Presenter’s Name InCommon Approximately 80 members and growing steadily More than two million “users” Most of the major research institutions (MIT joining.

Slides:

Advertisements

Similar presentations

The Basics of Federated Identity. Overview of Federated Identity and Grids Workshop Session 1 - for all Basics and GridShib Session 2 – more for developers.

Advertisements

The Art of Federations. Topics Federations of what… Federated identity versus federations Federations in other sectors – business, gov, ad hoc R&E Federations.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

Implementing Shibboleth-based Virtual Organisations and VO Federations using IAMSuite (including AAF update) James Dalziel & Alan Lin Professor of Learning.

Drive-By Dialogues. Presenter’s Name Topics The Long Strange Trip of I2 – NLR Merger A Brief Comment on Optical Networking Middleware Developments Security.

Internet Scale Identity, Collaboration and Higher Education.

Fed-Ed Dec 08: Updates on Federations Dr. Ken Klingenstein, Senior Director, Middleware and Security, Internet2 Technologist, University of Colorado at.

Agenda Project beginnings and funding. Purpose of the federation. Federation members. Federation protocols. Special features in our federation. Pilot.

Federated Identity for Scientific Collaborations: Policy Issues Jim Basney 2 nd Workshop on Federated Identity Systems for Scientific.

InCommon and Federated Identity Management 1

National Center for Supercomputing Applications University of Illinois at Urbana-Champaign InCommon and TeraGrid Campus Champions Jim Basney

Welcome Acknowledgments and thanks Security Acronymny: then and now What’s working What’s proving hard.

Widely Distributed Access Management Tom Barton University of Chicago.

InCommon Policy Conference April Uses  In order to encourage and facilitate legal music programs, a number of universities have contracted with.

New CyberInfrastructure for Collaboration between Higher Ed and NIH.

Welcome to CAMP Identity Management Integration Workshop Ann West NMI-EDIT EDUCAUSE/Internet2.

Stitching It All Together. Discussion Topics Peering and confederation Privacy principles Working with other sectors Virtual Organizations (VO's) Moving.

To identity federation and beyond! Josh Howlett JANET(UK) HEAnet 2008.

Intro to Identity for Developers Tom Barton, U Chicago Scott Cantor, Ohio State Patrick Michaud, U Washington.

Stuff Ken Klingenstein. Stuff sack InCommon Stuff Infocard, Open Id, etc… Federation soup Cormack slides on EU (and US) privacy International.

The InCommon Federation The U.S. Access and Identity Management Federation

Accelerating Events in Internet Identity and Privacy Dr. Ken Klingenstein, Senior Director, Middleware and Security, Internet2 Technologist, University.

Open Science Grid For CI-Days Internet2: Fall Member Meeting, 2007 John McGee – OSG Engagement Manager Renaissance Computing Institute.

BfB: Supporting Collaboration with Infrastructure.

External Identity and Authorization in GENI. Topics Federated identity and virtual organizations ABAC Creating and transporting attributes.

Gee, I could have had a VO: Cloud- based COmanage Chris Hubing and Jim Leous.

CI Days: Planning Your Campus Cyberinfrastructure Strategy Russ Hobby, Internet2 Internet2 Member Meeting 9 October 2007.

Internet2 – InCommon and Box Marla Meehl Colorado CIO 11/1/11.

Federated Identity and the International Research Community Dr Ken Klingenstein Director, Internet2 Middleware and Security.

Campus middleware in the service of Science Keith Hazelton Internet2 Middleware Architecture Committee for Education NSF Internet2 Day October 19, 2006.

Federated Identity: What It Brings to Open Government Dr Ken Klingenstein Director, Internet2 Middleware and Security.

VO and Internet2 Middleware. Presenter’s Name Topics Motivations for Internet2 Middleware work Federated identity and InCommon Other IdM Groups, privileges,

What is Cyberinfrastructure? Russ Hobby, Internet2 Clemson University CI Days 20 May 2008.

NSF Middleware Initiative Renee Woodten Frost Assistant Director, Middleware Initiatives Internet2 NSF Middleware Initiative.

Social Identity Working Group Steve Carmody. Agenda Intro to Using Social Accounts Status and Recent News –Current UT Pilot –Current InCommon Pilot with.

Federated Access to US CyberInfrastructure Jim Basney CILogon This material is based upon work supported by the National Science.

Collaborative Platforms. Collaborations and Virtual Organizations IdM is a critical dimension of collaboration, crossing many applications.

COmanage and InCommon: Present and Future Activities and Interactions Heather Flanagan, COmanage Project Coordinator, Internet2.

Identity Management in Open Science Grid Identity Management in Open Science Grid Challenges, Needs, and Future Directions Mine Altunay OSG Security Officer.

Integrated Institutional Identity Infrastructure: Implications and Impacts RL “Bob” Morgan University of Washington Internet2 Member Meeting, May 2005.

Virtual organizations: Team Science, Team Shakespeare.

Taking Care of Our Core Business: Managing Collaborations Dr. Ken Klingenstein, Senior Director, Internet2 Middleware and Security.

Scared Straight… if you want to go outside… Authenticate Locally, Act Globally.

Shibboleth Update Eleventh Federal & Higher Education PKI Coordination Meeting (Fed/Ed Thursday, June 16, 2005.

Cyberinfrastructure What is it? Russ Hobby Internet2 Joint Techs, 18 July 2007.

Federated Identity Graduates Nate Klingenstein Internet2 APAN 27 高雄台湾, March 3, 2009.

Middleware Futures Internet2 Member Meeting Arlington VA, April 2006 RL “Bob” Morgan, University of Washington and Internet2.

Cyberinfrastructure Overview Russ Hobby, Internet2 ECSU CI Days 4 January 2008.

Internet2 and Cyberinfrastructure Russ Hobby Program Manager,

Welcome to Base CAMP: Enterprise Directory Deployment Ken Klingenstein, Director, Internet2 Middleware Initiative Copyright Ken Klingenstein This.

University of Washington Collaboration: Identity and Access Management Lori Stevens University of Washington October 2007.

Federated Identity in the Global Landscape. Presenter’s Name Topics Federated identity basics International deployments and issues National, local and.

InCommon® for Collaboration Institute for Computer Policy and Law May 2005 Renee Shuey Penn State Andrea Beesing Cornell David Wasley Internet 2.

InCommon Federation: Federating Relationships. Topics Administration Library Research Student Services Personal and Collaborative Applications Federal.

1 Identities and Federation: The Next IT Wave (The Canadian Access Federation) Rick Bunt President The Canadian University Council of CIOs (CUCCIO)

Leveraging Campus Authentication to Access the TeraGrid Scott Lathrop, Argonne National Lab Tom Barton, U Chicago.

SMXL: Tailoring Technology to Collaboration. SMXL FAQ Is SMXL a new web scripting language? No, it is the art of tailoring IdM and access.

Fermilab supports several authentication mechanisms for user and computer authentication. This talk will cover our authentication systems, design considerations,

Collaboration and Federated Identity Two powerful forces being leveraged – the rise of federated identity – the bloom in collaboration tools, most particularly.

Federated Identity Management at Virginia Tech

LIGO Identity and Access Management

Shibboleth Roadmap

John O’Keefe Director of Academic Technology & Network Services

InCommon and Federated Identity Update

The Future of Indoor Plumbing

New CyberInfrastructure for Collaboration between Higher Ed and NIH

Fed-Ed Dec 08: Updates on Federations

Context, Gaps and Challenges

Guests and Collaborators

Virtual organizations: Team Science, Team Shakespeare

Presentation transcript:

Presenter’s Name InCommon Approximately 80 members and growing steadily More than two million “users” Most of the major research institutions (MIT joining soon) New types of members Non usual suspects – Lafayette, NITLE, Univ of Mary Washington, etc. National Institute of Health Student service providers Energy Labs MS, Apple Steering Committee chaired by Clair Goldsmith of Univ of Texas; Technical Committee chaired by Renee Shuey of Penn State

Presenter’s Name Uses Access controlled wikis Access to academic content, such as Elsevier Access to popular content, such as Cdigix Access to Microsoft Access to services, such as student travel agencies, testing services, Access to Grid computational resources, portal providers, recruitment services, etc (Trust base for dynamic circuit authorization/accounting) (Google Apps for Education)

Presenter’s Name InCommon Impacts of federation are real Dreamspark - Microsoft delivery of developer kits, source code, etc to students over 50% of all download traffic from Microsoft was federation- enabled one week after announcement. {Federation + persistent, opaque identifier + attributes with consent} addresses international privacy requirements. InCommon Silver, a new profile is now being deployed to serve higher assurance applications Federated Sharepoint, federated wikis are proving to be killer apps….

Presenter’s Name Federation Soup Workshop to held early June Bringing together all manners of federation to figure out federation relationships InCommon, JISC, state federations, library federations, university system federations, grid federations, etc. Topics include alignment of policies, technologies, attributes, metadata, etc. Approaches include peering, nested, leveraged, and a whole lot of ad hoc Outputs may include best practices, multi-homing, etc.

Presenter’s Name Capabilities of federated identity Real-time delivery of identity and attributes Supports role-based access controls Providing privacy and enhanced security Integrates with collaboration management platforms that are being adopted by virtual organizations

Presenter’s Name Real time access controls Delivery of attributes to control points Initially via web browsers and now via web services and a variety of native api’s Rich controls at policy control points ISOC “Identity, Trust and the Internet” will apply identity and trust to a growing suite of Internet RFC’s.

Presenter’s Name Collaboration and Federated Identity Two powerful forces being leveraged the rise of federated identity the bloom in collaboration tools, most particularly in the Web 2.0 space but including file shares, list procs, etc Collaboration management platforms provide identity services to “well-behaved collaboration applications” Results in user and collaboration centric identity, not tool-based identity

Presenter’s Name Comanage A collaboration management platform, supported in part by a NSF OCI grant, being developed by the Internet2 community, with Stanford as a lead institution Open source, open protocol Uses Shibboleth, Grouper, and Signet Parallels activities in the UK and Australia

Presenter’s Name Comanageable applications Already done Sympa, Federated wikis, Asterisk (open-source IP audioconferencing), Dim-Dim (open-source web meeting), Bedeworks (federated open-source calendar) Immediate targets Rich access controlled wikis Web-based file shares, IM, Google Apps for Education Domain science resources Instruments Grids

Federated Wiki Domain Science Grid Domain Science Instrument University AUniversity B Laboratory X Collaboration Management Platform Collaboration Tools/ Resources Application Attributes Home Org & Id Providers/ Sources of Authority Attribute Ecosystem Flows Attribute/Resource Info Data Store Collaboration Management Platform (CMP) and the Attribute Ecosystem Sources of Authority C o Authorization – Group Info Authorization – Privilege Info Authentication People Picker Other Functions manage File Sharing Calendar Phone/ Video Conference List Manager

Presenter’s Name Possibilities and next steps Virtual organizations adopting federated identity and collaboration management platforms LIGO – (and GEO and VIRGO) Ocean Observing Initiative - ( Providing audit and security in a federated environment Cutovers are more difficult than new VO Integrating domain science tools Cyberinfrastructure, e.g. Teragrid, OSG, integrating, providing collaboration management platform service centers Integrating research administration into the mix