US of A and A Activities Ken Klingenstein, Director Internet2 Middleware Initiative.

Slides:



Advertisements
Similar presentations
PERSEUS : Portal-enabled Resources via Shibbolized End-user Security 16 May 2005JISC Core Middleware Programme Meeting, Loughborough 1 PERSEUS Project.
Advertisements

Next Generation Athens Services Ed Zedlewski UK e-Science Town Meeting, London, 11 April 2005.
Shibboleth Panel Current and Planned Uses of Shibboleth at Georgetown and Beyond Internet2 Spring Member Meeting Arlington, Virginia April 26, 2006 ` Charles.
Federated Digital Rights Management Mairéad Martin The University of Tennessee TERENA General Assembly Meeting Prague, CZ October 24, 2002.
Implementing Shibboleth-based Virtual Organisations and VO Federations using IAMSuite (including AAF update) James Dalziel & Alan Lin Professor of Learning.
Welcome to CAMP! Ken Klingenstein, Director, Internet2 Middleware Initiative.
Make Secure Information Sharing (SIS) Easy and an Reality C. Edward Chow, PI Osama Khaleel Bill Kretschmer C. Edward Chow, PI Osama Khaleel Bill Kretschmer.
A.Vandenberg August 7, 2001 HE PKI Summit State of Georgia and PKI Art Vandenberg Director, Advanced Campus Services Information Systems & Technology.
UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.
InCommon Policy Conference April Uses  In order to encourage and facilitate legal music programs, a number of universities have contracted with.
Administrative Information Systems Shibboleth: The Next Generation ISIS Technical Information Session for Developers Datta Mahabalagiri March
Welcome to CAMP Identity Management Integration Workshop Ann West NMI-EDIT EDUCAUSE/Internet2.
Shibboleth: New Functionality in Version 1 Steve Carmody July 9, 2003 Steve Carmody July 9, 2003.
Project Shibboleth Update, Demonstration and Discussion Michael R Gettes Duke University (on behalf of the entire shib team!!!) June.
Shibboleth-intro-dec051 Shibboleth A Technical Overview Tom Scavo NCSA.
Shib in the present and the future Ken Klingenstein Director, Internet2 Middleware and Security.
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 1 Shibboleth Pilot Local Authentication.
Mairéad Martin The University of Tennessee September 13, 2015 Federated Digital Rights Management.
Shibboleth Possible Features – Version 2 Steve Carmody July 9, 2003 Steve Carmody July 9, 2003.
Supporting further and higher education UK Middleware Update TF-EMC2 Meeting, 4 November 2004 Alan Robiette, JISC Development Group.
7 October 2015 Shibboleth. Agenda  Shibboleth Background and Status  Why is Shibboleth Important (to Higher Ed)?  Current Pilots Course Management.
Shibboleth: Installation and Deployment Scott Cantor July 29, 2002 Scott Cantor July 29, 2002.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability Shibboleth - gLite Christoph.
Shibboleth Update Michael Gettes Principal Technologist Georgetown University Ken Klingenstein Director Interne2 Middleware Initiative.
David L. Wasley Office of the President University of California Shibboleth Safe delivery of reliable authorization data David L. Wasley University of.
GridShib: Grid/Shibboleth Interoperability September 14, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey, Raj Kettimuthu, Tom Scavo, Frank Siebenlist,
NSF Middleware Initiative Renee Woodten Frost Assistant Director, Middleware Initiatives Internet2 NSF Middleware Initiative.
Shibboleth A Federated Approach to Authentication and Authorization Fed/Ed PKI Meeting June 16, 2004.
David Kennedy, UMD Shibboleth and Library Resources Internet2 Library/Shibboleth Project.
Internet2 CAMP Shibboleth Scott Cantor (Hey, that’s my EPPN too.) Tom Dopirak Scott Cantor (Hey, that’s my.
Shibboleth Update Advanced CAMP 7/31/02 RL “Bob” Morgan, Washington Steven Carmody, Brown Scott Cantor, Ohio State Marlena Erdos, IBM/Tivoli Michael Gettes,
Shibboleth Authenticate Locally, Act Globally A Penn State Case Study Renee’ Shuey May 4, 2004 ITS – Emerging Technologies.
Kerberos and Identity Federations Daniel Kouřil, Luděk Matyska, Michal Procházka, Tomáš Kubina AFS & Kerberos Best Practices Worshop 2008.
World Domination in AuthN space Starting in the Netherlands… TF-AACE workshop, Malaga, November 2003 Ton Verschuren SURFnet.
Internet2 Middleware Initiative Shibboleth Ren é e Shuey Systems Engineer I Academic Services & Emerging Technologies The Pennsylvania State University.
Shibboleth Access Management System Walter Hoehn & David Millman, Columbia University.
Holly Eggleston, UCSD Shibboleth and Library Resources InCommon Library/Shibboleth Project.
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 1 NMI R3 Enterprise Directory Components.
Comité Réseau des Universités News from CRU activities: Identity federation, eduroam, PKI, SCS, Sympa, security policies cru.fr 7th.
Shibboleth: Status and Pilots. The Golden Age of Plywood.
Project Shibboleth Update, Demonstration and Discussion Michael Gettes May 20, 2003 TERENA Conference, Zagreb, Croatia Michael Gettes.
Shibboleth: Installation and Deployment Scott Cantor July 29, 2002 Scott Cantor July 29, 2002.
Shibboleth: Early Experience at OSU Scott Cantor October 28, 2002 Scott Cantor October 28, 2002.
1 Protection and Security: Shibboleth. 2 Outline What is the problem Shibboleth is trying to solve? What are the key concepts? How does the Shibboleth.
Shibboleth Update Eleventh Federal & Higher Education PKI Coordination Meeting (Fed/Ed Thursday, June 16, 2005.
Shibboleth A word which was made the criterion by which to distinguish the Ephraimites from the Gileadites. The Ephraimites, not being able to pronounce.
Shibboleth 2.0 Update Ken Klingenstein. 2 Topics Shib v1.3 Status SAML new features Shibboleth 2.0 Features Shibboleth 2.x Features We Need Feedback.
Digital Diversity: Multi- institutional Access to Distributed Course Resources Barry Ribbeck UT HSC - Houston.
Shibboleth: OSU Early Adoption Scenarios Scott Cantor April 10, 2003 Scott Cantor April 10, 2003.
Internet2 Spring Meeting, Washington DC April NMI R2 Shibboleth recipe experience Art Vandenberg Director, Advanced Campus Services Information.
PAPI: Simple and Ubiquitous Access to Internet Information Services JISC/CNI Conference - Edinburgh, 27 June 2002.
Mairéad Martin The University of Tennessee December 16, 2015 Federated Digital Rights Management.
Shibboleth Trust Model Shibboleth/SAML Communities (aka Federated Administrations) Club Shib Club Shib Application process Policy decision points at the.
Shibboleth & Federated Identity A Change of Mindset University of Texas Health Science Center at Houston Barry Ribbeck
Welcome to Base CAMP: Enterprise Directory Deployment Ken Klingenstein, Director, Internet2 Middleware Initiative Copyright Ken Klingenstein This.
Shibboleth Update January, 2001 Ken Klingenstein, Project Director, Internet2 Middleware Initiative Chief Technologist, University of Colorado at Boulder.
PAPI 2 Distributed trust model and AA interoperability.
WebISO, Single Sign-On & Authorization General Overview Shelley Henderson Project Manager, Grid Software USC Information Services Copyright.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability Shibboleth - gLite Christoph.
Blackboard Learning System r6 and Shibboleth Barry Ribbeck U.Texas Health Science Center at Houston Christopher Etesse Blackboard Inc.
The FederID project The First Identity Management and Federation Free Software.
Shibboleth Roadmap
Shibboleth Project at GSU
What’s changed in the Shibboleth 1.2 Origin
Overview and Development Plans
Federated Digital Rights Management
Supporting Institutions Towards a Shibbolized Infrastructure
Shibboleth Deployment Overview
Shibboleth: Status and Pilots
Shibboleth Architecture and Requirements
Presentation transcript:

US of A and A Activities Ken Klingenstein, Director Internet2 Middleware Initiative

Outline Shibboleth/openSAML National Science Foundation Middleware and Grids PKI in US Trust Models Other – portals, learning management systems, clients, etc…

Talk two International Issues and Opportunities CIMI (Museum Intelligence) Grids Trust Models – Shib and PKI Registries – for object classes for virtual organizations Regular meeting schedule for next year

Shibboleth/OpenSAML update Code status and dates Pilots libraries, WebCT, early deployment issues, OpenSAML contributions, PKI integration Longer-term plans Convergence with PAPI et al, Digital Rights Management, Personal Information Managers, Privacy Management Tools What Can Go Wrong IPR, Support, Federation

Code status v0.7 released November 2002 (note switch to numbering) v0.7 much easier to install than alpha’s. No Java. Release issues – platform dependencies, fragile Apache components, binaries vs source, etc… OpenSAML also released at 0.7 v0.7 to v0.8 new features – ARP’s redone, added robustness timeframes – march 1, 2003 general release V0.8 to 1.0 – bug fixes and packaging only; spring I2 MM

v0.8 details Origin: Standalone handle service New ARP processing engine New ways of encoding ARPs, possibly in XACML Will be incompatible with v0.7 ARP database Target: Configurable attribute requestor, leading to user controllable SHAR backend server as a db, allowing for robustness Extensible attribute decision mechanisms Performance tuning

Pilots and short term plans The library pilots origins – about campuses targets – EBSCO, Elsevier, OCLC, SFX, JSTOR, Edina, ProQuest WebCT, and WebAssign Early deployment issues – kiosks, IP address as an attribute, data center strength code OpenSAML contributions processing Next deploy communities – intercampus research groups

WebCT integration Demo temporarily at (not firewall friendly…) Provides normative integration approach for gluing bunch of apps together – middleware in a box… Was relatively easy compared to other CMS (Blackboard) Raises code base issues…

Longer-term issues Convergence with PAPI, et al… calls to start soon, centering around plug-ins to the attribute authority, I think… Shibboleth the architecture vs Shibboleth the web service Federated Digital Rights Management Federated P2P Privacy Management Systems – see Personal Information Managers - see

What Can Go Wrong… Intellectual Property issues consume it… Support Issues overwhelm… Federations prove mythical

National Science Foundation Middleware Initiative and Grids Release 2 out in November – grid patches, early Shib code, LDAP analyzer; Release 3 next April Integration with Grids – KX.509 CP/CPS, revocation, *.509 tools, OGSI, EDG code base, GGF rant Inclusion in Release 3 Why How “What side” and what integration

PKI in US Little campus activities, though those underway continue… Federal BCA (openSSL) Higher Ed BCA clients, browsers, directory issues CREN Shib PKI Issues

Trust models InCommon self-posting account policy self-posting privacy policy self-audit intended to escalate origin/target issues Federating Organization Organization

Miscellaneous Chandler OKI uPortal Liberty WS-Sec and OASIS standardization…

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.