Networks ∙ Services ∙ People TNC 2016, Prague Alice Through the Looking Glass Science DMZ goes above the network 13 June

Slides:



Advertisements
Similar presentations
Innovation through participation Data Protection Code of Conduct (DP CoC) REFEDS Helsinki Mikael Linden, CSC – IT Center for Science
Advertisements

Federated Identity Management in New Zealand Sat Mandri Service Manager TNC15 REFEDs Meeting, 14 th June 2015.
Innovation through participation Interfederation through eduGAIN - steps and challenges eduGAIN interfederation service Federated Identity Systems.
AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
CLARIN Infrastructure Vision (and some real needs) Daan Broeder CLARIN EU/NL Max-Planck Institute for Psycholinguistics.
Updates Licia Florio, TERENA REFEDS Meeting 5 Sept 2012.
Networks ∙ Services ∙ People Mandeep Saini TF-MSP, Espoo, Finland Service Delivery and Adoption 10 th Sep 2015 Task Leader, GN4-1 SA7 T3.
Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.
European Life Sciences Infrastructure for Biological Information Life science community update for the 7 th Federated Identity Management.
Connect communicate collaborate GÉANT3 Services Connectivity and Monitoring Services by and for NRENs Ann Harding, SWITCH TNC 2010.
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.
Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.
Authentication and Authorisation for Research and Collaboration David Kelsey AARC AHM Milan And mechanisms NA3 Task 4 – Scalable.
Networks ∙ Services ∙ People Nicole Harris, GÉANT GN4 Project Update “SA5”, or Identity Stuff Internet2 Technology Exchange 2015.
Authentication and Authorisation for Research and Collaboration Mikael Linden AARC all hands Milan Authentication and Authorisation.
Authentication and Authorisation for Research and Collaboration Michał Jankowski, Maciej Brzeźniak AARC General Meeting, Milan.
Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.
Networks ∙ Services ∙ People Daniela Pöhn REFEDS EWTI, Vienna IdPs and Federations Service Aspects of Assurance SA5T1.
Networks ∙ Services ∙ People Bert van Pinxteren General Assembly, Porto, Portugal Transition to one GÉANT Annual Review June,
Innovation through participation EduGAIN policy (working draft) Status update REFEDs 30th May 2010
Understanding deployment issues on the Supply Chain Ann Harding, SWITCH, Nicole Harris, TERENA Cambridge July 2014.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
NREN Trust and Identity Strategy Ann Harding, SWITCH Cambridge July 2014.
AAI/Federated Identity Training Ann Harding, SWITCH Cambridge July 2014.
Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team
Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.
b2access.eudat.eu B2ACCESS The simple and secure authorisation and authentication platform of EUDAT This work is licensed under the Creative.
Networks ∙ Services ∙ People Nicole Harris UK federation meeting eduGAIN, REFEDS and the UK 23 June 2015 Project Development Officer GÉANT.
Trust and Identity Infrastructure Services Above the Network Ann Harding, SWITCH/GÉANT UbuntuNetConnect 2014.
Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,
Federated Identity Fundamentals Ann Harding, SWITCH Cambridge July 2014.
Networks ∙ Services ∙ People Ann Harding eduGAIN Town Hall eduGAIN in the GÉANT Project Activity Leader GÉANT Trust and Identity.
Networks ∙ Services ∙ People Ann Harding GÉANT Symposium, Vienna Users Session A3 Trust and Identity March GÉANT Activity Leader Trust.
Rhys Smith, Jisc Privacy and AIM: a tale of too much success?
Networks ∙ Services ∙ People Ann Harding + Marina Adomeit GÉANT Symposium 2016 What’s changed, what stays the same? Project future - services.
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting AARC and AARC2 Vienna, 1 st December.
Networks ∙ Services ∙ People Mandeep Saini TNC15, Porto, Portugal Virtual organisation Authorisation Management Practices in Research and.
Connect communicate collaborate Case Studies in Federated Identity Management for Research Communities Ann Harding, SWITCH/GN3plus Peter Gietz, DAASI International.
Networks ∙ Services ∙ People Andrea Biancini #TNC15, Porto, Portugal Implementing Grouper to federate user authorization Federated Authorization.
Networks ∙ Services ∙ People Sonja Filiposka, Yuri Demchenko, Tasos Karaliotas, Migiel de Vos, Damir Regvart TNC 2016 DISTRIBUTED CLOUD SERVICES.
Networks ∙ Services ∙ People Mark Johnston TNC15, Porto Plans in GEANT Innovation on the Production Network 15 th June 2015 Chief Network.
Open Collaboration Exchange Alexander Blanc, Niels van Dijk, Jocelyn Manderveld, Remco Poortinga - van Wijnen VAMP 2013, Espoo.
Networks ∙ Services ∙ People Licia Florio TNC, Lisbon Consuming identities across e- Infrastructures 16 June 2015 PDO GÈANT.
Authentication and Authorisation for Research and Collaboration Heiko Hütter, Martin Haase, Peter Gietz, David Groep AARC 3 rd.
Networks ∙ Services ∙ People Jean Marie THIA GN4-1 Symposium, Vienna A case study GÉANT AuthN / AuthZ 9 march 2016 Solutions Architect -
Authentication and Authorisation for Research and Collaboration Licia Florio AARC CORBEL Workshop The AARC Project Paris, 31 May.
Designing Identity Federation Policy, the right way Marina Vermezović, Academic Network of Serbia TNC2013 conference 4 May 2013.
Networks ∙ Services ∙ People Marina Adomeit TNC16 Conference, Prague Towards a platform for supporting collaboration GÉANT VOPaaS
How eduGAIN can help education: a real life story Sabita Behari Product Manager TNC14.
Authentication and Authorisation for Research and Collaboration Peter Solagna, Nicolas EGI AAI integration experiences AARC Project.
Authentication and Authorisation for Research and Collaboration David Kelsey AARC AHM Utrecht NA3 Task 4 – Scalable Policy Negotiation.
Authentication and Authorisation for Research and Collaboration TeSS Service Provider Training, Manchester Authentication and Authorisation.
Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.
Networks ∙ Services ∙ People Ann Harding Networkshop 44, Manchester Thinking globally, acting locally Trust and Identity in the GÉANT project.
Authentication and Authorisation for Research and Collaboration Taipei - Taiwan Mechanisms of Interfederation 13th March 2016 Alessandra.
Networks ∙ Services ∙ People Mandeep Saini AARC/CORBEL Workshop Collaborative Organisation Platform as a Service June 1, 2016, Paris Product.
Networks ∙ Services ∙ People Marina Adomeit JRA3 kick off SA2 in GN July, Zürich SA2 Activity leader.
Authentication and Authorisation for Research and Collaboration Licia Florio IGTF Meeting The AARC Project Amsterdam, 8 September.
Networks ∙ Services ∙ People Di4R Network. Services. People. GÉANT 28 th September, Krakow.
Services for EOSC management
Cross-sector and user-centric AAI
Entity Categories – Where Why are we?
eduTEAMS – Current status & Future Plans
Case Studies in Federated Identity Management for Research Communities
OIDC Federation for Infrastructures
Lightning Talk Helping our users be users
their business through new product lines
WP6 – EOSC integration J-F. Perrin (ILL) 15th Jan 2019
Network technology and service development in the new GÉANT Project
Presentation transcript:

Networks ∙ Services ∙ People TNC 2016, Prague Alice Through the Looking Glass Science DMZ goes above the network 13 June Ann Harding Activity Leader Trust & Identity Development SWITCH

Networks ∙ Services ∙ People Ann Harding TNC, Prague Alice Ann Through the Looking Glass Metadata Science DMZ goes above the network 13 June 2016 Activity Leader Trust & Identity Development

Networks ∙ Services ∙ People 3 Science requirements – The Network View Adapted from The Rationale of Optical Networking, Cees de Laat, Erik Radius, Steven Wallace (c2002) Class A) are the typical home users Class B) consists of the corporations, enterprises, Universities, virtual organisations and laboratories. Class C) are the really high end applications Science means big data

Networks ∙ Services ∙ People 4 Through the metadata vg69m+9RK0Cxnh4Knpz5ZU3UL4eON2eaRyN/KxyXw0=t03Jdm5COGvHynCneFxibsejTI5enpdj Y3eero0rTGz4Fu4gtQPY0FnA3joVwebQAxk6OX3H/DfY 1DogUyg69mOXD9SWarPvdfE9lAZa1BJJ+fcuzy2wfCmO3HXDI7du73673GNfkJl4OC1lZMd1Z/4N nfcx7a6p1F5Lb4N9xbl5TZwsBnK5TUdbU4B+jSfoGcl2IBp7K98UWXqoN90nd5UOxiQ7aTJaYZIT z4FCvf1UBFP0Pyv/p/u1iWArzhjF+55syOMfU6B906JMMutFiUW8VxSE0IzA9hydnioxN9ZoPm82 a3lkzrlMXH2RqDknDsfH84jp/bifXGFaPHIyhg== zyfj/lVsMVoGYj/FleUxJWWaxAD/EH1yDOG6cjz8h+MKOLynfDBvncGu+iygFldIoCytAHvfrC4P dYprml3jNNuxXwC8CgvRLLHpZzetbF5mOsCdR94T3JKLjSSDqIJkBxrB3NlGbUWgQcE3nT8KF+Nl EK6xzhrWqW96sadTjCjNAwUKUmbtR/YlDhfz+57GkXxoPLTB9E6GUJAU+j58kD6AOMKfdrFlFYDC jO8ToD3VqGBm1DkyrlPj223yiBkwOaBrfYw9tyrFQkjGBdB2UqJeoJLHiq2nLC+Ol6AUta035pjm ogt9M8+effuf6XWIFaJe2aiq3qDm3OglV591mw== AQAB MIIEJjCCAw6gAwIBAgISSWITCHaaiMetadataSig2015MA0GCSqGSIb3DQEBCwUAMEYxCzAJBgNV BAYTAkNIMQ8wDQYDVQQKEwZTV0lUQ0gxJjAkBgNVBAMTHVNXSVRDSGFhaSBNZXRhZGF0YSBTaWdu aW5nIENBMB4XDTE1MDcxNTA3MDAwMFoXDTE4MDcxNTA2NTk1OVowQjELMAkGA1UEBhMCQ0gxDzAN BgNVBAoTBlNXSVRDSDEiMCAGA1UEAxMZU1dJVENIYWFpIE1ldGFkYXRhIFNpZ25lcjCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAM8n4/5VbDFaBmI/xZXlMSVlmsQA/xB9cgzhunI8/Ifj Cji8p3wwb53BrvosoBZXSKAsrQB736wuD3WKa5pd4zTbsV8AvAoL0Syx6Wc3rWxeZjrAnUfeE9yS i40kg6iCZAcawdzZRm1FoEHBN50/ChfjZRCusc4a1qlverGnU4wozQMFClJm7Uf2JQ4X8/uexpF8 aDy0wfROhlCQFPo+fJA+gDjCn3axZRWAwozvE6A91ahgZtQ5Mq5T49tt8ogZMDmga32MPbcqxUJI xgXQdlKiXqCSx4qtpywvjpegFLWtN+aY5qILfTPPnn37n+l1iBWiXtmoqt6g5tzoJVefdZsCAwEA AaOCARAwggEMMA4GA1UdDwEB/wQEAwIHgDAdBgNVHQ4EFgQUNPJ4wplyT4usqy5df/

Networks ∙ Services ∙ People Class A) are the simple library/journal/learnin g applications Class B) consists of the campus ‘corporate’ infrastructure Class C) are the really complex trust applications for collaboration and e- Research Science means big collaboration 5 Science Requirements - the Trust and Identity View Complexity

Networks ∙ Services ∙ People Network Design Pattern Design pattern 1: Protect your elephant flows Design pattern 2: Unclog your data taps Design pattern 3: Build a well tuned end to end infrastructure Trust and Identity Design Pattern Design pattern 1: Enable your collaboration flows Design pattern 2: Unclog your policy taps Design pattern 3: Build a well trusted end to end infrastructure 6 Science DMZ – Design patterns (Network Design Pattern -

Networks ∙ Services ∙ People Design pattern 1: Enable your collaboration flows Export IdPs to eduGAIN Export eResearch SPs to eduGAIN Design pattern 2: Unclog your policy taps For hub and spoke – do you need the same policies for your C users as for your a and B? Can you be more flexible? For full mesh – do you need to leave everything to the edges? Can you use your resource registry/central tools to apply policy for e- Research more scalably? Pragmatic assurance Design pattern 3: Build a well trusted end to end infrastructure Use Research and Scholarship and GÉANT Code of Conduct Entity Categories to make trust scale beyond your federation Adopt SIRTFI incident response framework to build trust Adopt group and attribute management services e.g. VO Platform 7 Science DMZ, the Trust and Identity View

Networks ∙ Services ∙ People Thank you Networks ∙ Services ∙ People This work is part of a project that has received funding from the European Union’s Horizon 2020 research and innovation programme under Grant Agreement No (GN4-1).

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.