Hi all, it looks interesting, and I'm hoping to get some more information from the NSI people involved (some of which are actually our neighbours from SURFsara) if I find some time. I would like to understand better how they ensure the integrity of the SAML attributes. Maybe it does not matter in the setup, but it looks like authZ decisions are made based on attribs aggregated from different services and somehow I don't see how they prevent intermediate parties from tampering with them. Concerning the communication: how about starting a new mailing list nsi-security and subscribe different people + the nsi-wg list on it? Cheers, Mischa On Mon, Sep 22, 2014 at 12:19:01PM +0100, Jens Jensen wrote:
I've looked at it a few times but it doesn't really make sense to me without some further background information. Maybe it's time for me to read up on the work of NSI...
Cheers --jens
On 19 September 2014 18:47, Sill, Alan <alan.sill@ttu.edu> wrote:
FYI. Review and thoughts to the author are recruited (by me). Thoughts welcome on how we can improve communication among and between members of the OGF groups, and more widely between the networking and security portions of the community on this topic.
Alan
Begin forwarded message:
*From:* Hans Trompert <hans.trompert@surfnet.nl> *Date:* September 19, 2014 at 12:40:29 PM CDT *To:* "nsi-wg@ogf.org" <nsi-wg@ogf.org> *Subject:* *[Nsi-wg] slides for NSI AA presentation Monday 22 September 2014*
Hi,
Please find attached my slides for the NSI AA presentation Monday 22 September 2014 in Uppsala.
Cheers, HansT.
-- caops-wg mailing list caops-wg@ogf.org https://www.ogf.org/mailman/listinfo/caops-wg
_______________________________________________ Idel-wg mailing list Idel-wg@ogf.org https://www.ogf.org/mailman/listinfo/idel-wg
-- Nikhef Room H155 Science Park 105 Tel. +31-20-592 5102 1098 XG Amsterdam Fax +31-20-592 5155 The Netherlands Email msalle@nikhef.nl __ .. ... _._. .... ._ ... ._ ._.. ._.. .._..