FIM, 2012-06-22, Nijmegen CLARIN: status of FIM Dieter Van Uytvanck 1.

Slides:



Advertisements
Similar presentations
Federation management A mess? Nordunet Conference Mikael Linden CSC, the Finnish IT Center for Science.
Advertisements

Innovation through participation eduGAIN as a service (T3) in Multi-Domain User Applications (SA3) Valter Nordh, NORDUnet / GU NORDUnet conference, Köpenhamn,
The Art of Federations. Topics Federations of what… Federated identity versus federations Federations in other sectors – business, gov, ad hoc R&E Federations.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
CLARIN AAI, Web Services Security Requirements
Innovation through participation GÉANT Data Protection Code of Conduct (DP CoC) FIM for research collaboration workshop Mikael Linden,
EduGAIN – Are we there yet? Lukas Hämmerle (ghost writer, Brook Schofield) FIM4R, Helsinki – 2 October 2013.
Step-up Authentication as-a Service Pieter van der Meulen Technical Product Manager.
2006 © SWITCH SWITCH Plans for Shibboleth and Grid GGF16 Feb 14, 2006 Christoph Witzig (Thomas Lenggenhager, Valery Tschopp, Placi Flury) SWITCH.
FIM-ig Federated Identity Management Interest Group.
SWITCHaai Team Federated Identity Management.
CLARIN for Linguists Introduction Jan Odijk LOT Summerschool Nijmegen,
EduGAIN Code of Conduct Workshop, , Brussels GEANT eduGAIN Data Protection "Code of Conduct" Workshop Dieter Van Uytvanck
CLARIN Common Language Resources and Technology Infrastructure Daan Broeder & Dieter van Uytvanck Max-Planck Institute for Psycholinguistics TF-EMC2 Meeting,
CASE: Haka federation EuroCAMP, 3-5 April, 2006 CSC, the Finnish IT Center for Science
CLARIN and the Humanities Daan Broeder The Language Archive – MPI for Psycholinguistics CLARIN EU/NL Workshop on Federated Identity Management CERN, June.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
Belnet Federation Belnet – Loriau Nicolas Brussels – 12 th of June 2014.
2005 © SWITCH Perspectives of Integrating AAI with Grid in EGEE-2 Christoph Witzig Amsterdam, October 17, 2005.
Authentication and Authorization Overview Kimmo Koskenniemi, Antti Arppe, Mikael Lindén University of Helsinki, CSC – IT Centre for Science Consortium.
Kalmar Union, a Conferedation of Nordic Identity Federations TNC2009 Mikael Linden, CSC Andreas Solberg, UNINETT.
Introduction Moonshot workshop
Towards Interconnecting the Nordic Identity Federations TNC2007 Walter M Tveter, UiO Mikael Linden, CSC/HAKA Ingrid Melve, Uninett/Feide.
Connect. Communicate. Collaborate Place organisation and project logos in this area Usage of SAML in eduGAIN Stefan Winter, RESTENA Foundation TERENA Networking.
Campus Identity Management Requirements (=IAP) REFEDs meeting Mikael Linden,
SURFfederatie & SURFconext Federated identity system for scientific collaborations 9-10 June 2011 CERN Remco Poortinga – van Wijnen*, SURFnet
Schac attributes and common vocabularies TF-EMC Mikael Linden CSC, the Finnish IT Center for Science.
Kalmar Union lessons: Findings in federation harmonisation REFEDS Mikael Linden, CSC.
Federated Identity Management IG FIM4R CLARIN pilot – progress report Menzo Windhouwer (CLARIN ERIC, Meertens Institute)
Géant-TrustBroker project overview Slides assembled by the Géant-TrustBroker team at Leibniz Supercomputing Centre, Germany for a short presentation by.
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
Innovation through participation eduGAIN interfederation service for research and education Cern FedID workshop in RAL, UK 2-3 Nov 2011 Mikael Linden,
Test your IdP
Innovation through participation eduGAIN policy: A worm report TF-EMC2 Vienna Mikael Linden, CSC The worm farmer.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos GRNET Proposed Pilots for Libraries and eGov.
Refeds update TF-EMC2 Utrecht 3-Dec 2008 Mikael Linden CSC – the Finnish IT Center for Science.
Authentication and Authorisation for Research and Collaboration Michał Jankowski, Maciej Brzeźniak AARC General Meeting, Milan.
Géant-TrustBroker Project Overview Daniela Pöhn 7 th FIM4R meeting Frascati, Italy April 24 th, 2014.
Authorization and Authentication Infrastructure Daan Broeder & Dieter Van Uytvanck Max Planck Institute for Psycholinguistics
Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.
Clain update TF-EMC Mikael Linden, CSC.
June 9, 2009 SURFfederatie: implementing a multi- protocol federation Hans Zandbelt & Joost van Dijk, SURFnet.
EUDAT receives funding from the European Union's Horizon 2020 programme - DG CONNECT e-Infrastructures. Contract No B2ACCESS LSDMA.
Innovation through participation Expectations on eduGAIN and next steps Valter Nordh, NORDUnet / GU 1.
Networks ∙ Services ∙ People Nicole Harris UK federation meeting eduGAIN, REFEDS and the UK 23 June 2015 Project Development Officer GÉANT.
David Groep Nikhef Amsterdam PDP & Grid Bring the WLCG federation Home Extending your trust options beyond bottom-up identity by collaborating with global.
CLARIN EUDAT2020 uptake plan Dieter Van Uytvanck CLARIN ERIC EUDAT User Forum, Rome.
AAI needs of the Distributed Computing Infrastructures - CLARIN Dieter Van Uytvanck Max Planck Institute for Psycholinguistics
Open Collaboration Exchange Alexander Blanc, Niels van Dijk, Jocelyn Manderveld, Remco Poortinga - van Wijnen VAMP 2013, Espoo.
Networks ∙ Services ∙ People Licia Florio TNC, Lisbon Consuming identities across e- Infrastructures 16 June 2015 PDO GÈANT.
How eduGAIN can help education: a real life story Sabita Behari Product Manager TNC14.
Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.
Authentication and Authorisation for Research and Collaboration Taipei - Taiwan Mechanisms of Interfederation 13th March 2016 Alessandra.
Géant-TrustBroker Dynamic inter-federation identity management Daniela Pöhn TNC2014 Dublin, Ireland May 19 th, 2014.
Innovation through participation Data Protection Code of Conduct (DP CoC) TNC2013 conference, 4 June 2013 Mikael Linden, CSC – IT Center for Science
Applying eduGAIN to network operations The perfSONAR case
ESA EO Federated Identity Management Activities
eduTEAMS platform for collaboration Niels Van Dijk
eduTEAMS – Current status & Future Plans
Identity Federations - Overview
Identity Management and Authorization
Géant-TrustBroker Dynamic inter-federation identity management
Scalability of trust and metadata exchange across federations
CLARIN Federated Identity Vision
GÉANT International Networking and Collaboration
Identity Management and Authorization
GÉANT project update eduTEAMS - AAI as a Service for Collaborative organisations Introduction Status Pilots New Features – input requested InAcademia –
ESA Single Sign On (SSO) and Federated Identity Management
Example Use Case for Attribute Authorities and Token Translation Services - the case for eduGAIN Andrea Biancini.
eIDAS-enabled Student Mobility
Presentation transcript:

FIM, , Nijmegen CLARIN: status of FIM Dieter Van Uytvanck 1

FIM, , Nijmegen Overview We have our holy grail scenario But are working at the same time on a more down-to-earth approach Overview in a nutshell: using SAML (2.x) about 8 Service Providers (nr. is growing), of which currently 5 really used user base: spread over all academic IdPs in the EU, currently lots of experience with DE and NL 2

FIM, , Nijmegen Overview 3

FIM, , Nijmegen Strategy so far Pilot Service Provider Federation register each SP in multiple identity federations: SurfFederatie (NL) DFN-AAI (DE) HAKA (FI) + Kalmar Union Conclusions: this works but creates a lot of overhead technically: metadata distribution, testing, … bureaucracy: gathering signatures, … 4

FIM, , Nijmegen Problems with the SPF Netherlands: opt-in per IdP, does not scale connecting an IdP to an SP can take weeks and loads of s extremely frustrating process for end-users Germany: no opt-in but too many IdPs do not pass any (useful) attribute e.g. Leipzig Uni: only EPTID but we need name and address! Finland seems to work reasonably well (but fewer test cases than NL and DE) 5

FIM, , Nijmegen From preparation to construction CLARIN-EU preparatory phase ended (2011), construction phase has started (feb 2012) CLARIN-NL and CLARIN-D in construction phase: we need a working system. Today. Fallback to central IdP: the CLARIN IdP something that works, today and that can be used as a gold standard for implementing SP-IdP connections (e.g. supporting ECP) 6

FIM, , Nijmegen CLARIN IdP Our “home for the homeless” – SAML IdP Backend: drupal CMS manual account checks + captcha extra attribute for users with an acedemic address (= higher trust level, about 80% of all users) currently about 600 users standard services, e.g. resetting password just works, not too much maintenance work All CLARIN SPs will connect to it. 7

FIM, , Nijmegen CLARIN Discovery Service Important for end-user experience Not all SPs can administer one Lots of IdPs (currently hundreds) DiscoJuice works well 8

FIM, , Nijmegen The future Still, we have hope that FIM is not dead. In general: good cooperation with NRENs, TERENA and eduGAIN and other RIs Call for action (with DARIAH-DE) to German IdPs: Supporting the eduGAIN Code of Conduct, participating in pilot (it would make our live so much easier!) SAML SP stays a requirement for CLARIN centers (when AuthN is needed) extend the Service Provider Federation (?) fancier features (webservices, trust delegation, …) 9

FIM, , Nijmegen More information (will be updated) 10

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.