Federated Identity Management for Research Communities: FIM4R PSI workshop objectives Bob Jones, CERN.

Slides:

Advertisements

Similar presentations

Innovation through participation Data Protection Code of Conduct (DP CoC) REFEDS Helsinki Mikael Linden, CSC – IT Center for Science

Advertisements

Federated Identity Management for Research Communities: FIM 4 R CSC, Helsinki 2 nd October 2013 Bob Jones, CERN.

Federated Identity Management for Researchers – A quick overview from GÉANT BoF TNC May 2014 Dublin.

Innovation through participation GÉANT Data Protection Code of Conduct (DP CoC) FIM for research collaboration workshop Mikael Linden,

JISC Metaleth Project Athens, Shibboleth and the University of Bristol 29 th January 2007.

Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.

WLCG Security TEG, risks and Identity Management David Kelsey GridPP28, Manchester 18 Apr 2012.

FIM-ig Federated Identity Management Interest Group.

Security Incident Response Trust Framework for Federated Identity (Sir-T-Fi) David Kelsey (STFC-RAL) REFEDS, Indianapolis 26 Oct 2014 and now abbreviated.

Ian Bird LHCC Referees’ meeting; CERN, 11 th June 2013 March 6, 2013

Identity Management for Research Collaborations: from Pilots to Production Bob Jones IT dept CERN.

Trust and Security for FIM (Sirtfi/SCI) David Kelsey (STFC-RAL) FIM4R at CERN 4 Feb 2015.

BoF: Federated Identity Management for Researchers David Kelsey (STFC-RAL) TNC2014, Dublin 20 May 2014.

Authentication and Authorization in a federated environment Jules Wolfrat (SARA)

AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.

Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.

Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.

Updates Licia Florio, TERENA REFEDS Meeting 5 Sept 2012.

Connect communicate collaborate GÉANT3plus Enabling Users Pilots Lukas Hämmerle Task Leader "Enabling Users"

Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.

European Life Sciences Infrastructure for Biological Information Life science community update for the 7 th Federated Identity Management.

Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI CF, FIM workshop 11 Apr 2013.

7 th FIM 4 R meeting April 2014 ESRIN Frascati.

EResearchers Requirements the IGTF model of interoperable global trust and with a view towards FIM4R AAI Workshop Presenter: David Groep, Nikhef.

INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.

Federated Identity Management for Research Collaborations Bob Jones, CERN Daan Broeder, Max-Planck Institute for Psycholinguistics David Kelsey, Particle.

Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.

Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.

Authentication and Authorisation for Research and Collaboration David Kelsey AARC AHM Milan And mechanisms NA3 Task 4 – Scalable.

Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.

Federated Identity Management for HEP David Kelsey STFC – RAL Nijmegen workshop 22 June 2012.

Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.

Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos Open Day Event: Towards the European Open.

Federated Identity Management for Scientific Collaborations The Common Vision David Kelsey (STFC) 3 Nov 2011.

Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team

Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.

Connect communicate collaborate Internet2 Global Summit 27 April 2015 Washington DCs User Community Driven Development in Trust and Identity Services Ann.

Networks ∙ Services ∙ People Nicole Harris UK federation meeting eduGAIN, REFEDS and the UK 23 June 2015 Project Development Officer GÉANT.

Federated Identity Management How do we proceed? Bob Jones, CERN.

Research Community Requirements Ann Harding, SWITCH Cambridge July 2014.

Networks ∙ Services ∙ People Ann Harding GÉANT Symposium, Vienna Users Session A3 Trust and Identity March GÉANT Activity Leader Trust.

Authentication and Authorisation for Research and Collaboration Taipei Taiwan Authentication and Authorisation for Research and.

Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting AARC and AARC2 Vienna, 1 st December.

Case Studies in Federated Identity Management for Research Communities Ann Harding, SWITCH/GN3plus Peter Gietz, DAASI International GmbH/DARIAH Tommi Nyro.

Connect communicate collaborate Case Studies in Federated Identity Management for Research Communities Ann Harding, SWITCH/GN3plus Peter Gietz, DAASI International.

David Groep Nikhef Amsterdam PDP & Grid AARC Authentication and Authorisation for Research and Collaboration an impression of the road ahead.

Networks ∙ Services ∙ People Licia Florio TNC, Lisbon Consuming identities across e- Infrastructures 16 June 2015 PDO GÈANT.

Authentication and Authorisation for Research and Collaboration Licia Florio AARC CORBEL Workshop The AARC Project Paris, 31 May.

Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos David Groep 9 th FIM4R Meeting The AARC Project.

Authentication and Authorisation for Research and Collaboration Peter Solagna, Nicolas EGI AAI integration experiences AARC Project.

Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.

CERN IT Department CH-1211 Genève 23 Switzerland Federated identity system for scientific collaborations Summary of user requirements session.

Authentication and Authorisation for Research and Collaboration Licia Florio IGTF Meeting The AARC Project Amsterdam, 8 September.

Research Community Requirements (FIM4R) David Kelsey (STFC-RAL) VAMP Workshop 6 Sep 2012.

Welcome to 11th FIM4R 11th Meeting, Montréal September 2017

Introduction to AAI Services

AARC Update What’s been happening in AARC which matters for GÉANT

User Community Driven Development in Trust and Identity

Case Studies in Federated Identity Management for Research Communities

CRISP WP16 F2F Meeting, RAL Sep 27

Federated Identity Management for Researchers (FIM4R)

EGI Security Policy Update

Federated Identity Management for Scientific Collaborations

The AARC Project Licia Florio (GÉANT) Christos Kanellopoulos (GRNET)

The AARC Project Licia Florio AARC Coordinator GÉANT

AAI For Researchers Licia Florio AARC Project Coordinator GÉANT DI4R

AARC Blueprint Architecture and Pilots

AAI Architectures – current and future

Björn Erik Abt :: Paul Scherrer Institut

FIM4R Requirements where GN3+ (SA5) is Active and Involved (9/2013)

Presentation transcript:

Federated Identity Management for Research Communities: FIM4R PSI workshop objectives Bob Jones, CERN

Fed Id Mgmt Workshops Previous Federated Identity Management workshops : – June 2011, CERN (High Energy Physics) – November 2011, RAL (Climate Science) – February 2012, Taipei (Asian input) – June 2012, Nijmegen (Social Sciences & Humanities) Bob Jones (CERN) – March 2013 Photon/Neutron facilities community hosting this workshop – Paul Scherrer Institute Villigen, Switzerland

Bob Jones (CERN) – March 2013 Authors: Daan Broeder, Bob Jones, David Kelsey, Philip Kershaw, Stefan Lüders, Andrew Lyall, Tommi Nyrönen, Romain Wartel, Heinz J Weyer

Prioritisation of requirements User friendliness (high) – Support for citizen scientists and researchers without formal association to research labs or univ Browser & non-browser federated access (high) Bridging communities (medium) – Bridging is a central issue with an efficient mapping of the respective attributes Multiple technologies with translators including dynamic issue of credentials (medium) Implementations based on open stds and sustainable with compatible licenses (high) Different Levels of Assurance with provenance (high) – Credentials need to include the provenance of the level under which it was issued Authorisation under community and/or facility control (high) Well defined semantically harmonised attributes (medium) Flexible and scalable IdP attribute release policy (medium) – Bi-lateral negotiations between all SPs and all IdPs is not a scalable solution Attributes must be able to cross national borders (high) – Data protection considerations must allow this to happen. Attribute aggregation for authorisation (medium) – Attributes need to be aggregated from different sources of authority including federated IdPs and community-based attribute authorities. Privacy and data protection addressed with community-wide individual ids (medium)

Working GEANT/Terena/NRENs Network community have used the FIM4R paper to define elements of the programme of work for the GEANT3+ project that was submitted to the EC in 2012 The EC will fund the G3+ project from April 2013 Terena & NRENs (REFEDS and eduGAIN groups) have produced a written reply to the FIM4R paper We will explore how to link this work to the pilot projects Bob Jones (CERN) – March 2013

Pilot projects The pilot projects being developed by the research communities have advanced – these developments will be presented Also some further examples will be presented The technology and service providers have also advanced and will present their findings Bob Jones (CERN) – March 2013

Formalising FIM4R: FIM4R activities recognised byESFRI cluster projects: – BioMedBridges, CRISP, DASISH, ENVRI – Explore what could be the relationship with structures such as the Research Data Alliance Bob Jones (CERN) – March 2013