painless-security / trust-router

Moonshot Trust Router
0 stars 0 forks source link

Eventually this document may go away or hold README information for the trust router. Right now, it serves as a to-do list for work that needs to be done on the trust router code before various releases:

TO-DO FOR BETA RELEASE (May 2013)

DONE - GSS connection API (based on MIT example code) DONE - DH implementation and test code (based on openssl) DONE - TID server and client implementation (API & example code) DONE - Add DH server-side code to TIDS DONE - JSON encode/decode of TID requests/responses (jansson) DONE - Eliminate bulk of info/debug messages (mostly from GSS code) DONE - Generate a real random number for DH (in common/tr_dh.c) DONE - Read TR portal/manual config from files at start-up (non-dynamic) DONE - Look-up code to find correct AAA Server for a Comm/Realm DONE - TR TID request & response handlers DONE - TIDS integration with freeradius server DONE - TIDC integration with freeradius proxy DONE - Map a COI to an APC in TR (incl config & lookup code) DONE - Resolve TBDs for error handling and deallocation

TO-DO FOR FULL PILOT VERSION (by July 1, 2013)

DONE Check rp_realm COI membership in TR DONE Check idp_realm APC membership in TR DONE Check gss_name on incoming TID request in TR (in TIDS, too?)

TO-DO FOR PRODUCTION VERSION (expected in August 2013)