Capability Delivery Plan for "SPI-13: Configure a service to use high-assurance X.509 certificates for user access"

Use Case SPI-13: Configure a service to use high-assurance X.509 certificates for user access

Area: Community Building
URLs: Review

Executive Summary: A service provider needs to configure a service to allow or require a high-assurance X.509 certificate for user access so that the user authentication process is assured to satisfy the IGTF “MICS/BIRCH” level of assurance.

Organization: 
XSEDE
First CDP: 2020-03-11
Current CDP: 
Current Implementation Status: 
Time & Effort Summary: 

This use case is fully supported by the CILogon service, specifically its Silver CA and related documentation. No further effort is required at this time.

Significant Revisions:
  • 2020-03-11 13:45 (current revision)
This capability is currently supported by the following 1 components:
Component User facing? Component’s role in the capability
CILogon yes CILogon provides documentation for service providers on how to configure their services to use CILogon-issues X.509 certificates, including those issued by the CILogon Silver CA, which satisfies this use case. CILogon also provides the policy documentation for the Silver CA which explains how it satisfies the level of assurance requirement.