Welcome to CAMP Shibboleth Ken Klingenstein, Director, Internet2 Middleware Initiative.

Slides:



Advertisements
Similar presentations
Dr Ken Klingenstein Director, Internet2 Middleware and Security Emerging Infrastructure for Collaboration: Next Generation Plumbing.
Advertisements

Internet2 Middleware and the NSF Middleware Initiative: Meeting Milestones Ken Klingenstein Director, Internet2 Middleware Initiative, Co-PI, NSF Middleware.
04 June 2002, TERENA, Limerick MACE: Directories at Work Keith Hazelton, Senior IT Architect, Univ. of Wisconsin-Madison Chair, MACE-Dir Working Group.
Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.
CAMP Med Welcome to CAMP Med: Identity and Access Management for Medical Applications Workshop Morgan Passiment AAMC Ann West NMI-EDIT EDUCAUSE/Internet2.
Copyright Ann West This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
Welcome to CAMP! Ken Klingenstein, Director, Internet2 Middleware Initiative.
Welcome Acknowledgments and thanks Security Acronymny: then and now What’s working What’s proving hard.
Welcome to CAMP Leveraging Campus Authentication Across Boundaries Workshop Ann West NMI-EDIT Outreach Michigan Tech/EDUCAUSE/Internet2.
InCommon Policy Conference April Uses  In order to encourage and facilitate legal music programs, a number of universities have contracted with.
The Rise of Collaborative Tools Ken Klingenstein Project Director, Internet2 Middleware Initiative Chief Technologist, University of Colorado at Boulder.
Welcome to CAMP Identity Management Integration Workshop Ann West NMI-EDIT EDUCAUSE/Internet2.
NMI-EDIT Outreach: The first five years. Topics for Today  NMI-EDIT background  Activities  Outcomes  Resources.
EDUCAUSE PKI Working Group Where Are We and Where are We Going.
3 September 2015 Federated R US. Agenda  Background on Internet2 Middleware and NSF Middleware Initiative  The body of work  Directories  Shibboleth.
Authority, Virtual Organizations and Diagnostics: Building and Managing Complexity Ken Klingenstein Director, Internet2 Middleware and Security.
Middleware Planning and Deployment 201: Implementation Roadmap Keith Hazelton, University of Wisconsin/Internet2 Renee Woodten Frost, Internet2/University.
EDUCAUSE Midwest Regional March 24, 2003 Copyright Ann West This work is the intellectual property of the author. Permission is granted for this.
Welcome to CAMP: Charting Your Authentication Roadmap Mike Grady Senior Technology Architect and Strategist Campus Information Technologies and Educational.
Middleware: Addressing the Top IT Issues on Campus Renee Woodten Frost Internet2 and University of Michigan CUMREC May 13, 2003.
Shibboleth Update Michael Gettes Principal Technologist Georgetown University Ken Klingenstein Director Interne2 Middleware Initiative.
NSF Middleware Initiative Renee Woodten Frost Assistant Director, Middleware Initiatives Internet2 NSF Middleware Initiative.
Shibboleth A Federated Approach to Authentication and Authorization Fed/Ed PKI Meeting June 16, 2004.
Internet2 Middleware Initiative. Discussion Outline  What is Middleware why is it important why is it hard  What are the major components of middleware.
Policy and Technology in Enterprise Directory and Authentication Services No Room to Swing a Cat Michael Gettes, MACE, Duke University Keith Hazelton,
FEDERATIONS Clair Goldsmith, Ph.D., Associate Vice Chancellor and CIO September 27,
Shibboleth Update Advanced CAMP 7/31/02 RL “Bob” Morgan, Washington Steven Carmody, Brown Scott Cantor, Ohio State Marlena Erdos, IBM/Tivoli Michael Gettes,
Shibboleth Authenticate Locally, Act Globally A Penn State Case Study Renee’ Shuey May 4, 2004 ITS – Emerging Technologies.
Middleware CAMP June Welcome Welcome to the Camp, I guess you all know why we're here. Tommy, by Pete Townsend, The Who We're not gonna take it.
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 1 NMI R3 Enterprise Directory Components.
The Golden Age of Plywood Ken Klingenstein Project Director, Internet2 Middleware Initiative Chief Technologist, University of Colorado at Boulder.
1 Protection and Security: Shibboleth. 2 Outline What is the problem Shibboleth is trying to solve? What are the key concepts? How does the Shibboleth.
NSF Middleware Initiative: Enterprise and Desktop Integration Technologies Consortium Renee Woodten Frost Assistant Director Internet2 Middleware Initiative.
Going Forward: Year 2 NMI and Higher Ed Middleware.
GRID Overview Internet2 Member Meeting Spring 2003 Sandra Redman Information Technology and Systems Center and Information Technology Research Center National.
Middleware Camp NMI (NSF Middleware Initiative) Program Director Alan Blatecky Advanced Networking Infrastructure and Research.
February 1, 2002 Internet2 Middleware Initiative and MACE RL "Bob" Morgan, University of Washington.
Digital Diversity: Multi- institutional Access to Distributed Course Resources Barry Ribbeck UT HSC - Houston.
NSF Middleware Initiative: What’s It All About? Renee Woodten Frost Assistant Director Internet2 Middleware Initiative.
University of Washington Identity and Access Management IEEAF – RENU Network Design Workshop Seattle - 29 Nov 2007 Lori Stevens, Director, Distributed.
05 October 2001 Directories: The Next Stage Keith Hazelton, Senior IT Architect University of Wisconsin-Madison Keith Hazelton, Senior IT Architect University.
Middleware CAMP Feb Welcome Welcome to the Camp, I guess you all know why we're here. Tommy, by Pete Townsend, The Who We're not gonna take it Never.
A Word from the Sponsors NMI-EDIT comprises Internet2 and EDUCAUSE –NSF Middleware Initiative (NMI)-Enterprise and Desktop Integration Technologies Consortium.
NMI-EDIT AND Small College Security & ID Management Issues Discussion John Bruggeman, Director of Information Systems, Hebrew Union College-Jewish Institute.
Welcome to Base CAMP: Enterprise Directory Deployment Ken Klingenstein, Director, Internet2 Middleware Initiative Copyright Ken Klingenstein This.
NSF Middleware Initiative Purpose To design, develop, deploy and support a set of reusable, expandable set of middleware functions and services that benefit.
Shibboleth Update January, 2001 Ken Klingenstein, Project Director, Internet2 Middleware Initiative Chief Technologist, University of Colorado at Boulder.
October 2, 2001 Middleware: Pieces and Processes RL "Bob" Morgan, University of Washington.
Shibboleth Authenticate Locally, Act Globally A Penn State Case Study.
NSF Middleware Initiative and Enterprise Middleware: What Can It Do for My Campus? Renee Woodten Frost Internet2/University of Michigan.
Internet2 Spring Meeting NSF Middleware Initiative Purpose To design, develop, deploy and support a set of reusable, expandable set of middleware functions.
Internet2 Spring Meeting, Washington DC April NMI R2 Directory Services Components Overview Art Vandenberg Director, Advanced Campus Services Information.
Welcome to CAMP Directory Workshop Ken Klingenstein, Internet2 and University of Colorado-Boulder.
CAMP Shibboleth: Next Steps Steve Carmody, Brown University Ann West, Educause/Internet2/Michigan Tech.
Interfederation: From Demo to Eternity RL “Bob” Morgan, University of Washington and Internet2 Internet2 Member Meeting, Chicago December, 2006.
01 October 2001 “...By Any Other Name…”. Consequences and Truths (Ken) The Pieces and the Processes (Bob) Directories (Keith) Shibboleth and SAML (Scott)
NSF Middleware Initiative and Enterprise Middleware: What Can It Do for My Campus? Mark Luker, EDUCAUSE Copyright Mark Luker, This work is the intellectual.
NSF Middleware Initiative: What’s It All About?
Middleware: Addressing the Top IT Issues on Campus
Vidmid Session Overview
Shibboleth Project at GSU
Current Activities in Middleware
Middleware: Addressing the Top IT Issues on Campus
Virtual organization support services:
Virtual organization support services:
Michael R Gettes, Duke University On behalf of the shib project team
Open Source Web Initial Sign-On Packages
A History of the Next Five Years: (the rise of indoor plumbing)
Renee Woodten Frost Assistant Director Internet2 Middleware Initiative
Shibboleth and Federations
Presentation transcript:

Welcome to CAMP Shibboleth Ken Klingenstein, Director, Internet2 Middleware Initiative

CAMP Shibboleth - June 28-30, Overview Workshop Context A word from our sponsors A word about NMI-EDIT A flashback to NSFnet A brief history of Shib Outcomes

CAMP Shibboleth - June 28-30, CAMP Themes: Shibboleth and Federations Shibboleth software deployment for both institutional resource providers and users Case studies across higher education of how institutions are using the software Emerging policy and campus requirements for participating in federations Future direction of Shibboleth architecture and international federation work Exploration of the impact of this new environment on campus constituents

CAMP Shibboleth - June 28-30, CAMP Schedule and Tracks Monday – Exploration of case studies Tuesday – Details of implementation – 3 Tracks –Management track – federation and policy issues –Technical track – intersection of federations and the software and advanced technical issues –Install Fest – hands-on assistance with installing the Shibboleth software

CAMP Shibboleth - June 28-30, CAMP Schedule and Tracks A Special Note on our First Install Fest –Focused on installing Shibboleth Identity Provider (Origin) Software, not the web server components it uses –Must have the web server software setup on a remote machine before the session starts –Session is full and we apologize for the space limitations!! –Thanks for your overwhelming interest and enthusiasm

CAMP Shibboleth - June 28-30, CAMP Schedule and Tracks Wednesday –Special Topics and Demos –The Future –Free Consulting

CAMP Shibboleth - June 28-30, Have Questions? Ann West

CAMP Shibboleth - June 28-30, A Word From Our Sponsors National Science Foundation’s Middleware Initiative (NMI) NMI – Enterprise Desktop Integration Technologies (EDIT) Consortium Internet2 – primary on grant and research EDUCAUSE – primary on outreach Southeastern Universities Research Association (SURA) – primary on NMI Integration Testbed

CAMP Shibboleth - June 28-30, NMI-EDIT: Goals Create a ubiquitous common, persistent and robust core middleware infrastructure for the R&E community Provide tools and services (e.g. registries, bridge PKI components, schemas, root directories) to support inter- institutional and inter-realm collaborations

CAMP Shibboleth - June 28-30, NMI-EDIT: Core Middleware Scope Identity and Identifiers – namespaces, identifier crosswalks, real world levels of assurance Authentication – campus technologies and policies, inter-realm interoperability via PKI, Kerberos Directories – enterprise directory services architectures and tools, standard object classes, inter- realm and registry services Authorization – permissions and access controls, delegation, privacy management Integration Activities – common management tools, use of virtual, federated and hierarchical organizations

CAMP Shibboleth - June 28-30, A Map of Middleware Land

CAMP Shibboleth - June 28-30, NMI-EDIT: Strategic Direction Overall technical direction set by MACE –Middleware Architecture Committee for Education (MACE) –Bob Morgan, University of Washington, Chair –Campus IT architects and representatives from Grids and International Communities Directions set via –NSF and NMI management team –Internet2 Network Planning and Policy Advisory Council –PKI and Directory Technical Advisory Boards –Internet2 members

CAMP Shibboleth - June 28-30, MACE (Middleware Architecture Committee for Education) Purpose - to provide advice, create experiments, foster standards, etc. on key technical issues for core middleware within higher education Membership – RL “Bob” Morgan (UW) Chair, Tom Barton (Chicago), Scott Cantor (Ohio State), Steven Carmody (Brown), Michael Gettes (Duke), Keith Hazelton (Wisconsin), Paul Hill (MIT), Jim Jokl (Virginia), Mark Poepping (CMU), Bruce Vincent (Stanford), David Wasley (California), Von Welch (Grid) European members - Brian Gilmore (Edinburgh), Ton Verschuren (Netherlands), Diego Lopez (Spain) Creates working groups in major areas, including directories, interrealm access control, PKI, video, P2P, etc. Works via conference calls, s, occasional serendipitous in- person meetings...

CAMP Shibboleth - June 28-30, Middleware Axioms Work the core areas Focus on support for collaboration Use federated administration as the lever; have the enterprise broker most services (authentication, authorization, resource discovery, etc.) in inter-realm interactions Develop a consistent directory infrastructure within R&E Provide security while not degrading privacy. Foster interrealm trust fabrics: federations and virtual organizations Leverage campus expertise and build rough consensus Support for heterogeneity and open standards Influence the marketplace; develop where necessary

CAMP Shibboleth - June 28-30, Sample NMI-EDIT Process: Directories MACE-DIR Working Group –Prioritize needed materials – Establish subgroups revision of basic documents (LDAP Recipe) new best practices in groups and metadirectories standards development for eduPerson 1.5 and eduOrg 1.0 –Work in enhanced IETF approach: scenarios, requirements, architectures, recommended standards stages –Announce deliverables; start input and conference call review/feedback processes; reconvene work groups as needed Process schedule and requirements –4-6 months for completion, depending on product –6-8 primary contributors –15-50 schools participating

CAMP Shibboleth - June 28-30, NMI-EDIT: Participants Higher Ed – leadership institutions, with 50 more campuses represented as members of working groups; readership around 2000 institutions Corporate – (IBM/Metamerge, Microsoft, SUN, Liberty Alliance, DST, MitreTek, Radvision, Polycom, EBSCO, Elsevier, OCLC, Baltimore Technologies) Government – NSF, NIST, NIH, Federal CIO Council International –Terena, JISC, REDIRIS, AARnet, SWITCH

CAMP Shibboleth - June 28-30, A flashback to NSFnet Keep it simple and solve real problems Make a marketplace Stay low for as long as you can… Be prepared to travel

CAMP Shibboleth - June 28-30, Brief history of Shib The model The development process –The fateful bottle of wine… –The early vision –Refining the architecture and working with IBM –The many miracles

CAMP Shibboleth - June 28-30, Unified field theory of Trust Bridged, global hierarchies of identification-oriented, often government based trust – laws, identity tokens, etc. –Passports, drivers licenses –Future is typically PKI oriented Federated enterprise-based; leverages one’s security domain; often role-based –Enterprise does authentication and attributes –Federations of enterprises exchange assertions (identity and attributes) Peer to peer trust; ad hoc, small locus personal trust –A large part of our non-networked lives –New technology approaches to bring this into the electronic world. –Distinguishing P2P apps arch from P2P trust Virtual organizations cross-stitch across one of the above

CAMP Shibboleth - June 28-30, The Model: Enterprises and Federation Given the strong collaborations within the academic community, there is an urgent need to create inter-realm tools, so Build consistent campus and enterprise middleware infrastructure deployments, with outward facing objectclasses, service points, etc. and then Federate those enterprise deployments, using the outward facing campus infrastructure, with interrealm attribute transports, trust services, etc. and then Leverage that federation to enable a variety of applications from network authentication to instant messaging, from video to web services, and then, going forward Create tools and templates that support the management and collaboration of virtual organizations by building on the federated campus infrastructures.

CAMP Shibboleth - June 28-30, Federated administration OTOT OTOT TT A CM CM A VO T Campus 1 Campus 2 Federation

CAMP Shibboleth - June 28-30, The development process The fateful bottle of wine… The early vision Refining the architecture and working with IBM The many miracles

CAMP Shibboleth - June 28-30, The Many Miracles A core group dreamed it… Then Scott came along Then Walter came along Then Mark and David and Derek and so many others came along…

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.