Use Internet2 SiteID

Already have an Internet2 SiteID?
Sign in here.

Internet2 SiteID


Federation Interoperability Deployment Profile Moves to Kantara for Standardization

Apr 02, 2019, by Nicholas Roy
Tags: InCommon, Recent Posts, Trust & Identity

For over two years, the InCommon Deployment Profile Working Group has been working on an extensive overhaul of the SAML v2.0 Interoperability Deployment Profile, aka "SAML2int." 

That work has been completed within the working group, and now moves to the Kantara Initiative Federation Interoperability Working Group for final tweaks and a set of votes to become a Kantara cross-sector standard.

"We've needed something like this for a very long time. I'm thankful for the creativity and input from the InCommon and REFEDS communities that went into this work."

Keith Wessell, University of Illinois Urbana-Champaign

“The revised SAML2int is a game changer for SAML federations,” according to Working Group Chair Keith Wessel of the University of Illinois Urbana-Champaign. “For years we’ve had little to point deployers to, vendors in particular, when asked for deployment standards. This work establishes firm requirements which, if followed, will make the jobs of IdP and SP operators much easier and more streamlined. 

“We’ve needed something like this for a very long time. I’m thankful for the creativity and input from the InCommon and REFEDS communities that went into this work. And I’m extremely grateful for the working group members and their persistence while wading through some very tough decisions and getting the job done. My hope, once accepted by Kantara, is that federations around the world will leverage this profile to improve their own landscapes, and deployers far beyond the research and education community will benefit from finally having well-defined standards.”

This profile is intended to help deployers of SAML federating software understand the necessary configuration that will allow for the best compatibility with InCommon and other multilateral SAML federations. This profile builds on the earlier work of the Kantara SAML v2.0 Implementation Profile for Federation Interoperability, which provides an effective playbook for authors and deployers of SAML software hoping to integrate with InCommon and other similar federations. This profile was created by another InCommon working group, led by Walter Hoehn of the University of Memphis. 

Over time, open-source and commercial SAML implementations can use these documents to better meet the needs of users within a number of sectors, including research and education and governmental agencies.

The final report of the Deployment Profile Working Group has been approved by InCommon’s Technical Advisory Committee, and is available for public review on the InCommon wiki.