Presentation is loading. Please wait.

Presentation is loading. Please wait.

The AARC Project Licia Florio AARC Coordinator GÉANT

Published byMartin Stephens Modified over 5 years ago

Similar presentations

Presentation on theme: "The AARC Project Licia Florio AARC Coordinator GÉANT"— Presentation transcript:

1 The AARC Project Licia Florio AARC Coordinator GÉANT
Service orientation to data and high-performance computing infrastructures Paris, 22 September 2015

2 Authentication and Authorisation for Research and Collaboration
AARC Facts Authentication and Authorisation for Research and Collaboration Two-year EC-funded project 20 partners NRENs, e-Infrastructure providers and Libraries as equal partners About 3M euro budget Starting date 1st May, 2015

3 AARC Vision and Objectives
Avoid a future in which new research collaborations develop independent AAIs Impacts Create a cross-e-infrastructure ‘network’ for identities Reduce duplication of efforts in the service delivery Improve the penetration of federated access Outputs Design an integrated AAI built on federated access Harmonised policies to ease cross-discipline collaboration Pilot selected use-cases Offer a diversified training package

4 Design an integrated AAI built on production infrastructures
Approach Integration, policy harmonisation, piloting and training Design an integrated AAI built on production infrastructures Use existing e-infrastructures in the delivery chain Work with e-infras and user communities to solve existing challenges, pilot use-cases and get feedback on the results

5 AARC Work areas

6 First Results

7 Repackage and add what is missing
Training and Outreach Requirements & existing material - - Value proposition - Federation 101 - Training for SPs - Training on AARC results Repackage and add what is missing First document describing the approach to the training: Report on the identified target groups for training and their requirements End of the month the first online module on federated access

8 Policy and Best Practices Harmonisation
Security Incident on FIM To agree on a generic security incident response procedure for federations Sirtfi Trust Framework to be finalised at the next I2 Tech Exc Sirtfi WG: SIRTFI LoA work To agree on a sustainable LoA framework AARC (through surveys and FIM4R) looking at immediate and longer-term need by SPs and RPs: survey+for+SP+communities Key challenge is cost of operation, and who bears this costs R&E federations and their IdPs looking at the ‘service aspect’ of providing assurance

9 Architecture Design Analysis of requirements
Analysis of AA technologies Guest Identities Attribute Authorities – Token Translation Blueprint Architecture Sep15 Dec15 Apr15 Apr17 Jul16

10 Architecture Design – Analysis of requirements
Past Activities FIM4R & TERENA AAA Study AARC Surveys BioVel, CLARIN, D4Science, DARIAH, EISCAT, EUDAT, FMI, PSNC, UMBRELLA, … AARC Requirement Analysis (available end of Sept.) AARC Interviews EGI, ELIXIR, EUDAT, GN4, LIBRARIES (UKB), …

11 Architecture Design – Analysis of requirements
User Friendliness Homeless Users Different Levels of Assurance Community based authorization Flexible and scalable attribute release policies Attribute Aggregation & Account Linking Federation solutions based on open and standards based technologies Persistent & Unique User Identifiers User managed Identity Information Up to date identity information User groups and roles Step up authentication Browser and non-browser based federated access Delegation Social media identities Integration with e-Government infrastructures Service Provider Friendliness Effective Accounting Policy Harmonization Federated Incident report Handling Sufficient Attribute release Awareness about R&E Federations Semantically harmonized identity attributes Simplified process for joining identity federation Best practices for terms and conditions

12 Architecture Design – Analysis of requirements
User Friendliness Homeless Users Different Levels of Assurance Community based authorization Flexible and scalable attribute release policies Attribute Aggregation & Account Linking Federation solutions based on open and standards based technologies Persistent & Unique User Identifiers User managed Identity Information Up to date identity information User groups and roles Step up authentication Browser and non-browser based federated access Delegation Social media identities Integration with e-Government infrastructures Service Provider Friendliness Effective Accounting Policy Harmonization Federated Incident report Handling Sufficient Attribute release Awareness about R&E Federations Semantically harmonized identity attributes Simplified process for joining identity federation Best practices for terms and conditions

13 Architecture Design – Next steps
Continue the interviews with the AARC stakeholders and the parallel work on Guest Identities and Attribute Authorities (AA) & Token Translation Services (TTS) End of October first internal draft release of AARC High Level Architecture End of December: Analysis of available AA technologies January – February: Consultation with stakeholders around the AARC High Level Architecture Arpil: Release work on Guest Identities , AAs and TTS July: 1st version of the AARC AAI Architecture Framework

14

Download ppt "The AARC Project Licia Florio AARC Coordinator GÉANT"

Similar presentations

Federated Identity Management for Researchers – A quick overview from GÉANT BoF TNC 2014 20 May 2014 Dublin.

Federated Identity Management for Researchers – A quick overview from GÉANT BoF TNC May 2014 Dublin.
Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.

Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.
BoF: Federated Identity Management for Researchers David Kelsey (STFC-RAL) TNC2014, Dublin 20 May 2014.

BoF: Federated Identity Management for Researchers David Kelsey (STFC-RAL) TNC2014, Dublin 20 May 2014.
Www.geant.org AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.

AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.

Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
Updates Licia Florio, TERENA REFEDS Meeting 5 Sept 2012.

Updates Licia Florio, TERENA REFEDS Meeting 5 Sept 2012.
Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.

Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.
European Life Sciences Infrastructure for Biological Information www.elixir-europe.org Life science community update for the 7 th Federated Identity Management.

European Life Sciences Infrastructure for Biological Information Life science community update for the 7 th Federated Identity Management.
7 th FIM 4 R meeting 23-24 April 2014 ESRIN Frascati.

7 th FIM 4 R meeting April 2014 ESRIN Frascati.
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.

Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.
Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.

Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.
Https://aarc-project.eu Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.

Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.
JRA1.4 Models for implementing Attribute Providers and Token Translation Services Andrea Biancini.

JRA1.4 Models for implementing Attribute Providers and Token Translation Services Andrea Biancini.
Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.

Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos https://wiki.geant.org/display/AARC/AARC+Architecture+-+private.

Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos Open Day Event: Towards the European Open.

Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos Open Day Event: Towards the European Open.
Federated Identity Management for Scientific Collaborations The Common Vision David Kelsey (STFC) 3 Nov 2011.

Federated Identity Management for Scientific Collaborations The Common Vision David Kelsey (STFC) 3 Nov 2011.
Www.egi.eu EGI-InSPIRE RI-261323 EGI-InSPIRE www.egi.eu EGI-InSPIRE RI-261323 Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team

Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team
Research Community Requirements Ann Harding, SWITCH Cambridge July 2014.

Research Community Requirements Ann Harding, SWITCH Cambridge July 2014.

Similar presentations

Ads by Google