During the last months, we have been completing a series of significant actions to increase the resiliency and availability of our service. As part of this continuous improvement, we’re excited to share a recent quiet update now completed, which meaningfully improves the solidity of our infrastructure: our platform now runs on a highly available (HA) database layer.
New edu-ID Identity Model for OpenID Connect (RFC)
The future belongs to OpenID Connect. More and more services drift away from using SAML as authentication protocol since it is not actively developed anymore and lacks support for use cases like mobile or single-page applications or OAuth 2.0. As you probably know, the Switch edu-ID has already been providing support for OpenID Connect (or short OIDC) for several years. Services can already use OIDC in order to authenticate users with the edu-ID and get the required information about them to provide a good and seamless user experience, just like for SAML. However, you might also have noticed that the edu-ID OIDC support does not yet cover all capabilities which are covered by SAML.
Continue reading “New edu-ID Identity Model for OpenID Connect (RFC)”
edu-ID November Newsletter
Dear edu-ID friends,
We are pleased to present the November newsletter with a summary of our recent community event, updates on the handling of non-European mobile numbers, and information on registering incident reports.
edu-ID September Newsletter
Dear edu-ID Users and Service Operators,
We are happy to inform you about the following news regarding the Switch edu-ID service: Continue reading “edu-ID September Newsletter”
The new semester has started
In the past week, the fall semester 2025 started! Many institutions have welcomed new students and the rooms are again full of people, full of life. For those starting their studies, it is a time of change, where they develop new habits, possibly move into a new apartment, and most importantly start learning more deeply about their field of interest.
Load Testing the edu-ID IdP
On a Monday morning, at the start of the fall semester 2024, many students were unable to log into their edu-ID account. A nightmare for students, IT administrators – and also the edu-ID team who was working actively to fix the issue as soon as possible.
What was the cause of this incident? A retrospective analysis found that the issue was a missing index in a database table. Really, a missing index? Why did we not detect this earlier, even though this problematic table had been in use for several months without any problem? It turns out, we load tested the new MFA API when launching it, but it seems that it wasn’t with a sufficiently large and diverse dataset. Therefore, it was only at semester start that such a high load made the problem apparent.
August Newsletter for edu-ID Operators
Dear edu-ID operators
We would like to inform you about the following important news regarding the Switch edu-ID service: Continue reading “August Newsletter for edu-ID Operators”
edu-ID July Newsletter
Dear edu-ID friends
We are pleased to share some interesting news about Switch edu-ID. Continue reading “edu-ID July Newsletter”
New Discovery Service/WAYF
A year ago the edu-ID account management and login pages got a new look. Next is the Discovery Service, also known as WAYF (Where Are You From) service to wear some new colours and also be more user-friendly.
Two new identifier attributes: subject-id and pairwise-id
The new identifier attributes gain more and more traction in the SAML-based identity federations. Find out what issues they address, what characteristics they have and who can use them in which scenarios.
Continue reading “Two new identifier attributes: subject-id and pairwise-id”
Hacking for Good
In July this year the edu-ID account management was reimplemented almost from scratch. Not only did the design change but so did much of the technology behind it, including the programming framework. Because we take security and data privacy very seriously, we asked our colleagues from the Switch security team to do a preliminary penetration test before the launch. This first penetration test provided us with the confidence to release the new account management into the wild. But to be doubly sure, we decided to run also a second penetration test after launch with an external company. And so we did.
Enforcing multi-factor authentication for university members
Until now, either a service in the edu-ID federation could protect the login process with multi-factor authentication (MFA) or an edu-ID user herself. Now edu-ID also allows universities to define rules for all their users that enforce the use of MFA.
Continue reading “Enforcing multi-factor authentication for university members”
A new look for Switch edu-ID
It is our pleasure to announce a major innovation. We have completely revised the graphic design and user experience of the edu-ID account management. The login window also appears in the new design.
The Swiss E-ID, the European Union’s eID – and the link to Switch edu-ID and eduGAIN
The E-ID of Switzerland is currently being shaped and formed with interested parties contributing to this process on the community platform of the Swiss federal authorities. As research and education are border-less Switch took a stand to point out the importance of the E-ID to stay in line with international developments. Particularly relevant is the emerging eID of the EU and the Trust Services of EBSI (European Blockchain Services Infrastructure) as a potential trust pillar underpinning it.
But where does our identity solution Switch edu-ID together with its international extension eduGAIN of GÉANT fit into this picture, if at all? Continue reading “The Swiss E-ID, the European Union’s eID – and the link to Switch edu-ID and eduGAIN”
Trust & Identity Meeting 2024
We look forward to invite our Trust & Identity community again in 2024 to a vivid exchange on current topics.