Speakers
Description
In this Birds of a Feather session, we invite participants interested in the security aspects of federated authentication and authorization. We will open the session with a brief introduction to the eduGAIN CSIRT and an overview of its role and capabilities.
To stimulate discussion, we will present several real-world incidents that the team has handled in recent years, along with the lessons we learnt. These cases span a range of challenges, including large‑scale misuse of compromised identities, problematic behavior of services weakening the overall security, and problems caused by insecure configurations. These cases also trigger a review of the eduGAIN security baseline, which represents the minimum capabilities that the relevant security teams, consisting of eduGAIN CSIRT and the federations security contacts, needs to meet.
The goal of the session is to exchange experiences, compare different approaches to incident handling in distributed environments, and identify common challenges across the federated ecosystem. We aim to discuss expectations and requirements for incident response in eduGAIN from the perspectives of all involved actors, i.e., service operators, identity providers, and individual federations.
Given the sensitive nature of the information to be shared, this session will be conducted as a closed meeting with mandatory prior registration. All information presented or discussed is strictly for the attending participants and the security community and must not be disclosed further (TLP:AMBER+STRICT).
What will the TNC audience take away from your talk?
The audience will learn how incident response is organized in eduGAIN and will have the opportunity to discuss additional expectations and requirements.
| Are you a first time speaker at TNC? | No |
|---|
