JIRA Issue

[#XCI-707] Evaluate AARC-G048 (Guidelines for Secure Operation of Attribute Authorities and other issuers of access statements) for adoption
Participate in AARC Engagement Group for Infrastructures (AEGIS) (XCI-256)

[XCI-707] Evaluate AARC-G048 (Guidelines for Secure Operation of Attribute Authorities and other issuers of access statements) for adoption Created: 02/10/2020  Updated: 04/15/2021

Status: In Progress
Project: XSEDE Cyberinfrastructure Integration
Component/s: None
Fix Version/s: PY9 (Sep '19 - Aug '20)

Type: Sub-task Priority: Normal
Reporter: Jim Basney Assignee: Jim Basney
Resolution: Unresolved Votes: 0

Issue Links:
Relates
relates to XCI-691 COmanage Group Management phase 1/bet... Closed
XSEDE Areas:
RACD Security
XSEDE Priority: -
Public activity link: https://software.xsede.org/display/xci-707
Use Cases:
GRP-01: Researcher manages membership of a project group
Track status in meeting: yes

 Description   

On the 2020-02-10 AEGIS (https://aarc-community.org/about/aegis/) call, there was a call for members to evaluate AARC-G048 (Guidelines for Secure Operation of Attribute Authorities and other issuers of access statements) (https://aarc-community.org/guidelines/aarc-g048/) for adoption.

I volunteered that XSEDE may be able to do it as part of XCI-691 (Prototype COmanage for XSEDE WBS/staff list). At least it would be good to document the operational security of the LDAP service provided in XCI-691 and AARC-G048 may provide a useful framework for that.



 Comments   

There are comments for XCI-707 that can be viewed with XSEDE authentication.