Requirements for Research and e-Infrastructures in TCS Environment

tcsg4 requirements for research n.w
1 / 9
Embed
Share

Explore the TCSG4 requirements for research and e-infrastructures, certificates, and the structure within GEANT. Learn about the TCS eScience and research requirements in the European R&E community.

  • Research
  • e-Infrastructures
  • TCS
  • GEANT
  • Certificates
rayaanacharya
daleighc Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. TCSG4 requirements for Research and e-Infrastructures David Groep TCS PMA and Nikhef EUGridPMA45 January 2019 Networks Services People www.geant.org

  2. A long (but rather successful) road 2nd CfP initial contract renewed with more partners Start of SCS NRENs keep joining IDEA Start of TCS CfP Contract renewed Start TCS eScience End of SCS Networks Services People www.geant.org

  3. R/E Infrastructure certificates today Actually the eScience certificates are generally useful for client authentication purposes Also services act as clients (e.g. for accounting) Product types End-user personal certificates (S/MIME and auth variants) Robots (personal, or team email ) Server (OV verified with specific namespace) Networks Services People www.geant.org

  4. The TCS structure GEANT is the owner of the certificate services, which is procures on behalf of the participating NRENs (GEANT members) It sources the issuing service from a commercial CA service provider and sets the requirements Via the tender/RfP requirements Via updates to the CP/CPS NRENs then act as the user-facing end of the service They can (or could) define some of the processes All have to agree to the same CP/CPS and contract(s) Leveraged federated ID from eduGAIN as much as possible for users The TCS PMA controlling the CP/CPS is comprised of experts from across the community Networks Services People www.geant.org

  5. Interesting elements By its intention, the TCS CAs should Be publicly trusted in all major (mobile) systems Use mechanisms that scale to the European R&E community Don t burden the subscribers (institutions) too much in particular for auditing Preserve under GEANT s control key elements that ensure continuity (no vendor lock-in) for eScience, this means e.g. subject namespace but of course not everything is under our control Changes to baseline requirements affect us Way the CA interprets those changes affects us even more organization naming for instance, or ASCII-fication Server certs are more tightly controlled than personal Networks Services People www.geant.org

  6. TCS eScience and research requirements Graphic courtesy Jan Meijer, Uninett, 2009(!) 6 Networks Services People www.geant.org

  7. TCS Gen 4 Landscape is changing again dynamic DevOps provisioning of micro-services and popularity of ACME browser reaction to certificate types (and to faults) more cross-over between eScience and other authN use cases (credentials and signing by teams and mailing lists) weird use cases (>150 SAN dNSNames in one cert, proxies, &c) low-power, mobile, and IoT like use cases eIDAS and the electronic campus Google doing its own thing entirely 7 Networks Services People www.geant.org

  8. What key requirements should there be on TCSG4? What to definitely keep? distinguished namespace for OV eInfra certificates (specific profile) eduGAIN fedID integration single installable trust chain for all platforms plenty SAN dNSNames What to definitely add and request? (continued) use of ECC up to an ECC root handling (at least) OV with ACME-like protocol can we push providers to push this one (server API keys, or server oAuth?) more? 8 Networks Services People www.geant.org

  9. Thank you and keep the output of this discussion a bit confidential davidg@nikhef.nl Networks Services People www.geant.org 9 Networks Services People www.geant.org

Related


INDIAN ARMY AGNIVEER MEDICAL REQUIREMENTS

INDIAN ARMY AGNIVEER MEDICAL REQUIREMENTS

Manasa
Entry Requirements for Higher National Diploma & Bachelor Degree Programmes at UNISSA

Entry Requirements for Higher National Diploma & Bachelor Degree Programmes at UNISSA

enid
Grade 10-11 Course Planning and Graduation Requirements Overview

Grade 10-11 Course Planning and Graduation Requirements Overview

henrik
Requirements Elicitation in Software Engineering

Requirements Elicitation in Software Engineering

ailani
Senior Update: Graduation Requirements, Endorsement Areas, Additional Testing

Senior Update: Graduation Requirements, Endorsement Areas, Additional Testing

cinder
Writing Effective Technical Requirements for Product Development

Writing Effective Technical Requirements for Product Development

oran
Software Analysis and Design: Requirements to Design Transition

Software Analysis and Design: Requirements to Design Transition

matias
Overview of PED Compliance Requirements for RFD Crab Cavities Fabrication at FNAL

Overview of PED Compliance Requirements for RFD Crab Cavities Fabrication at FNAL

eulalia
Insurance and Bonding Requirements for Contractors in Orange County Government

Insurance and Bonding Requirements for Contractors in Orange County Government

thorin
Software Requirement Analysis and Documentation Process

Software Requirement Analysis and Documentation Process

vasco
Software Requirements and Design Principles

Software Requirements and Design Principles

laurel
Få dina bekymmer lösta med Nicecargbg.coms experttjänster för fordonsbesiktnin

Få dina bekymmer lösta med Nicecargbg.coms experttjänster för fordonsbesiktnin

Nicecarbg
Requirements for FR2 DL 256QAM and 64QAM Discussion Summary

Requirements for FR2 DL 256QAM and 64QAM Discussion Summary

aariv
Requirements Determination in Systems Development

Requirements Determination in Systems Development

malayah
IEEE 802.11-21/0012r1 Considerations on Open Issues in PHY Requirements

IEEE 802.11-21/0012r1 Considerations on Open Issues in PHY Requirements

ianthe
Way Forward on Ultra-Low BLER Requirements and Open Issues Discussion

Way Forward on Ultra-Low BLER Requirements and Open Issues Discussion

fleur
Special Milk Program Requirements for Indiana Camps

Special Milk Program Requirements for Indiana Camps

elora
Overview of Occupational Requirements Survey (ORS) and 2020 Estimates

Overview of Occupational Requirements Survey (ORS) and 2020 Estimates

cade
Tracing Requirements in Software Engineering

Tracing Requirements in Software Engineering

julia
Emission Requirements Discussion at 3GPP TSG-RAN-WG4 Meeting #99-e

Emission Requirements Discussion at 3GPP TSG-RAN-WG4 Meeting #99-e

adalwolfa
gNB Positioning Measurement Requirements Discussion at 3GPP TSG-RAN WG4 Meeting

gNB Positioning Measurement Requirements Discussion at 3GPP TSG-RAN WG4 Meeting

scott
Technical Integration Meeting: DUNE Requirements Overview

Technical Integration Meeting: DUNE Requirements Overview

haye_ora

More Related Content