Presentation is loading. Please wait.

Presentation is loading. Please wait.

APGridPMA Update Eric Yen APGridPMA August, 2014.

Published byAllen Lynch Modified over 8 years ago

Similar presentations

Presentation on theme: "APGridPMA Update Eric Yen APGridPMA August, 2014."— Presentation transcript:

1 APGridPMA Update Eric Yen APGridPMA August, 2014

2 14 TH APGRIDPMA AGENDA http://indico3.twgrid.org/indico/conferenceDisplay.py?ovw=True&confId=587

3 General Status Chair and Vice Chair elected in March Meeting (March 2014) Chair: Eric Yen (ASGCCA) Vice Chair: Kento Aida (HPCICA) Routine Gathering Spring: Together with ISGC in Taiwan Fall: Collocated with related events (eg, APAN, PRAGMA) By Request: Whenever there is any special issue Self-Auditing: every CA has to have self-audit report once every year Regional Catch-All CA: ASGCCA

4 Member Status (I) PRAGMA-CA (US): withdrawn from IGTF release since version 1.58 (June, 2014) APAC Grid CA (AU): withdrawn from IGTF release since version 1.56 (31 March, 2014) All RA and users were migrated to ASGCCA AusCert will take over the services soon AIST Grid CA (JP): withdrawn from IGTF release since version 1.55 (Nov. 2013) Users had migrated to HPCI CA (NII) HPCI CP/CPS is under peer review Update of iHEP CA CP/CPS being reviewed 11 Production CAs Countries served by RAs: Australia, Indonesia, New Zealand, Philippine, and Vietnam

5 Member Status (II) in terms of user community status New WLCG partners ATLAS: Hong Kong, CMS: Malaysia, Singapore, Thailand, Vietnam Alice: Korea, Thailand IN: fast increasing #users coordinated by IGCA KEK: more users expected for Belle II experiment Using KEK computing system or DiRAC for user analysis Identity Federation Actions HPCI in Japan SUFLAN project initiated by Malaysia

6

7 IGTF GUIDELINES AND POLICIES http://www.eugridpma.org/guidelines/ Classic X.509 CAs with secured infrastructure Accreditation Guidelines Formats available: Adobe PDF; Microsoft Word.Accreditation GuidelinesAdobe PDFMicrosoft Word Identifier-Only Trust Assurance AP (IOTA) Formats available: MS Word, Adobe PDF.Identifier-Only Trust Assurance APMS WordAdobe PDF Guidelines for Attribute Authority Service Provider Operations Formats available: Adobe PDF; Microsoft Word.Guidelines for Attribute Authority Service Provider OperationsAdobe PDFMicrosoft Word Protection of private key data for end-users in local and remote systemsProtection of private key data for end-users in local and remote systems Approved Robots Operation of Trusted Credential Stores (draft)Operation of Trusted Credential Stores Guidelines for On-line PKI Certification Authorities (draft)Guidelines for On-line PKI Certification Authorities High Level CA Profile (draft) One Statement Certificate Policies

8 MORE PROFILES Short-lived Certificate Services Profile Formats available: PDF Managed by: TAGPMA Original source: all versions. Status: approved by all PMAs This is an Authentication Profile of the International Grid Trust Federation describing the minimum requirements on a Short Lived Credential Service (SLCS) X.509 PKI CAs. SLCS X.509 Public Key Certification Authorities (SLCS PKI CAs) issue short-term credentials to end-entities, who will themselves posses and control their key pair and their activation data. These CAs act as an independent trusted third party for both subscribers and relying parties within the infrastructure. These authorities will use a long-term signing key, which is stored in a secure manner as defined in the Profile.Short-lived Certificate Services ProfilePDFall versions Member Integrated Credential Services Formats available: PDF Managed by: TAGPMA Source: version 1.2 (doc), (pdf); all previous versions Status: approved by IGTF (all PMAs) This is an Authentication Profile of the International Grid Trust Federation describing the minimum requirements for a Member Integrated X.509 PKI CAs. MICS X.509 Public Key Certification Authorities (MICS PKI CAs) issue credentials to end-entities, who will themselves posses and control their key pair and their activation data. These CAs act as an independent trusted third party for both subscribers and relying parties within the infrastructure. These issuing authorities will use a long-term signing key, which is stored in a secure manner as defined in the Profile.Member Integrated Credential Servicesversion 1.2 (doc)(pdf)all previous versions Experimental CA Formats available: MS Word (note: embedded text in larger document). Managed by: APGridPMA Status: approved by all PMAs Profile for experimental CAs. No aggregate distribution for these CAs is provided.MS Word

9 Future Meetings 14 th APGridPMA in Fall 2014 14Aug. 2014 in Nantou (Co. 38 th APAN Meeting, hosted by Nat’l Chi-Nan Univ.), or 15 th APGridPMA in Spring 2015 Will collocate with ISGC 2015 at Academia Sinica 16 th APGridPMA Volunteer ? IGTF All Hands Meeting should be held by APGridPMA in 2015

Download ppt "APGridPMA Update Eric Yen APGridPMA August, 2014."

Similar presentations

2 nd APGrid PMA F2F Meeting Osaka University Convention Center October 15 09:00 - 17:20 # Participants: 26.

2 nd APGrid PMA F2F Meeting Osaka University Convention Center October 15 09: :20 # Participants: 26.
Updates of the APGrid PMA Catania March 3, 2009 Yoshio Tanaka APGridPMA Chair, AIST, Japan.

Updates of the APGrid PMA Catania March 3, 2009 Yoshio Tanaka APGridPMA Chair, AIST, Japan.
International Grid Trust Federation Session GGF 20 Manchester, UK Wednesday, May 9 2007 CAOPS-WG session #2.

International Grid Trust Federation Session GGF 20 Manchester, UK Wednesday, May CAOPS-WG session #2.
Status of Auditing Guidelines Document Oct. 15 Yoshio Tanaka, AIST.

Status of Auditing Guidelines Document Oct. 15 Yoshio Tanaka, AIST.
Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
Classic X.509 secured profile version 4.2 Proposed Changes David Groep, Apr 20 th, 2009.

Classic X.509 secured profile version 4.2 Proposed Changes David Groep, Apr 20 th, 2009.
Academia Sinica Grid Computing Certification Authority (ASGCCA) Yuan, Tein Horng Academia Sinica Computing Centre 13 June 2003.

Academia Sinica Grid Computing Certification Authority (ASGCCA) Yuan, Tein Horng Academia Sinica Computing Centre 13 June 2003.
Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien.

Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien.
1 ASGCCA Self-Audit Report APGridPMA Jinny Chien March 08 2008.

1 ASGCCA Self-Audit Report APGridPMA Jinny Chien March
Grid Computing in Higher Education (Scott Rea) EDUCAUSE PKI Deployment Forum Madison, WI - April 15, 2008.

Grid Computing in Higher Education (Scott Rea) EDUCAUSE PKI Deployment Forum Madison, WI - April 15, 2008.
1 WebTrust for Certification Authorities (CAs) Overview October 2011 WebTrust for Certification Authorities (CAs) Overview October 2011 Presentation based.

1 WebTrust for Certification Authorities (CAs) Overview October 2011 WebTrust for Certification Authorities (CAs) Overview October 2011 Presentation based.
Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.

Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.
Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct, 17 2012.

Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct,
David Groep Nikhef Amsterdam PDP & Grid Evolving Assurance – IGTF LoA generalisation David Groep Interoperable Global Trust Federation IGTF Documents at.

David Groep Nikhef Amsterdam PDP & Grid Evolving Assurance – IGTF LoA generalisation David Groep Interoperable Global Trust Federation IGTF Documents at.
CAs, RAs & PMAs CAs, RAs & PMAs Roberto Cecchini INFN CA Manager EUIndiaGrid kick-off Trieste, 19/10/06.

CAs, RAs & PMAs CAs, RAs & PMAs Roberto Cecchini INFN CA Manager EUIndiaGrid kick-off Trieste, 19/10/06.
4 th APGrid PMA F2F Meeting Academia Sinica, Taipei, Taiwan April 8, 2008 Agendahttp://www.apgridpma.org/meetings/index.html Call for note takers!

4 th APGrid PMA F2F Meeting Academia Sinica, Taipei, Taiwan April 8, 2008 Agendahttp:// Call for note takers!
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org JRA3 2 nd EU Review Input David Groep NIKHEF.

INFSO-RI Enabling Grids for E-sciencE JRA3 2 nd EU Review Input David Groep NIKHEF.
NRENs supporting Grids using current Grid technology TERENA NREN-GRID Workshop Amsterdam 2005-10-17 Milan Sova CESNET.

NRENs supporting Grids using current Grid technology TERENA NREN-GRID Workshop Amsterdam Milan Sova CESNET.
Www.egi.eu EGI-InSPIRE RI-261323 EGI-InSPIRE www.egi.eu EGI-InSPIRE RI-261323 Policy Issues for Identity Management (and other attributes) EGI Technical.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Policy Issues for Identity Management (and other attributes) EGI Technical.
Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien F2F Meeting 8 th March 2010.

Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien F2F Meeting 8 th March 2010.

Similar presentations

Ads by Google