Community Services WI TF-EMC2 VC Meeting 29 June, 2011 Licia Florio

Slides:

Advertisements

Similar presentations

Usage of PGP in TACAR 19th OGF Meeting Chapel Hill, USA February 1, 2007 Licia Florio Project Development Officer

Advertisements

Eduserv Athens Federations David Orrell Eduserv Athens Technical Architect.

TNC 2006, Catania TERENA Server Certificate Service SCS Towards the large-scale use of affordable popup-free server certificates for the European NRENs.

SA7 T5: the why, what and how TF-MSP 24 April 2014 Michel Wets, SURFnet,

NORDUnet Nordic Infrastructure for Research & Education Service Sharing at NORDUnet Lars Fischer TF-MSP Meeting Malta, 27 November 2014.

Updates Licia Florio, TERENA REFEDS Meeting 5 Sept 2012.

Europe Latin America Collaborative e ‑ Infrastructure for Research Activities A Model for Federated Services Brook Schofield, TERENA ● Sofia, Bulgaria.

A Grid certificate in 5 minutes large scale federated automated issuing of grid certificates Jan MeijerEGEE’ Sept 2009 Barcelona.

EuroCAMP Ljubljana, 3-5 March 2006 TERENA Server Certificate Service Towards the large-scale use of affordable popup-free server certificates for the European.

INFSO-RI Enabling Grids for E-sciencE JRA3 2 nd EU Review Input David Groep NIKHEF.

NRENs supporting Grids using current Grid technology TERENA NREN-GRID Workshop Amsterdam Milan Sova CESNET.

EU NREN PKI Jan MeijerAARnet PKI / Access Federations Strategy Workshop 10 February 2010 Sydney.

Webinar “Operating the TCS shared portals” for NREN admins TCS shared portal project a/TCS_Portal_project Jan Meijer.

TCS Procurement at GÉANT Association Nicole Harris 27 November 2014.

Networks ∙ Services ∙ People John DYER TF-MSP Video Conference Community Procurement Support Building on the SPOT-ON Proposal Smart Procurement,

AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.

TERENA Certificate Service (TCS) 9 June Slide 2 › Many NRENs had set-up a CA, but certificates issued were not trusted by web browsers (the ‘ pop-up.

John Dyer Business & Technology Strategist TERENA 10 February 2014 TF-MSP Meeting ACOnet, Vienna Aggregation of Demand Collaborative.

KISTI Grid CA Status Report KISTI Supercomputing Center Sangwan Kim APGridPMA Meeting Mar 8, 2010 Academia Sinica, Taipei, Taiwan.

Updates Licia Florio, TERENA REFEDS Meeting 5 Sept 2012.

Networks ∙ Services ∙ People David Groep TCS TNC2015 Workshop TCS SAML demo background June 16, 2015 TCS PMA.

TERENA Updates TF-EMC2 Meeting Bologna 7-8 Nov 2011 Licia Florio

Supporting further and higher education Middleware and AA within the JISC Environment Nicole Harris, JISC Development Group.

High-quality Internet for higher education and research AAI from the NREN perspective Schiphol, October 17, 2005

TERENA TF-EMC2 Workshop David Groep,

Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.

Connect. Communicate. Collaborate eduGAIN in Real Life! Ajay Daryanani, RedIRIS TERENA Networking Conference Brugge, 20th May 2008.

Updates from the EUGridPMA David Groep, July 16 st, 2007.

Federated Access to US CyberInfrastructure Jim Basney CILogon This material is based upon work supported by the National Science.

Connect. Communicate. Collaborate Place your organisation logo in this area The PERT – Evolution from a Centralised to a Federated Organization Toby Rodwell.

Authentication and Authorisation for Research and Collaboration Pilots on the Integrated R&E AAI Paul van Dijk, Activity Lead Pilots.

KISTI Grid CA Status Report Korea Institute of Science and Technology Information Sangwan Kim Jae-Hyuck Kwan

David Groep Nikhef Amsterdam PDP & Grid TERENA Certificate Service Certificates4All! David Groep standing in for Licia Florio, TERENA, using material from.

ESnet RAF and eduroam ™ Tony J. Genovese ATF Team ESnet/Lawrence Berkeley National Laboratory.

A community-based CA: The (slow) rise of the house of Usher (The CA former known as CREN)

Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.

Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.

AuEduPerson Schema Schema Derived from: - eduPerson - person [RFC 4517, RFC 4519] - organizationalPerson [RFC 4517, RFC 4519] - inetOrgPerson [RFC 2798]

Authentication and Authorisation for Research and Collaboration Niels van Dijk AARC General Meeting Authentication and Authorisation.

Status Report & Future TF-MSP Management of Service Portfolios Alberto PEREZ Walter van Dijk John DYER 3 June 2010.

John DYER Secretary of TF-MSP TERENA SPOT-ON PROPSAL TO EC.

29 October 2001Terena TF-LSD1 Certificate Retrieval With OpenLDAP David Chadwick.

Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos

Community PKIs Initiatives Updates TF-EMC2 Meeting Loughborough, UK 6-7 May, 2009 Licia Florio, TERENA

EGI-InSPIRE RI EGI EGI-InSPIRE RI Establishing Identity in EGI the authentication trust fabric of the IGTF and EUGridPMA.

Programme ›TERENA ›Overview of the middleware initiatives in the European Higher Education ›What is eduroam: the technology and how to set up eduroam ›eduroam-in-a-box:

Update on the TERENA Compendium, 2003 A talk about comparing apples with oranges in the NREN world TNC/CUC 2003, Session 7b4 Bert van Pinxteren, TERENA.

Building the TERENA Greenhouse TERENA TTC Amsterdam, Netherlands 19 th September 2013 Nicole Harris PDO

Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,

TACAR Updates version David Groep, NIKHEF. 9 th EUGridPMA ‘RAL’ meeting – Jan David Groep – TACAR Aims  Trusted and.

Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting AARC and AARC2 Vienna, 1 st December.

NIIF CA Status Update and Self-Audit Results 15 th EUGridPMA meeting Nicosia Tamás Máray NIIF Institute.

TERENA Certificate Service (TCS) 2 August Slide 2 ›TCS is a competitively tendered bulk-buy contract between TERENA and Comodo Limited on behalf.

Licia Florio Poznan, 5 June SCS Proposal Investigates the possibility to set up a service that offers popup-free cheap server-certificates against.

David Groep Nikhef Amsterdam PDP & Grid AARC Authentication and Authorisation for Research and Collaboration an impression of the road ahead.

Summary of Poznan EUGridPMA32 September EUGridPMA Poznan 2014 meeting – 2 David Groep – Welcome back at PSNC.

GRID-FR French CA Alice de Bignicourt.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Enabling SSO capabilities in the EGI Cloud services Peter Solagna – EGI.eu.

Authentication and Authorisation for Research and Collaboration Licia Florio AARC CORBEL Workshop The AARC Project Paris, 31 May.

Authentication and Authorisation for Research and Collaboration Licia Florio AARC f-2-f Meeting One Year of AARC Utrecht, 24 May.

Updates from the EUGridPMA David Groep, Oct 17 st, 2007.

Authentication and Authorisation for Research and Collaboration Taipei - Taiwan Mechanisms of Interfederation 13th March 2016 Alessandra.

Authentication and Authorisation for Research and Collaboration Licia Florio IGTF Meeting The AARC Project Amsterdam, 8 September.

Networks ∙ Services ∙ People Nicole Harris and Licia Florio 30 th September 2015 Building the Greenhouse Amsterdam Project Development Officers.

TERENA Certificate Service (TCS) September SCS,TCS,TCS-II – the ten year road to simple unlimited certificates › Back in 2004 many NRENs had set-up.

Building the TERENA Greenhouse

22 February, ITDG/DIME Item 2 – Progress and deployment

MaGrid CA Self audit and update

The Nordic CTO Forum – towards a common market for services

Network Technology Evolution

Presentation transcript:

Community Services WI TF-EMC2 VC Meeting 29 June, 2011 Licia Florio

Slide 2 Community Services WI ›WI aim: ›Analyzing the status of the services and promoting their usage. ›Proposing and validating service enhancements. ›Contributing to the maintenance and sustainability of the services. ›Exploring the feasibility of new services and assessing on their practical implementation ›Existing Services: ›TACAR, SCHAC, TCS

Existing Services - TACAR ›TACAR ›Trust repository to host CAs; CAs are listed based on their accreditation: ›Most of the CAs are IGTF accredited; ›New TACAR policy expected by end of July (finally!) ›TACAR being used to host GEANT accredited CAs ›The accreditation is done via the GEANT eduPKI PMA › › Currently only CA accredited ›Discussion on-going on whether TACAR should be used to host metadata signing keys as well › No clear consensus yet Slide 3

Existing Services - SCHAC ›SCHAC (Victoriano Giralt & Javier Masa) ›SChema for Academia ›Used in production in some countries (Spain, Finland, Italy etc) ›urn:schac granted ›Thanks to Victoriano ›Should we use the new URN prefix then? ›TERENA is working to use RedIRIS’s registry to handle both SCHAC and OIDs ›½ of the work is done; ›Plans are also to move SCHAC’s documentation to a wiki; Slide 4

Existing Services – TCS ›TCS offers server, personal and code signing certs: ›NRENs can choose their package; Slide 5

TCS Slide 6 NREN/CountrySPC SPC ACOnetAT  LITNETLT  - BELNETBE  UoMMT  - CARNetHR  --SURFnetNL  CyprusCY  UNINETTNO  CESNETCZ  -PSNCPL  UNICDK  -FCCNPT  -- FUNETFI  -RoEduNetRO  - RENATERFR  -AMRESRS  - GRNETGR  -ARNESSI  -- HUNGARNETHU  --RedIRISES  HEAnetIE  SUNETSE  GARRIT  -JANET(UK)UK  -- IUCCIL  - S= server cert P = personal cert C = code signing cert

Slide 7 ›Several NRENs decided to pool resources and operate common portal for personal certificates. ›Hosted on resilient servers at Tilburg University under contract to TERENA. ›Utilises Confusa software. ›Each NREN community needs to operate at least one IdP, multiple IdPs are supported. ›Participants: ›ACOnet (AT), BELNET (BE), FUNET (FI), GARR (IT), RENATER (FR), SUNET (SE), SURFnet (NL), UNI-C (DK), UNINETT (NO) TCS Portal

Slide 8 ›Server Certificates ›Since 1 Jul ,710 (most JANET(UK) with 9,321 ) ›eScience Server Certificates ›Since 1 Oct (most PSNC with 16) ›Personal Certificates ›Since 5 Feb ,169 (most 499 with CESNET) ›eScience Personal Certificates ›Since 5 Feb (most 332 with UNINETT) ›Code-Signing Certificates ›Since 1 June (most 13 with PSNC) TCS Statistics (1 Jul Dec 2010)

New horizons ›The ‘federated box.net’ ›Or in more general terms federated access to storage/cloud services ›A call scheduled on July 6 ›To discuss use-cases, business model and next steps; ›Discussed with Niels Van Dijk the creation of a ‘catalogue’ to show: ›Services NRENs offer ›Services NRENs are building ›Sharing experiences on procurements, service models etc ›Not a lot has been done though  Slide 9