Presentation is loading. Please wait.

Presentation is loading. Please wait.

Www.jstor.org Certificate-based Authentication to JSTOR Spencer W. Thomas Dec 1, 2001.

Published byJuliana Perkins Modified over 8 years ago

Similar presentations

Presentation on theme: "Www.jstor.org Certificate-based Authentication to JSTOR Spencer W. Thomas Dec 1, 2001."— Presentation transcript:

1 www.jstor.org Certificate-based Authentication to JSTOR Spencer W. Thomas Dec 1, 2001

2 What is JSTOR? A digital archive of academic journals. Our constituents are –Scholars –Libraries –Publishers Our mission is to –Improve access –Provide comprehensive and reliable archive –Preserve content –Reduce library costs –Help publishers and societies make transition to electronic publishing

3 Who has access to JSTOR? Individuals in the scholarly community have access to JSTOR through their affiliation with: –Academic and Research Institutions “faculty, students, staff and people physically present on campus” –Publisher Individual Access Programs

4 Authentication versus Authorization Cleanly separate (expensive) authentication from (cheap) authorization. Authentication = “who you are” Authorization = “what you can do” Authentication informs authorization. Authenticate once, authorize each request.

5 Current Authentication to JSTOR Users’ organizational affiliations (“site”) determine their access rights IP-based Scripted access –Remote access, publisher-mediated access Username/password –Individuals (maintained by publisher) –Sites w/o stable or distinguishable IP

6 Authorization to JSTOR Authentication produces “ticket” Ticket is user’s authorization to use JSTOR –Ticket stored as “cookie” or in URL –Ticket defines access rights –Ticket has defined lifetime

7 Certificates: Another Authentication Option Goal: provide a useful authentication option When IP-based access is impractical Mobile users Authentication can be transparent Certificate authentication happens upon entry to JSTOR, rest of JSTOR session is unchanged

8 JSTOR Certificate Pilot Implementation Object: get experience with cert-based auth Limited testing -- no “real users” yet Certificate Issuer maps to “site” Certs to be issued only to authorized users Supports “DLF” LDAP query protocol No support for revocation (yet) Available at https://www.jstor.org/logon/remote

9 The Future of Authentication Not going to get easier. Certificates provide some hope –Mobile users –Reduce IP database maintenance –Potentially greater accountability

10 References http://www.jstor.org/about/ –Terms & conditions, privacy policy, mission, etc. http://www.jstor.org/about/authentication.html –Discussion of JSTOR authentication options (certificates section is generic at this point) http://www.diglib.org/architectures/digcert.htm –“DLF” query protocol for cert authentication.

Download ppt "Www.jstor.org Certificate-based Authentication to JSTOR Spencer W. Thomas Dec 1, 2001."

Similar presentations

Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.

Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.
Ted Koppel The Library Corporation

Ted Koppel The Library Corporation
Authorisation Models for National Scale Services Alan Robiette Joint Information Systems Committee

Authorisation Models for National Scale Services Alan Robiette Joint Information Systems Committee
Digital Certificate Operation in a Complex Environment Matthew J. Dovey Oxford University Computing Services.

Digital Certificate Operation in a Complex Environment Matthew J. Dovey Oxford University Computing Services.
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.

Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
MyProxy: A Multi-Purpose Grid Authentication Service

MyProxy: A Multi-Purpose Grid Authentication Service
Universities Rethink Publishing Sarah E. Thomas Cornell University Library October 20, 2006 Forum on Improving Access to Publicly Funded Research: Policy.

Universities Rethink Publishing Sarah E. Thomas Cornell University Library October 20, 2006 Forum on Improving Access to Publicly Funded Research: Policy.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
CREN-Mellon conference, December 1, 2001 University of Texas PKI Status.

CREN-Mellon conference, December 1, 2001 University of Texas PKI Status.
JSTOR What to do with the print? On behalf of ULSA University Libraries of South Australia.

JSTOR What to do with the print? On behalf of ULSA University Libraries of South Australia.
The 3-Legged Stool: How JSTOR Balances the Needs of Scholars, Librarians, and Publishers in Maintaining a Sustainable Not-For- Profit Enterprise ACRL/NY.

The 3-Legged Stool: How JSTOR Balances the Needs of Scholars, Librarians, and Publishers in Maintaining a Sustainable Not-For- Profit Enterprise ACRL/NY.
Preservation of e-journals at the Koninklijke Bibliotheek Hilde van Wijngaarden Digital Preservation Officer Koninklijke Bibliotheek/ National Library.

Preservation of e-journals at the Koninklijke Bibliotheek Hilde van Wijngaarden Digital Preservation Officer Koninklijke Bibliotheek/ National Library.
CNI Fall 1998 Access Management Requirements and Approaches Joan Gargano California Digital Library

CNI Fall 1998 Access Management Requirements and Approaches Joan Gargano California Digital Library
Open Proxy Servers Kevin Guthrie ALA, January 2003.

Open Proxy Servers Kevin Guthrie ALA, January 2003.
Introduction to Implementing an Institutional Repository Delivered to Technical Services Staff Dr. John Archer Library University of Regina September 21,

Introduction to Implementing an Institutional Repository Delivered to Technical Services Staff Dr. John Archer Library University of Regina September 21,
Faculty Participation in Open Archives: A Discussion John Schumacher SUNY System Administration Office of Library and Information Services.

Faculty Participation in Open Archives: A Discussion John Schumacher SUNY System Administration Office of Library and Information Services.
Graduate Catalog Automation & Publication Project Graduate Catalog Automation & Publication Project.

Graduate Catalog Automation & Publication Project Graduate Catalog Automation & Publication Project.
Michael Krot, Data Manager and David Yakimischak, CTO

Michael Krot, Data Manager and David Yakimischak, CTO

Similar presentations

Ads by Google