2022 Internet2 Technology Exchange | Dec. 5-9, Denver, Colo.

Identity and Access Management Sessions

Get Set for Three Days of Robust IAM Sessions

A robust program of talks is scheduled for Tuesday and Wednesday, Dec. 6-7, with the lively, Advance CAMP content – proposed and selected on-site! – scheduled for Thursday, Dec. 8, and half of Friday, Dec. 9. Be sure to set your alarms because this track kicks off every day at 8 a.m.!

Sunday, Dec. 4

Time Session Abstract
10 a.m.-5:30 p.m.    Working Meeting: FIM4R & TAGPMA FIM4R community (Federated Identity Management for Research), meeting jointly with TAGPMA (The Americas Grid Policy Management Authority)

Monday, Dec. 5

Time Session Abstract
4:30-6 p.m.    Working Meeting: Feedback Corner Join us after your Monday tutorial or co-located events! This evening “social” gathering provides an opportunity to meet the folks working on all the newest developments being implemented on the Internet2 network. Many of the subject matter experts (SMEs) working on these new efforts (i.e., Cross-Connects, Routing Security, and Trusted Access topics, among others) will be present to answer questions, provide brief updates, and collect your ideas to share with their teams.

Tuesday, Dec. 6

Time Session Speaker Institution
7-8:30 a.m.    Breakfast
7-8 a.m.    Newcomer Breakfast Abstract: If this is your first time attending TechEX (or you just feel like it is!), join us for breakfast and conversation. We will reserve tables in the breakfast area and members of the program committee, Internet2 staff, and interested community members will be on hand to greet you, give you some “tips” on how to get the most out of the meeting, and introduce you to others in your primary area of interest. We’d like everyone who attends TechEX to have a few friendly faces in their corner!
8-8:50 a.m.    Combined Opening Plenary Talk
9-9:50 a.m.    Wolverine Vs. Grouper Liam Hoekenga University of Michigan
9-9:50 a.m.    The Web is for Everyone, Sort Of Heather Flanagan Spherical Cow Consulting
9:50-10:20 a.m.    Break
10:20-11:10 a.m.    Shibboleth Project Phil Smart Jisc
10:20-11:10 a.m.    eduroam in K-12 Schools
11:20 a.m.
-12:10 p.m.   
midPoint Considerations: A Panel Talk Jim Lookabaugh Provision IAM
11:20 a.m.
-12:10 p.m.   
Conan the Librarian Terry Smith

Ken Klingenstein
Australian Access Federation Ltd.

11:20 a.m.
-12:10 p.m.           
Globus: To Compute and Beyond! Vas Vasiliadis University of Chicago
12:10 p.m.-1:40 p.m.    Lunch and Working Meeting: Grouper BOF Abstract: Some big changes are coming for the Grouper Container. Additional architectures are going to be supported and the base OS is moving to RockyLinux. Federated SAML authentication will be built into the Grouper process, no need for shibd. Come grab some lunch and hear about these exciting changes coming in the Grouper 2.7 release.
12:30-1:30 p.m. Lunch and Working Meeting: MSCC Lunch and Learn
12:10-1:40 p.m.    Working Meeting: Trust & Assurance (CTAB and friends) Abstract: What actions can increase mutual trust, assurance, and interoperability among federation participants, Community Trust & Assurance Board inviting discussion including REFEDS Assurance, research, and other service providers needing enhanced trust & assurance for federated access.
1:40-2:30 p.m.    Advancing midPoint with IGA Principles Slavek Licehammer Evolveum
1:40-2:30 p.m.    Migrating to Token-Based AuthN and AuthZ Derek Simmel Pittsburgh Supercomputing Center
2:40-3:30 p.m.    Adopting Zero Trust in Higher Ed Andrew Morgan
Jason Peak
Dominic Sanchez
Oregon State University
Oregon State University
University of Chicago
2:40-3:30 p.m.    GIdILab: Experimentation Lab for Trust
Michelle Silva Wangham

RNP-Brazilian National Research and Education Network
3:30-4 p.m.    Break
4-4:50 p.m.    HECVAT 2022 Including IAM Updates Nick Lewis Internet2
4-4:50 p.m.    Campus Authentication Gateway

Wednesday, Dec. 7

Time Session Speaker Institution
7-8:30 a.m.    Breakfast
8-8:50 a.m.    Agile IAM – How an IGA Project Led To…
8-8:50 a.m.    Trust & Identity Outlook 2022 and Beyond

Increasing Trust and Assurance in InCommon
Chris Phillips

David Bantz

University of Alaska
9-9:50 a.m.    The Provisioning Best Practices Cookbook Keith Wessel University of Illinois
9-9:50 a.m.    SSI: What’s Going On in Europe Niels van Dijk SURF
9:50-10:20 a.m.    Break
10:20-11:10 a.m.    IAM Strategy-Insights Behind The Process Charise Arrowood Unicon
10:20 a.m.-12:10 p.m.        Dynamic MFA: Privacy IDEA-SATOSA-COmanage Laura Paglione Spherical Cow Group
11:20-12:10 a.m.    Fixing the Problems of Attribute Release Ken Klingenstein Internet2
11:20 a.m.-12:10 p.m.                Assurance in Action! Matthew Economou, Kyle Lewis, Jule Ziegler Leibniz Supercomputing Centre
12:10 p.m.-1:40 p.m.    Lunch and Working Meeting: Cross Topic: I2I: Creating a Mentorship Program Abstract: This is the regular Internet2 Inclusivity Initiative lunch session for our annual events. The topic for this session is going to focus on how to create a mentorship program and will include a panel of presenters.
12:10-1:25 p.m.    Lunch and Working Meeting: InCommon Technical Advisory Committee Abstract: This is a closed face-to-face meeting of the InCommon Technical Advisory Committee.
12:30-1:30 p.m.    Lunch and Working Meetings: eduroam BOF Abstract: Come join the eduroam team and your fellow eduroam Admins to discuss the latest developments to the service, share best practices, and noodle on the future of the service.
12:30-1:30 p.m.    Lunch and Working Meetings: COmanage Open Office Hours LIVE Abstract: Each month, COmanage hosts Open Office Hours. This is a loosely-structured, open forum for questions, discussion, and peer sharing among those using or interested in COmanage Registry and/or Match. A short conversation starter (Topic Aperitif) kicks off each session to help get the discussion started. December’s Topic Aperitif: COmanage Registry 5.0.0 (PE)
COmanage Registry is undergoing a significant update with version 5.0.0. With a substantial upgrade to the underlying development framework, CakePHP, we are taking the opportunity to review current Registry uses and adjust the code and features to better align with how the system is being used today. For this month’s “topic aperitif” we will discuss the expected changes, share some exciting functionality and interface updates, and talk about timing. We look forward to your questions, comments, and suggestions, both about this update and any other COmanage topics. This session will replace the December virtual event, so it also will be offered to online participants.
1:40-2:30 p.m.    The InCommon Catalysts for the Community Charise Arrowood Unicon
1:40-2:30 p.m.    Cyber Security Exercising with Sirtfi Kyle Lewis Research Data and Communications Technologies (RDCT)
2:40-3:30 p.m.    IdP MFA in the Brazilian Federation

Open Source MFA for the Campus
Emerson Ribeiro de Mello, Michelle Silva Wangham

Steve Hillman/Graham Ballantyne
RNP – Brazilian National Research and Education Network

Simon Fraser University
2:40-3:30 p.m.    The Rise of Middlethings Albert Wu Internet2
3:30-4 p.m.    Break
4-4:50 p.m.    The Cloud Architecture of the US eduroam Mark Donnelly Painless Security
4-4:50 p.m.    Lightning Talks:

  1. Improving UX of Account Linking Process
  2. “Single Sign-On” for AWS
  3. Grouper Authorization for Shib IdP UI
  4. Federated Identity Management Cookbook

Peter Balcirak


Jonathan Johnson

Erik Scott
Josh Drake




OmniSOC at Indiana University
4-4:50 p.m.   

Making it Sticky: Offering Shared Services via InCommon Glue

Ann West
Albert Wu
Jim Basney

University of Illinois at Urbana-Champaign
5-6 p.m.   

Working Meeting: Program Committee Debrief

Abstract: This gathering of chairs and reviewers for the 2022 Technology Exchange focuses on the process (what worked/what didn’t) and content (what we should look for in 2023). Please join your fellow community members who have participated in the review and selection process to help us improve the experience in 2023!

Thursday, Dec. 8

Time Session Abstract
7-8 a.m.    Breakfast and Working Meeting: Let’s Make ShibUI What You Need It to Be Abstract: Join the team as we collaborate on ShibUI requirements that meet the needs of Higher Education! We’ll start with a streamlined demo to share the status and then open it up to a planning and working session based on what YOU want to see done. This is your time to talk about how to evolve and build on the current ShibUI foundation.
8-9 a.m.    ACAMP Start (Full Group)
9-9:50 a.m.        ACAMP 1 (5 concurrent topics TBD)
9:50-10:20 a.m.    Break
10:20-11:10 a.m.    ACAMP 2 (5 concurrent topics TBD)
11:20 a.m.-12:10 p.m.    ACAMP 3 (5 concurrent topics TBD)
12:10-1:40 p.m.    Lunch and Working Meeting: Industry Member Lunch Abstract: In this invitation-only session, community and Industry Members along with Internet2 leadership will gather to share strategic updates and opportunities for collaboration toward the advancement of networking, cloud, and security/identity in the research and education community. The lunch will include a strategic update by Internet2 executives, lightning talks from industry members featuring relevant updates and engagement potential, and the opportunity for participants to socialize and make connections.
12:30-1:30 p.m. Lunch and Working Meeting: CACTI Working Meeting Abstract: The Internet2 Community Architecture Committee for Trust and Identity (CACTI) will hold an open working meeting at Internet2 Tech Exchange, for the purposes of discussing CACTI’s work during the 2022 calendar year, and getting community feedback on that work and our intended future focus areas.
1:40-2:30 p.m.    ACAMP 4 (5 concurrent topics TBD)
2:40-3:30 p.m.    ACAMP 5 (5 concurrent topics TBD)
3:30-4 p.m.    Break
4-4:50 p.m.    ACAMP 6 (5 concurrent topics TBD)

Friday, Dec. 9

Sessions begin at 8 a.m. and feature small group discussions on multiple topics until 10:50 a.m.

Time Session
TBD Breakfast on Your Own
8:30-9 a.m. ACAMP Agenda Setting
9:10-10 a.m. ACAMP 7
10-10:10 a.m. Break
10:10-11 a.m. ACAMP 8
11-11:10 a.m. Transition
11-11:50 a.m. Camp Closing