View Source

h1. UCTrust Work Group Home

The UCTrust Work Group is comprised of identity management professionals at all of UC's campuses, as well as service providers that utilize [UCTrust|http://www.ucop.edu/irc/itlc/uctrust].  This group meets regularly for the following purposes:
* Discussion of technical, policy, and operational issues related to UCTrust.  As appropriate, issues and recommendations are forwarded to UC's [Information Technology Leadership Council (ITLC)|http://www.ucop.edu/irc/itlc], UCTrust's governing board, for resolution and adoption.
* Discussion of technical, policy, and operational issues related to campus identity management systems with the goal of fostering effective identity management practices throughout UC.

h2. Current [UC Identity Management Progress]


h2. Drafts, White Papers, and Other Information about UCTrust

* [Invoking UCTrust and InCommon Applications without WAYF Processing]
* [User Identifiers for UCTrust]
* [The original, pre-wiki UCTrust Work Group pages|http://www.ucop.edu/irc/advtech/UCTrustWG/index.html]
* Past UC projects related to UCTrust
** [UC Identity Management Work Group|http://www.ucop.edu/irc/itlc/ucfedauth/]
** [Enterprise Directory Project|http://www.ucop.edu/irc/edp/welcome.html]

h2. UCTrust Metadata

* [Ensuring the Validity and Correctness of UCTrust Security Information]
** [Scripts, keyrings, and test cases .tar.gz|^UCTrustSigning.tar.gz]
** Current metadata (5/29/2008)
*** [^UCTrustMetadata.tar.gz]
*** [^UCTrustMetadata.tar.gz.initiator.sig]
*** [^UCTrustMetadata.tar.gz.certifier.sig]

h2. Related Resources

* [E-Authentication Guidance for Federal Agencies (OMB M-04-04)|http://www.whitehouse.gov/omb/memoranda/fy04/m04-04.pdf]\- Describes a four-level identity assurance framework for federal agencies, as well as a risk-based process for assessing appropriate levels of assurance for electronic transactions requiring authentication.
* [Standards for Security Categorization of Federal Information and Information Systems (FIPS PUB 199)|http://csrc.nist.gov/publications/fips/fips199/FIPS-PUB-199-final.pdf] \- Referenced in OMB M-04-04 for use in determining the potential impact of unauthorized release of sensitive information.
* [Electronic Authentication Guideline (NIST 800-63)|http://csrc.nist.gov/publications/nistpubs/800-63/SP800-63V1_0_2.pdf]\- Defines the requirements for implementation of the four identity assurance levels defined in OMB M-04-04.
* [The InCommon federation|http://www.incommonfederation.org/]

h2. Meetings

* June 10 and 11, 2008 at UC Davis \[[Agenda|uctrustwg:Meeting Agenda - 2008-06-10 at UCD], [Notes|uctrustwg:Meeting Notes - 2008-06-10 at UCD]\]
* March 26, 2008 at UC Santa Barbara \[[Agenda|uctrustwg:Meeting Agenda - 2008-03-26 at UCSB], [Notes|uctrustwg:Meeting Notes - 2008-03-26 at UCSB]\]
* December 6, 2007 at UC San Diego \[[Agenda|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2007-12-06/Agenda-2007-12-06.html], [Notes|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2007-12-06/Notes-2007-12-06.html]\]
* July 12, 2007 at UC Irvine \[[Agenda|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2007-07-12/Agenda-2007-07-12.html], [Notes|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2007-07-12/Notes-2007-07-12.html]\]
* April 17, 2007 at UC Los Angeles \[[Agenda|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2007-04-17/Agenda-2007-04-17.html], [Notes|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2007-04-17/Notes-2007-04-17.html]\]
* February 12, 2007 at UC Santa Cruz \[[Agenda|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2007-02-12/Agenda-2007-02-12.html], UCLA Identity Management System Updates ([PDF|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2007-02-12/ucla-mwi-presentation-uctrustmeeting-20070212.pdf], \[\][PowerPoint|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2007-02-12/ucla-mwi-presentation-uctrustmeeting-20070212.ppt])\]
* October 24, 2006 at UC Riverside \[[Agenda|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2006-10-24/Agenda-2006-10-24.html], [Notes|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2006-10-24/Notes-2006-10-24.html]\]
* August 10, 2006 at UC Berkeley \[[Agenda|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2006-08-10/UCTrustAgenda-2006-08-10.html], [Notes|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2006-08-10/UCTrustMeetingNotes-2006-08-10.html]\]
* June 8, 2006 at UC Merced \[[Agenda|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2006-06-08/UCTrustAgenda-2006-06-08.html], [Notes|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2006-06-08/UCTrustMeetingNotes-2006-06-08.html]\]
* March 30, 2006 at UC San Diego \[[Agenda|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2006-03-30/UCTrustAgenda-2006-03-30.html], [Notes|http://www.ucop.edu/irc/advtech/UCTrustWG/Meetings/2006-03-30/UCTrustMeetingNotes-2006-03-30.html]\]

h2. Electronic Mail List

The [UCIDMgmt-L@ucop.edu electronic mail list|http://listserv.ucop.edu/cgi-bin/wa.exe?A0=UCIDMGMT-L] is used for communication within the UCTrust Work Group.  An [archive|http://listserv.ucop.edu/cgi-bin/wa.exe?A0=UCIDMGMT-L] of the messages is available.

{warn}Because of a bug in the handling of lazy session processing,{warn}
h2. [Information Accessible Only to the Work Group]