JSTOR as a Shibboleth Target

Slides:

Advertisements

Similar presentations

MCB/Emerald. Name of service: Emerald License in place: country-wide for all university libraries, not-for-profit research and learning institutes within.

Advertisements

E-resources Collection Management Anna Grigson E-resources Manager.

Cancer Research UK Library The e-journals experience April 28 th 2010.

Metasearching: The Problem, Promise, Principles, Possibilities & Perils Roy Tennant California Digital Library.

Ted Koppel The Library Corporation

Archiving Electronic Journals. Aims and objectives To get an overview of the challenges of archiving electronic journals To consider who can take responsibility.

OpenAthens LA 2.0 implementation Matt Durant. Outline Bath Spa University Why single sign-on? –Improving the user experience The project / decision making.

Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.

ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.

1. The Digital Library Challenge The Hybrid Library Today’s information resources collections are “hybrid” Combinations of - paper and digital format.

The Future Ain’t What It Used To Be UKSG Conference 2004 and Exhibition Manchester, UK 29 March 2004.

The 3-Legged Stool: How JSTOR Balances the Needs of Scholars, Librarians, and Publishers in Maintaining a Sustainable Not-For- Profit Enterprise ACRL/NY.

TeraGrid Science Gateway AAAA Model: Implementation and Lessons Learned Jim Basney NCSA University of Illinois Von Welch Independent.

Wireless LANs A Case Study of Baylor University’s Wireless Network Copyright Bob Hartland 2002 This work is the intellectual property of the author. Permission.

June 30, 2004CAMP Shibboleth Implementation Workshop Shibboleth Mockup - ARP GUI Management by Steven Carmody Brown University proxy Walter Hoehn.

Release 4 of the COUNTER Code of Practice for e- Resources and new usage- based measures of impact Peter Shepherd COUNTER May 2014.

Federated Searching Pre-Conference Workshop - The federated searching cookbook Qin Zhu HP Labs Research Library February 18, 2007.

Michael Krot, Data Manager and David Yakimischak, CTO

E-journals: opportunities and challenges Bharati Banerjee.

Credential Provider Operational Practices Statement CAMP Shibboleth June 29, 2004 David Wasley.

Shibboleth: Improving Access for Library Users InCommon Library/Shibboleth Project Holly Eggleston, UC San Diego.

Bruce Heterick, Director of Library Relationswww.jstor.org CONCERT 2004 Taipei, Taiwan November 11, 2004.

Identity Management in Education. Welcome Scott Johnson, NetProf, Inc. Creator of OmnID Identity Management for Education

Single Sign-On Offerings Dustin MacIver EBSCO Publishing 6/4/2011.

Practical Advice Morag Greig Advocacy William J Nixon Service Development DAEDALUS Workshop – 27 June 2005.

Digital Assessment Training Trainer: Name

Technology Choices for the JSTOR Online Archive Presented by Chang Feng Department of Computer Engineering and Computer Science, University of Missouri-Columbia,

Shibboleth in Finnish Higher Education Organisations E-ICOLC 2005 Poznan, Poland.

Digitising Special Queen’s - the JSTOR Project Preservation Teaching Research 1.

1 Institutional Identifiers and the Journal Supply Chain Efficiency Improvement Pilot Helen Henderson Ringgold Ltd UKSG Conference Briefing Session Warwick,

MAT U M A T U Middleware Assisted Take-Up Service For JISC Funded Early Adopters.

Shibboleth Access Management System Walter Hoehn & David Millman, Columbia University.

Licensing Evolution ICOLC October 2006 – Rome Lorraine Estelle.

JSTOR Open Proxy Session ALA Midwinter January 26, 2003.

Holly Eggleston, UCSD Shibboleth and Library Resources InCommon Library/Shibboleth Project.

Full Disclosure How Authors and Readers Really Feel about ETDs Gail McMillan Virginia Polytechnic Institute and State University 8th International Symposium.

Easy Remote Access to Any Database: A New OPLIN Service Don Yarman OPLIN Stakeholders’ Meeting October 28, 2005.

| 1 Open Access Advancing Text and Data Mining Libraries & Publishers working together to support Researchers What is Text Mining?

New Developments in Access Management: Setting the Scene Alan Robiette JISC Development Group JISC-CNI Conference, June 2002.

Towards a Unified Authentication, Authorisation and Accounting Infrastructure Patrick Kirk Chief Technical Officer (YHGfL) Lifelong Learning Infrastructure.

Holly Eggleston, UCSD Beyond the IP Address: Shibboleth and Electronic Resources InCommon Library/Shibboleth Project.

Maximising user experience with IOP Publishing Yann Amouroux Regional Manager, IOP Publishing Direct line:

Distributed Registries The Challenge Jon Phipps * Diane Hillmann The NSDL Registry.

Certificate-based Authentication to JSTOR Spencer W. Thomas Dec 1, 2001.

Shibboleth for Middle Schools James Burger -

A Shibboleth Target David Yakimischak Chief Technology Officer.

1 Identities and Federation: The Next IT Wave (The Canadian Access Federation) Rick Bunt President The Canadian University Council of CIOs (CUCCIO)

Using JSTOR May What is JSTOR?JSTOR 2.JSTOR demonstration −Searching JSTOR −Format of the journal content −Linking to content on JSTOR 3.Help.

Building Preservation Environments with Data Grid Technology Reagan W. Moore Presenter: Praveen Namburi.

Lecture 9 Page 1 CS 236 Online Firewalls What is a firewall? A machine to protect a network from malicious external attacks Typically a machine that sits.

Searching for sources: Creating a bank of information.

King’s College London Pre-Sessional Programme Searching for sources: Creating a bank of information.

Databases vs the Internet

Contents Software components All users in one location:

Using Open Access to Increase Personal Internet Presence

Using JSTOR May 2016.

Laura Morse & Amira Aaron ELUNA Steering Committee

Peter Shepherd COUNTER March 2012

Authentication and Access:

Using JSTOR November 2013.

IP Filtering is Obsolete Where do we go from here?

GALILEO Approach and implementation

Christy Shorey Southern Miss

Standards For Collection Management ALCTS Webinar – October 9, 2014

Federated Digital Rights Management

Advances in Digital Rights Management

Supporting Institutions Towards a Shibbolized Infrastructure

Indian Journals & Electronic Publishing: Convergence of Trade and Need

Shibboleth 2.0 IdP Training: Introduction

WP6 – EOSC integration J-F. Perrin (ILL) 15th Jan 2019

Presentation transcript:

JSTOR as a Shibboleth Target David Yakimischak davidyak@jstor.org

Agenda JSTOR Overview Auth/Auth Past IP Addresses JSTOR needed a solution Motivation to change Some ideas to accelerate change Discussion

JSTOR Mission JSTOR is a not-for-profit organization with a mission to help the scholarly community take advantage of the advances in information technology. This includes: (1) building a reliable and comprehensive archive of core scholarly journals, and (2) dramatically improve access to this scholarly material In pursuing its mission, JSTOR takes a system-wide perspective, seeking benefits for libraries, publishers and scholars

JSTOR Today 2,105 participating libraries 264 participating publishers 419 journals online 15,342,964 pages scanned (and counting!) Access is at least 10x greater than paper (major benefits are full-text searching and access from outside of the physical library)

JSTOR Monthly Usage Meaningful Accesses

Auth/Auth Past Authentication Scheme Concerns IP Address Identifies machine, not user; Not secure (at all) Username/Password Management nightmare; Users dislike them Athens Too unique (U.K.); Too centralized X.509 Too complex; Browser-based

90%+ of Auth is IP Addresses It identifies the machine, not the user Problems when user is off-campus (proxies) Problems with NAT, DHCP, firewalls Proxies (especially open) are a problem But it is simple and it works Each resource maintains its own database

JSTOR needed a solution Shibboleth appeared to have the right characteristics Implementation was easy; it worked Fortunately we had previously separated authentication and authorization Pilots are working very well

Identity Metadata Currently we accept the eduPersonAffiliation attribute and map that to what we call a ‘site’ Some problems with mapping when one eduPersonAffiliation maps to more then one JSTOR site Have not yet experimented with entitlements Federations are helpful but we don’t need a lot of them

Motivation to change It’s either got to be better or cheaper (or both) Ability to enforce current licensing agreements and support new models Cost-effectiveness from this and Lower cost of support (e.g. IP databases) Universal standardization

Some ideas to accelerate change A resource provider might issue a challenge to the community to stop using IP address authentication Lower access fees? How about a charge for using IP addresses, or a charge to make changes? Point solutions: portals, metasearching, remote access Username/passwords can become a Shibboleth origin at JSTOR Same for IP address authentication Central IP address registry as a migration mechanism to Shibboleth

Discussion