BfB: Supporting Collaboration with Infrastructure.

Slides:



Advertisements
Similar presentations
Connected Health Framework
Advertisements

NATIONAL AERONAUTICS AND SPACE ADMINISTRATION 1 NASA Earth Science Data Systems (ESDS) Software Reuse Working Group CEOS WIGSS-22 Annapolis, MD September.
ASCR Data Science Centers Infrastructure Demonstration S. Canon, N. Desai, M. Ernst, K. Kleese-Van Dam, G. Shipman, B. Tierney.
The FI-WARE Project – Base Platform for Future Service Infrastructures OCTOBER 2011 Presentation at proposers day.
Drive-By Dialogues. Presenter’s Name Topics The Long Strange Trip of I2 – NLR Merger A Brief Comment on Optical Networking Middleware Developments Security.
A Middleware Unified Field Theory Identity Management / Directories Privileges / Groups Single Sign-On / Federation Enterprise Integration from network.
December 19, 2006 Solving Web Single Sign-on with Standards and Open Source Solutions Trey Drake AssetWorld 2007 Albuquerque, New Mexico November 2007.
May Archiving PAWN: A Policy-Driven Software Environment for Implementing Producer- Archive Interactions in Support of Long Term Digital.
Thee-Framework for Education & Research The e-Framework for Education & Research an Overview TEN Competence, Jan 2007 Bill Olivier,
Realising the Potential of Service Oriented Architecture Kris Horrocks Connected Systems Division Microsoft.
TUESDAY 24 APR 2012 COLLABORATION IS HAPPENING: UPDATES FROM THE FIELD AND BEYOND HEATHER FLANAGAN INTERNET2 HAROLD TEUNISSEN SURFNET.
Widely Distributed Access Management Tom Barton University of Chicago.
Presenter’s Name InCommon Approximately 80 members and growing steadily More than two million “users” Most of the major research institutions (MIT joining.
Optimizing Business Operations Business Priorities Presentation.
Intro to Identity for Developers Tom Barton, U Chicago Scott Cantor, Ohio State Patrick Michaud, U Washington.
AAF Middleware update February Presented by Terry Smith Technical Manager and Heath Marks Manager.
IPlant Collaborative Tools and Services Workshop iPlant Collaborative Tools and Services Workshop Collaborating with iPlant.
External Identity and Authorization in GENI. Topics Federated identity and virtual organizations ABAC Creating and transporting attributes.
11-July-2011, SURFnet Heather Flanagan, COmanage Project Coordinator Benn Oshrin, COmanage Developer Scott Koranda, U. Wisconsin – Milwaukee and LIGO.
Gee, I could have had a VO: Cloud- based COmanage Chris Hubing and Jim Leous.
Web 2.0: Concepts and Applications 6 Linking Data.
10/20/05 LIGO Scientific Collaboration 1 LIGO Data Grid: Making it Go Scott Koranda University of Wisconsin-Milwaukee.
VO Identity, Attributes, and Infrastructure: Some Basics.
INTEGRATION WITH OTHER IDM SOLUTIONS Remember… The primary goal of KIM was to build a service- oriented abstraction layer for Identity and Access Management.
Federated Identity and the International Research Community Dr Ken Klingenstein Director, Internet2 Middleware and Security.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
IPlant Collaborative Tools and Services Workshop iPlant Collaborative Tools and Services Workshop Collaborating with iPlant.
VO and Internet2 Middleware. Presenter’s Name Topics Motivations for Internet2 Middleware work Federated identity and InCommon Other IdM Groups, privileges,
IPlant Collaborative Tools and Services Workshop iPlant Collaborative Tools and Services Workshop Collaborating with iPlant.
UCLA Enterprise Directory Identity Management Infrastructure UC Enrollment Service Technical Conference October 16, 2007 Ying Ma
The Future of the iPlant Cyberinfrastructure: Coming Attractions.
Social Identity Working Group Steve Carmody. Agenda Intro to Using Social Accounts Status and Recent News –Current UT Pilot –Current InCommon Pilot with.
Federated Access to US CyberInfrastructure Jim Basney CILogon This material is based upon work supported by the National Science.
Collaborative Platforms. Collaborations and Virtual Organizations IdM is a critical dimension of collaboration, crossing many applications.
COmanage and InCommon: Present and Future Activities and Interactions Heather Flanagan, COmanage Project Coordinator, Internet2.
LAW&ICT Shared Virtual Campus, Zaragoza Meeting, October model for technical support to LAW&ICT Shared Virtual Campus: a proposal Selahattin Kuru.
Scared Straight… if you want to go outside… Authenticate Locally, Act Globally.
SIF for US Science Michael Helm Esnet 09 June 2011.
GRID Overview Internet2 Member Meeting Spring 2003 Sandra Redman Information Technology and Systems Center and Information Technology Research Center National.
Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Report and plans Attribute.
Internet2 and Cyberinfrastructure Russ Hobby Program Manager,
Oracle HFM Implementation Boot Camp
University of Washington Collaboration: Identity and Access Management Lori Stevens University of Washington October 2007.
LEFIS Virtual Campus Design Albarracin Meeting, May model for technical support to LEFIS Virtual Campus: a proposal Selahattin Kuru Isik University.
Brown University Leveraging Social Identities Steve Carmody CSG, May 15, 2013.
NSF Middleware Initiative and Enterprise Middleware: What Can It Do for My Campus? Renee Woodten Frost Internet2/University of Michigan.
Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,
NSF Middleware Initiative and Enterprise Middleware: What Can It Do for My Campus? Mark Luker, EDUCAUSE Copyright Mark Luker, This work is the intellectual.
Possibilities for Grouper in a cross/inter organizational use Andrea Biancini, Consortium GARR GN3+ F-2-F meeting Stockholm, April.
Networks ∙ Services ∙ People Andrea Biancini #TNC15, Porto, Portugal Implementing Grouper to federate user authorization Federated Authorization.
Open Collaboration Exchange Alexander Blanc, Niels van Dijk, Jocelyn Manderveld, Remco Poortinga - van Wijnen VAMP 2013, Espoo.
SMXL: Tailoring Technology to Collaboration. SMXL FAQ Is SMXL a new web scripting language? No, it is the art of tailoring IdM and access.
8a Certified. About Us  Headquarters in Vienna, VA  Service Disabled Veteran-owned Small Business  SBA 8(a) program participant  Small Disadvantaged.
Networks ∙ Services ∙ People Marina Adomeit TNC16 Conference, Prague Towards a platform for supporting collaboration GÉANT VOPaaS
Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.
Collaboration and Federated Identity Two powerful forces being leveraged – the rise of federated identity – the bloom in collaboration tools, most particularly.
COmanage: Vision & Strategy July 2010, COmanage Dev Call.
Web SSO with Cloud Resources using AD Federation Services
LIGO Identity and Access Management
EGI Updates Check-in Matthew Viljoen – EGI Foundation
User Community Driven Development in Trust and Identity
eduTEAMS platform for collaboration Niels Van Dijk
eduTEAMS – Current status & Future Plans
John O’Keefe Director of Academic Technology & Network Services
An AAI solution for collaborations at scale
Guests and Collaborators
VO Identity, Attributes, and Infrastructure: Some Basics
Scott Thorne & Chuck Shubert
Virtual organizations: Team Science, Team Shakespeare
Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.
Presentation transcript:

BfB: Supporting Collaboration with Infrastructure

Topics The components: COmanage Grouper Shibboleth The activities VO versus Enterprise IdM Attributes and Metadata International Collaboration

The “Bedrock” Grant Building from Bedrock: Infrastructure Improvements for Collaboration and Science – an NSF OCI grant Focus on further developing and integrating tools to allow collaborations to operate efficiently in the IdM space COmanage Grouper Shibboleth

COmanage Scalable identity, group, access management for collaborative organizations, synthesizing identity needs and infrastructure from federated sources as well as internal CO sources Partner CO include: LIGO, iPlant, Bamboo

COmanage Upcoming deliverables Implementation by initial VO Hosted instance VAMP – a VO Advanced CAMP More domesticated applications Federated and social identity authentication REST API for applications to tie in to for authentication and other IdM needs

Grouper A rich, scalable toolkit to manage group information in the identity infrastructure Groups help consolidate actions around provisioning, reporting, access

Grouper Immediate deliverables and activities funded by Bedrock: Federated groups and Grouper instances

Shibboleth A standards based, open source software package for web single sign-on across or within organizational boundaries A powerful force behind federated identityImmediate deliverables and activities funded by Bedrock: Expand web-based architecture to non-web services

SAML federations worldwide – a bit of size

Shibboleth Upcoming items Expand web-based architecture to non-web services Single IdP log out Centralized discovery service Improved TestShib code

More on the collaboration space How VO and Enterprise IdM differ VO often have greater federation needs VO generally built around unique data sets, instruments VO often multi-institutional, multi-national Enterprise IdM (usually) has a stronger LoA Enterprise IdM (usually) have a stronger infrastructure

Attributes and metadata Push versus pull in the domesticated application space Or, real time versus on-demand information to applications? What metadata should exist so that different collaboration management platforms can share information about their CO? What metadata should exist in a universe of CO?

Grouper in a VO context “We chose Grouper because of its flexibility, the number and types of interfaces (web services interfaces in particular), and because we could see that it was being solidly developed and supported.” - Scott Koranda, Senior LIGO VO have a need for group and group management similar to what enterprise need

Shibboleth, OpenID, Facebook… Federated versus Social identity Federated identity leverages organizational identity, rich attributes and multiple levels of assurance Social identity, represented by Google, MSN, Yahoo!, AOL, Facebook, etc. provide convenient and lightweight identities for many popular sites

Common traits to CO outside the portal world Single CO Probably a command-line oriented CO with an equal focus on person identity and tool availability Tool integration possibilities with a published REST API Multiple CO within the CMP Probably a CO that is acting more as a service provider to various groups than one focused on a single collaboration effort, where absolute control over branding is important See the CO Assessment Document to help understand requirements of a complex environment

Common traits to Portal-based CO Single CO Probably a CO with a more app-focused collaboration See the Domestication Wiki for apps that may suit your VO Multiple CO in a CMP Probably a CO that is acting as a service provider to a variety of collaborations that cannot share resources fully, but where the apps and services are still the focus of the collaboration

Outreach efforts International collaborations on collaboration COIN – SURFnet COIP – SWAMI Gakunin federation in Japan

URL COmanage REST API: +COnnector CO Requirements Assessment Document: equirements+Assessment Domesticated Application wiki:

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.