Snctfi is the ‘Scalable Negotiator for a Community Trust Framework in Federated Infrastructures’.
Building on the structures of the Security for Collaboration among Infrastructures (SCI) framework, Snctfi proposes a policy framework to assess the ‘quality’ of service provider and identity provider (SP-IdP) proxies.
By addressing the structure of the security policies that bind services ‘hiding’ behind the SP-IdP proxy, Scntfi allows comparison between proxies, assigning trust marks for meeting requirements. It also allows a scalable way to negotiate and filter based on such policies. It eases authentication and attribute release by research and education federations as well as service providers (by easier enrolment in federations and because R&E identity providers may be more willing to release attributes if the proxy can convincingly assert DPCoCo and R&S), but also aids assessment by generic e-infrastructure providers that know the RI proxy meets their trust requirements.