Presentation is loading. Please wait.

Presentation is loading. Please wait.

Copyright © 2009 Trusted Computing Group An Introduction to Federated TNC Josh Howlett, JANET(UK) 11 June, 2009.

Published bySheryl Price Modified over 7 years ago

Similar presentations

Presentation on theme: "Copyright © 2009 Trusted Computing Group An Introduction to Federated TNC Josh Howlett, JANET(UK) 11 June, 2009."— Presentation transcript:

1 Copyright © 2009 Trusted Computing Group An Introduction to Federated TNC Josh Howlett, JANET(UK) 11 June, 2009.

2 Trusted Computing Group Confidential What is the Trusted Computing Group?

3 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #3 Who is TCG? The Trusted Computing Group (TCG) is an international industry standards group The TCG develops specifications amongst it members  Upon completion, the TCG publishes the specifications  Anyone may use the specifications once they are published The TCG publicizes the specifications and uses membership implementations as examples of the use of TCG Technology The TCG is organized into a work group model whereby experts from each technology category can work together to develop the specifications  This fosters a neutral environment where competitors and collaborators can develop industry best capabilities that are vendor neutral and interoperable

4 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #4 TCG: Standards for Trusted Systems Mobile Phones Authentication Storage Applications Software Stack Operating Systems Web Services Authentication Data Protection Infrastructure Servers Desktops & Notebooks Security Hardware Network Security Printers & Hardcopy Virtualized Platform

5 Trusted Computing Group Confidential What is Trusted Network Connect?

6 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #6 TNC Architecture

7 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #7 TNC status  TNC standards-based products are available  TNC-enabled solutions have been implemented by customers  The number of TNC adopters (vendor and client) continue to grow  TNC-based IETF standards (NEA) expected to reach RFC status in 2009

8 Trusted Computing Group Confidential What is Federated TNC?

9 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #9 Some history, and acknowledgements  Federated TNC builds on previous work  The GN2 JRA5 ‘DAMe’ project  The Internet2 RADIUS-SAML profile

10 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #10 Conceptual model

11 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #11 What does it specify?  Network Assessment Profile  Assess an endpoint as it connects to an IEEE 802.1X protected network.  Web Assessment Profile  Assess an endpoint as it connects to a SAML protected web application.  SAML Attribute Profile  Defines how TNC attributes can be expressed as SAML attributes.  SAML Name Identifier Formats  Defines Name Identifier formats for NAIs and MAC addresses.

12 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #12 The Assessment Profiles  Both profiles use a common message exchange pattern  For SAML 1.1, uses the Shibboleth Attribute Exchange Profile.  For SAML 2.0, uses the Assertion Query/Request Profile.  Both profile support the request of attributes about endpoints and users.  “Is the firewall on this machine turned on?”  “Is the user who authenticated using this computer a student?”

13 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #13 Network Assessment Profile

14 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #14 Web Assessment Profile

15 Copyright© 2009 Trusted Computing Group – Other names and brands are properties of their respective owners. Slide #15 Conclusions  Federated TNC provides a mechanism to represent and transport information about users and machines between domains.  Federated TNC should be compatible with IETF NEA standards.  Technology was tricky; policy will be harder.  Specification available from the TCG website:  http://www.trustedcomputinggroup.org

Download ppt "Copyright © 2009 Trusted Computing Group An Introduction to Federated TNC Josh Howlett, JANET(UK) 11 June, 2009."

Similar presentations

1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary TCG Activity Summary December 2010 Irvine, CA – PWG Meeting Ira McDonald (High.

1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary TCG Activity Summary December 2010 Irvine, CA – PWG Meeting Ira McDonald (High.
1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary Status Report IDS Working Group August 4, 2010 Bagsværd, Denmark- PWG F2F Meeting.

1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary Status Report IDS Working Group August 4, 2010 Bagsværd, Denmark- PWG F2F Meeting.
1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary and IDS WG TCG Activity Summary August 2010 Bagsvaerd, Denmark – PWG Meeting.

1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary and IDS WG TCG Activity Summary August 2010 Bagsvaerd, Denmark – PWG Meeting.
1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary TCG Activity Summary 10 June 2010 Rochester, NY – PWG F2F Meeting Ira McDonald.

1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary TCG Activity Summary 10 June 2010 Rochester, NY – PWG F2F Meeting Ira McDonald.
1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary TCG Activity Summary 7 April 2010 Camas, WA – PWG F2F Meeting Ira McDonald (High.

1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary TCG Activity Summary 7 April 2010 Camas, WA – PWG F2F Meeting Ira McDonald (High.
1Copyright © 2011, Printer Working Group. All rights reserved. PWG Plenary TCG Activity Summary May 2011 Webster, NY – PWG Meeting Ira McDonald (High North.

1Copyright © 2011, Printer Working Group. All rights reserved. PWG Plenary TCG Activity Summary May 2011 Webster, NY – PWG Meeting Ira McDonald (High North.
TCG Confidential Copyright© 2007 Trusted Computing Group. Picture Copyright© Jyrki Kallinen, Nokia. - Other names and brands are properties of their respective.

TCG Confidential Copyright© 2007 Trusted Computing Group. Picture Copyright© Jyrki Kallinen, Nokia. - Other names and brands are properties of their respective.
MExE - SMG4/3GPP T2 SWG1 - April 12 1999 Mobile Station Application Execution Environment (MExE) Java and WAP ETSI/SMG4 and 3GPP.

MExE - SMG4/3GPP T2 SWG1 - April Mobile Station Application Execution Environment (MExE) Java and WAP ETSI/SMG4 and 3GPP.
Www.cloudsecurityalliance.org Copyright © 2011 Cloud Security Alliance Trusted Cloud Initiative Work Group Session.

Copyright © 2011 Cloud Security Alliance Trusted Cloud Initiative Work Group Session.
High Performance Computing Course Notes 2007-2008 Grid Computing.

High Performance Computing Course Notes Grid Computing.
TCG Confidential Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #1 TNC EAP IETF EAP.

TCG Confidential Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #1 TNC EAP IETF EAP.
TF-EMC2 February 2006, Zagreb Deploying Authorization Mechanisms for Federated Services in the EDUROAM Architecture (DAME) -Technical Project Proposal-

TF-EMC2 February 2006, Zagreb Deploying Authorization Mechanisms for Federated Services in the EDUROAM Architecture (DAME) -Technical Project Proposal-
Copyright© 2005-2006 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #1 Tightening the Network: Network.

Copyright© Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #1 Tightening the Network: Network.
1 eAuthentication in Higher Education Tim Bornholtz Session #47.

1 eAuthentication in Higher Education Tim Bornholtz Session #47.
Notes to the presenter. I would like to thank Jim Waldo, Jon Bostrom, and Dennis Govoni. They helped me put this presentation together for the field.

Notes to the presenter. I would like to thank Jim Waldo, Jon Bostrom, and Dennis Govoni. They helped me put this presentation together for the field.
A SOLUTION: 2X REMOTE APPLICATION SERVER. 2X REMOTE APPLICATION SERVER.

A SOLUTION: 2X REMOTE APPLICATION SERVER. 2X REMOTE APPLICATION SERVER.
Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica System architectures Updated: November 2014.

Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica System architectures Updated: November 2014.
5th Edition, Irv Englander

5th Edition, Irv Englander
Health IT RESTful Application Programming Interface (API) Security Considerations Transport & Security Standards Workgroup March 18, 2015.

Health IT RESTful Application Programming Interface (API) Security Considerations Transport & Security Standards Workgroup March 18, 2015.
Open Cloud Sunil Kumar Balaganchi Thammaiah Internet and Web Systems 2, Spring 2012 Department of Computer Science University of Massachusetts Lowell.

Open Cloud Sunil Kumar Balaganchi Thammaiah Internet and Web Systems 2, Spring 2012 Department of Computer Science University of Massachusetts Lowell.

Similar presentations

Ads by Google