Presentation is loading. Please wait.

Presentation is loading. Please wait.

Trust Framework for Multi-Domain Authorization Internet2 Spring Meeting Arlington April 25 th 2012 Leon Gommans:

Published byShawn Dylan Ferguson Modified over 8 years ago

Similar presentations

Presentation on theme: "Trust Framework for Multi-Domain Authorization Internet2 Spring Meeting Arlington April 25 th 2012 Leon Gommans:"— Presentation transcript:

1 Trust Framework for Multi-Domain Authorization Internet2 Spring Meeting Arlington April 25 th 2012 Leon Gommans: leon.gommans@uva.nlleon.gommans@uva.nl John Vollbrecht: jrv@umich.edujrv@umich.edu This work is funded by GigaPort3 / Surfnet / Air France - KLM Building and organising trust amongst a group of service providers and their users

2 Content - Introduction - Evolution AAA Authorization Framework - What is the problem? - What we learned from MasterCard - Service Provider Group concept - A “GLIF” lookalike as hypothetical example

3 Questions from the IRTF AAA Arch work. How to organise a service with multiple organisations? How to organise a service with multiple organisations? User ? Governance? Agreement? Trust? Org Group ? Agreement? Trust?

4 Why are the questions important? Suppose I want to set up a connection between UvA in Amsterdam to another University or Institute. Although possible, setting up connections to any place across the globe for a scientist is still hard (authority, knowledge, payment, etc.) Can this problem be solved? By my network provider on his own? – It will be hard, in particular when based on bi-lateral agreements, different technology standards, policies, fee structures, etc. By a network provider as member of a Service Provider Group? We believe it can be. What is a Service Provider Group? A Service Provider Group (SPG) is a organisation structured to provide a defined service that is only available if its members collaborate.

5 Imagine how a Network SPG could look The SPG appears to me as a worldwide connection service such that: 1.The service is provided to me by my local provider acting as SPG agent. 2.I can make connection to places outside my own provider 3.I trust any connection to work as agreed. 4.I understand the connection characteristics I get. 5.I know the SPG will monitor my connection. 6.I know who to talk to in case of questions or issues. 7.I have an agreed way to deal (financially, operationally) with connection failures.

6 What does joining a SPG mean for my Network Provider? 1.It allows it to make connections to places outside its own domain. 2.Expands usage by enabling connections by customers from other domains. 3.SPG standards ensure consistency of services between domains. 4.SPG policies define monitoring, debugging and auditing of multi-domain connections. 5.SPG regulations ensure fairness amongst providers: Resource treatment, value add, competition, risk, etc.

7 Why did we study MasterCard as SPG? eduroamSkyteamEGI.euMasterCard ServiceWiFi Internet Access Airport Priorities E-Science Grid Operation Payment & Processing Maturity2003200020101966 Documentationpublicprivatepublic Members36 Federations 15 Airline Partners 30 Countries 300 Data Centres 25.000+ 210 countries Risk InvolvedLowMedium?High Level studiedDetailedLow Detailed ComplexityLowMedium High

8 What does MasterCard do? connecting financial institutions, merchants and cardholders with payment processing services MasterCard allows its member financial institutions to serve merchants and cardholders with a card payment & processing service that is trusted worldwide.

9 The anatomy of the MC SPG Legislative Rooted Judicial Exe- cutive Exe- cutive En- force ment Ad mini- Str ation Ad mini- Str ation MasterCard Corporation (Directorate) Mem ber Banks MC Service Provider Group Organisational Level Perspective Organisational Distribution of Power Perspective National & International Law, Rules and Regulations National Law, Rules and Regulations

10 Distribution of Power Perspective Legislative Membership Service Licenses Risk Management Non-compliancy Fees Chargebacks Liability … Legislative Membership Service Licenses Risk Management Non-compliancy Fees Chargebacks Liability … Executive Enforcement Rules Licenses Messages Reports Markings AML … Enforcement Rules Licenses Messages Reports Markings AML … Membership Agreements Processes Monitoring Fee collection Appeals Auditing … Membership Agreements Processes Monitoring Fee collection Appeals Auditing … MasterCard Corporation (Directorate) Member Banks Judicial Arbitration Penalties Appeals … Judicial Arbitration Penalties Appeals … Admini stration Cardholder Agreement Merchant Agreement Disputes Reports Auditing … Cardholder Agreement Merchant Agreement Disputes Reports Auditing …

11 CC SPG Level Model

12 User MasterCard Why Users Trust MasterCard Standards, Rules, Policies and its Enforcement Emotional judgement Rational judgement Willingness to rely

13 Why members trust each other Member Bank Member Bank Member Bank Member Bank Member Bank Member Bank MasterCard Corporation Reputation Agreement MC Service Provider Group

14 Service Provider Group Characteristics A group of member organizations that act together to provide a service none could provide on its own To a customer the SPG appears as a single provider To members the SPG appears as a collaborative group with standards, rules and policies that are defined and enforced by the group SPG has “Directorate” with Judicial, Legislative and Executive power in and for SPG Customer signs SPG Service Agreement with member Member acts as agent for SPG

15 Three organizational levels – SPG and Customer – SPG and customer set up service agreement – SPG authorizes Service based on agreement and resource availability – SPG provides Service to consumer Organization levels provide framework that puts independent functions in separate levels

16 SPG concepts – Directorate provides trust exercising power in every layer Enterprise – Defines service and service agreements – Defines policies Authorization – Enforces policies – Assigns providers to service instance Operation – Monitors service instances – Supports customer

17 GLIF-like Connection Service SPG Service makes connections between users over multiplexed ports from user to SPG Providers are networks and exchanges whose connectivity allows them to make the requested connections Work on this kind of project is being done at GLIF, OGF NSI WG, GENI, Mantychore, OpenFlow and more

18 Connection SPG - Organization levels Enterprise – Defines connection characteristics – Makes/ enforces rules and policy – Responsible for actions of other levels Authorization – Authorizes connection requests – Assigns providers to requests – Provisions connection instances Operation – Controls physical equipment – Monitors and reports on each connection instance

19 GLIF-like Service Provider Group Actors Members – – Regional and national network providers – Exchanges [GOLEs] – Local or commercial networks – perhaps as associate members – Organizations that authorize users – not necessarily the same as members providing networks Customers/ Users – Groups, individuals, with a “service agreement” with SPG member – Professor Researchers or Student at School of Member – Networks using SPG to extend their service Directorate – Executive direction of SPG – Provider policy group – Operation Monitoring group

20 Connection Service SPG Directorate Enterprise Level Activities Directorate with Legislative, Judicial and Executive power – For MasterCard it is “the Corporation” for GLIF it is tbd Define membership requirements Specify common goals as well as resources and capabilities Define how users relate to members Funding, security requirements Establish funding for SPG capabilities Define Connection parameters and Service levels Monitor and enforce member-member rules Develop and maintain authorization and operation infrastructures and policies Set up and monitor all SPG infrastructure operations

21 Trust infrastructure and Connection Transaction Trust Setup - infrastructureDynamic connection Transaction

22 Authorizing GLIF-like Connections Customer requests a connection Directorate algorithm determines how to satisfy a connection request – Uses topology and policy information Authorization result Approved connection for user Provisioning for each participating provider agent Authorization depends on policy of participating actors

23 Authorization Transaction Customer requestor initiates the transaction Agents trust each other in level because they trust members Requestor is authenticated by “home” member Request is authorized by participating members [tree/ chain or combination may be used] Successful Authorization  “operation provisioning” request Transaction path is part of infrastructure setup by Enterprise level

24 Authorization Paths Basic Push Model Basic Pull Model Basic Agent Model Transaction Architecture Two levels and path between them Levels and path can be implemented independently Risk analysis needed of each level independently and then as a whole Possible to plug and play level infrastructures

25 Authorization Paths Risk analysis of paths is part of Trust of SPG Authorization and Provisioning varies – Inline (pull) vs out of band requests – Direct (agent) vs Ticket (push) – Security requirements Risk and Security analysis supports Trust of SPG Cost analysis is a financial performance not trust issue

26 Level 1 - Operation Operation agents control networks and exchanges Operation agents setup connections on direction from authz level Operation level monitors connection – Reports to customer and Directorate

27 Layer architecture in “Service Provider Organization” Enterprise Level initiates and maintains service creation infrastructure in Authorization and Operation levels – Basis of trust in other layers Authorization Level applies policy to a request – Policy of SPG and of individual members – Creates an “approved instance” that is given to Operation level Operation Level carries out approved instance – Monitors and reports on instances

28 SPG Conclusions Enterprise level needed establish basic trust relations between members Trust requires rules, policy, a Directorate [and funding for Directorate] Separating Authorization and Operation creates infrastructure that can be analyzed and trusted Standardized Inter-level transaction methods allow risk analysis for each method

29 Questions you might help with How does directorate concept fit GLIF-like model – Is it possible to combine for profit and not for profit organizations – What trust is needed what risks can be taken – What rules and policies will need to be in place – How does it compare to MC or EduRoam Is a ticket or token (push) model useful for connection service How does scheduling fit the three level model What is the difference between a user and a member in a the connection service Others?

Download ppt "Trust Framework for Multi-Domain Authorization Internet2 Spring Meeting Arlington April 25 th 2012 Leon Gommans:"

Similar presentations

Authentication Authorization Accounting and Auditing

Authentication Authorization Accounting and Auditing
Whos who in the IETF Zoo? Geoff Huston Executive Director, Internet Architecture Board.

Whos who in the IETF Zoo? Geoff Huston Executive Director, Internet Architecture Board.
© 2006 Open Grid Forum Network Services Interface Introduction to NSI Guy Roberts.

© 2006 Open Grid Forum Network Services Interface Introduction to NSI Guy Roberts.
NRL Security Architecture: A Web Services-Based Solution

NRL Security Architecture: A Web Services-Based Solution
Lawrence Berkeley National LaboratoryU.S. Department of Energy | Office of Science Network Service Interface (NSI) Inder Monga Co-chair, Network Services.

Lawrence Berkeley National LaboratoryU.S. Department of Energy | Office of Science Network Service Interface (NSI) Inder Monga Co-chair, Network Services.
International Conference on Small States and Economic Resilience 23-25 April 2007 Valetta, Malta Islands and Small States Institute Government intervention.

International Conference on Small States and Economic Resilience April 2007 Valetta, Malta Islands and Small States Institute Government intervention.
Multi-Domain Lightpath Authorization Architecture using Tokens By: Leon Gommans, Paola Grosso, Fred Wan, Cees de Laat, Marten Hoekstra, Yuri Demchenko,

Multi-Domain Lightpath Authorization Architecture using Tokens By: Leon Gommans, Paola Grosso, Fred Wan, Cees de Laat, Marten Hoekstra, Yuri Demchenko,
Your Technology Is Connected. Are You? Your technology doesn’t exist in a vacuum. Welcome to the networked and interconnected technology ecosystem where.

Your Technology Is Connected. Are You? Your technology doesn’t exist in a vacuum. Welcome to the networked and interconnected technology ecosystem where.
ETA UNIVERSITY MARCH 19, 2015 Deana Rich R ICH C ONSULTING, I NC. Edward A. Marshall A RNALL G OLDEN G REGORY LLP Payments 101: Overview of the Payments.

ETA UNIVERSITY MARCH 19, 2015 Deana Rich R ICH C ONSULTING, I NC. Edward A. Marshall A RNALL G OLDEN G REGORY LLP Payments 101: Overview of the Payments.
The judicial system in Albania The judicial power is exercised by the courts of first instance, the courts of appeal and the High Court. Courts may be.

The judicial system in Albania The judicial power is exercised by the courts of first instance, the courts of appeal and the High Court. Courts may be.
Authorization of a QoS path based on Generic AAA SC2002 Baltimore NOV 16-22 Bas van Oudenaarde Advanced Internet Research Group University of Amsterdam.

Authorization of a QoS path based on Generic AAA SC2002 Baltimore NOV Bas van Oudenaarde Advanced Internet Research Group University of Amsterdam.
Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.

Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.
Generic AAA model in Grids IRTF - AAAARCH meeting IETF 52 – Dec 14 th Salt Lake City Leon Gommans Advanced Internet Research Group.

Generic AAA model in Grids IRTF - AAAARCH meeting IETF 52 – Dec 14 th Salt Lake City Leon Gommans Advanced Internet Research Group.
T-110.5140 Network Application Frameworks and XML Service Federation 30.04.2007 Sasu Tarkoma.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
Generic AAA based provisioning Of Network Elements Status update EVL 9/10/03 Leon Gommans University of Amsterdam.

Generic AAA based provisioning Of Network Elements Status update EVL 9/10/03 Leon Gommans University of Amsterdam.
Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.

Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.
Spring 99 1 Lecture Notes on SE An internet trading framework: Introduction Consider a set of internet vendors that sell to internet clients airplane tickets,

Spring 99 1 Lecture Notes on SE An internet trading framework: Introduction Consider a set of internet vendors that sell to internet clients airplane tickets,
Emerging Latino Communities Initiative Webinar Series 2011 June 22, 2011 Presenter: Janet Hernandez, Capacity-Building Coordinator.

Emerging Latino Communities Initiative Webinar Series 2011 June 22, 2011 Presenter: Janet Hernandez, Capacity-Building Coordinator.
SWITCHaai Team Federated Identity Management.

SWITCHaai Team Federated Identity Management.
Information Sharing Puzzle: Next Steps Chris Rogers California Department of Justice April 28, 2005.

Information Sharing Puzzle: Next Steps Chris Rogers California Department of Justice April 28, 2005.

Similar presentations

Ads by Google