Choose timezone
Your profile timezone:
Powered by Indico
v3.3.6-pre
Please register below to participate and to gain access to the site if you plan to join in person. We look forward to seeing you!
On the CERN website you can find directions to CERN.
Transports Publics Genevois (TPG) provide good coverage of the area. If you are staying in a Hotel (not the CERN Hostel) you will be given a complementary travel card. Tram 18 takes you between CERN and the City Centre with a 'Billet Tout Genève validité 60''. Tickets can be purchased from machines at each stop.
When you arrive at CERN you can request a paper map, or use the application https://maps.web.cern.ch
S/MIME BR evolution, splitting user S/MIME email and authentication credentials
SHA-1 issues
updates on the EOSC security coordination, ISM policy development, and expectations
preparation slot
open for other topics as they may arise!
At La Meyrinoise pizzeria in Meyrin
Table of 15 booked for « Anna »
in light of the AAOPS assessment and peer review - planning for the EOSC ...
and for the FIM4R sessions on Wednesday and Thursday
Demi-Lune Restaurant, Geneva old town.
Catch the tram 18 to Bel Air and walk up the hill through the old town.
Table booked for "Hannah Short"
Many questions about how the technology works (overlap with OAuth/Macaroons).
Question about whether this could be reused by other communities.
Question about why the entitlement guidance from AARC wasn't used. Unclear but took into account other input from sources such as Google/Amazon. Started with 30 different proposals and finding a consensus was very difficult.
Question about levels of assurance. It's a combined assurance model, depends on how many identities you link. If you link an e-ID you are at the max.
Would be interesting to be able to influence e-ID Wallet.
Actions
There is a growing trend for IT departments to outsource services to third parties. This often has consequences for authentication and authorisation
- How are these services integrated? Typically services can be registered behind an enterprise Single Sign-On but not always. This creates multiple authentication workflows for users at a cost to security.
- Will account blocking be propagated?
- Some large service suites offer SSO as a service and nudge organisations to migrate fully from their own independent SSO. Is this a good idea for research organisations?
Browsers are changing their rules about third party cookies (among other things). This directly impacts us in federated identity. What do we need to be aware of? What should we be doing? Heather will give us a presentation and there will be an open discussion.
Bains des Paquis
Please bring cash in Swiss francs. There are cash points in the restaurants at CERN.
The menu is available at http://buvettedesbains.com/
The standard dinner is Fondue (27chf) & half a sharing plate of ham (7.5chf) & wine (10chf) so please budget for about 45chf.
To reach the location, catch the 18 tram down to Bel Air and walk along the lake to the Bains de Paquis (a pier that goes out into the lake).
Reservation under the name "Anna"
How do proxies need to be managed to participate fully in identity federations?
Slot for any common concerns that are raised over the 2 days, e.g. Keycloak users,