90 likes | 238 Vues
Community Services WI. TF-EMC2 VC Meeting 29 June, 2011 Licia Florio florio@ terena.org www.terena.org. Community Services WI. WI aim: Analyzing the status of the services and promoting their usage. Proposing and validating service enhancements.
 
                
                E N D
Community Services WI TF-EMC2 VC Meeting 29 June, 2011 Licia Florio florio@terena.orgwww.terena.org
Community Services WI • WI aim: • Analyzing the status of the services and promoting their usage. • Proposing and validating service enhancements. • Contributing to the maintenance and sustainability of the services. • Exploring the feasibility of new services and assessing on their practical implementation • Existing Services: • TACAR, SCHAC, TCS <lastname@terena.org>
Existing Services - TACAR • TACAR • Trust repository to host CAs; CAs are listed based on their accreditation: • Most of the CAs are IGTF accredited; • New TACAR policy expected by end of July (finally!) • TACAR being used to host GEANT accredited CAs • The accreditation is done via the GEANT eduPKI PMA • https://www.edupki.org/ • Currently only CA accredited • Discussion on-going on whether TACAR should be used to host metadata signing keys as well • No clear consensus yet
Existing Services - SCHAC • SCHAC (Victoriano Giralt & Javier Masa) • SChema for Academia • Used in production in some countries (Spain, Finland, Italy etc) • urn:schac granted • Thanks to Victoriano • Should we use the new URN prefix then? • TERENA is working to use RedIRIS’s registry to handle both SCHAC and OIDs • ½ of the work is done; • Plans are also to move SCHAC’s documentation to a wiki;
Existing Services – TCS • TCS offers server, personal and code signing certs: • NRENs can choose their package;
TCS S= server cert P = personal cert C = code signing cert
TCS Portal • Several NRENs decided to pool resources and operate common portal for personal certificates. • Hosted on resilient servers at Tilburg University under contract to TERENA. • Utilises Confusa software. • Each NREN community needs to operate at least one IdP, multiple IdPs are supported. • Participants: • ACOnet (AT), BELNET (BE), FUNET (FI), GARR (IT), RENATER (FR), SUNET (SE), SURFnet (NL), UNI-C (DK), UNINETT (NO)
TCS Statistics(1 Jul 2009 - 31 Dec 2010) • Server Certificates • Since 1 Jul 2009 - 45,710 (most JANET(UK) with 9,321 ) • eScience Server Certificates • Since 1 Oct 2010 - 42 (most PSNC with 16) • Personal Certificates • Since 5 Feb 2010 - 1,169 (most 499 with CESNET) • eScience Personal Certificates • Since 5 Feb 2010 - 547 (most 332 with UNINETT) • Code-Signing Certificates • Since 1 June 2010 - 52 (most 13 with PSNC)
New horizons • The ‘federated box.net’ • Or in more general terms federated access to storage/cloud services • A call scheduled on July 6 • To discuss use-cases, business model and next steps; • Discussed with Niels Van Dijk the creation of a ‘catalogue’ to show: • Services NRENs offer • Services NRENs are building • Sharing experiences on procurements, service models etc • Not a lot has been done though