GFIPM.net http://www.gfipm.net Global Federated Identity and Privilege Management Tue, 14 May 2013 14:02:39 +0000 en-US hourly 1 http://wordpress.org/?v=3.5.1 GFIPM Reference Federation Updates http://www.gfipm.net/gfipm-reference-federation-updates/ http://www.gfipm.net/gfipm-reference-federation-updates/#comments Wed, 08 Aug 2012 19:16:19 +0000 Jeff Krug http://www.gfipm.net/?p=319 Continue reading ]]> The GFIPM Reference Federation has continually served the GFIPM community as the primary conformance and interoperability testbed for GFIPM integration and interoperability testing efforts since 2008.  Recently the testbed was updated with a new feature to help reconcile typos and minor attribute configuration errors on GFIPM Identity Providers.  This new capability analyzes the content of the raw SAML assertion delivered to the GFIPM Reference Service Provider and verifies each attribute name and attribute name format against the GFIPM Metadata Specification.  In the past, when mistakes of this nature occurred it would only be detected by manual inspection of the SAML Assertion, as the reference service provider simply filtered out all invalid attributes.  Now administrators will be able to quickly see all the data they transmitted and which attributes may contain errors.

By using this capability along with the existing capability that analyzes attribute values for correctness against the  GFIPM Metadata Specification, administrators can fully validate the technical configuration of their GFIPM Identity Providers faster than ever. The following example shows how this new tool identifies incorrectly named attributes as well as attributes with incorrect name formats:

This image shows an attribute name error, as well as an attribute name format error.

]]> http://www.gfipm.net/gfipm-reference-federation-updates/feed/ 0 NIEF Signing Certificate Transition Year http://www.gfipm.net/nief-signing-certificate-transition-year/ http://www.gfipm.net/nief-signing-certificate-transition-year/#comments Sat, 30 Jun 2012 16:18:29 +0000 Jeff Krug http://www.gfipm.net/wordpress/?p=19 Continue reading ]]> The calendar year of 2012 is a transition year for the NIEF Trust Fabric Signing Certificate.  You can read the process we are following as we migrate to a new signing certificate in the NIEF Center Root Signing Certificate Transition Policy.  The NIEF Trust Fabric will be signed with both certificates until February 2013, but as of August 2012 the longtime production URL at which the trust fabric was available for download will switch to being the signed with the new certificate.  This specifically will impact any organizations using SAML software that automatically downloads, validates, and uses the NIEF Trust Fabric.  Even if your organization is not using such software, I recommend being sure to update your local trust to the use the new NIEF Root Signing Certificate.

]]> http://www.gfipm.net/nief-signing-certificate-transition-year/feed/ 0