Presentation is loading. Please wait.

Presentation is loading. Please wait.

Federations in Texas Barry Ribbeck University of Texas Health Science Center at Houston.

Published byAshley Oliver Modified over 9 years ago

Similar presentations

Presentation on theme: "Federations in Texas Barry Ribbeck University of Texas Health Science Center at Houston."— Presentation transcript:

1 Federations in Texas Barry Ribbeck University of Texas Health Science Center at Houston

2 Context Definitions Target: A federation member offering resource(s) Origin: A federation member requesting access to resources in exchange for asserted information Member: An entity agreeing to abide by the policies governing the federation

3 Potential Need for Federation(s) UT Information Security UT Austin Define System UTHSC-Houston Blackboard resource UTMB Center for bio-terrorism research Texas Medical Center – Houston collaborative efforts (17 physical institutions, 44 external institutions with hundreds of business partner relations per institution. Houston Higher Ed: UT-HSCH, Rice, A&M, Baylor, U of H, Texas Southern, HCC, Houston Baptist, U of St. Thomas, UT-MDACC

4 UT Infosec UT – A state agency with 17 component parts geographically dispersed across the state of Texas operating independently. Information Security (Infosec) is a cross institutional group charged with sharing information regarding security related issues and coordinating security related communications between institutions. All UT components operate under a common PKI, so a trust fabric exists Already committed to using Shibboleth as infrastructure exists to support it

5 UT Austin Define System A legacy mainframe application with extensive web front end development, used by multiple UT institutions within the state. Contains financial, student and other sensitive data. Austin is considering re-vamping their Authentication/Authorization (AA) process for this web based application as well as for the campus in general Austin no longer wants to support Identification and Authorization (I&A) for external components accessing this application.

6 UTHSCH-Houston Blackboard Houston has satellite programs dispersed around the state. Most of these programs involve faculty and students at other UT institutions. Currently, non-UTHSCH users utilizing the Houston Blackboard Course Management System resource require a guest account. Once the infrastructure is in place, it will allow courses offered at Houston to scale beyond the UT virtual boundaries. Planned deployment in Q1 2004

7 UTMB bio-terrorism facility UT Medical Branch in Galveston is building a level 4 biological research lab They are a candidate for a federal bio- terrorism facility How do we ensure security and access control to information that will be made available to collaborators inside and outside of the state?

8 Texas Medical Center 17 institutions operating independently with a 4 square mile area Largest medical center in the world Many of the faculty and providers are cross institutional affiliates. Hippa is forcing US to change the way we distribute non-mainstream health information (SMIME/Web) between institutional providers

9 Houston Higher Ed Many Institutions of higher learning Many resources (library resources) shared both locally and state wide Programs currently exist to allow students from one institution to take for credit courses at other institutions and pay for those courses locally.

10 Why does a Federation exist? To provide a venue and policy structure(s) for enterprises with common needs to access or provide digital resources securely while leveraging a common trust fabric. To provide assurance of compliance with policy of the trust fabric to relying parties. To enforce the polices of the Federation

11 Why does an Origin Join a Federeration? To provide a mechanism for its users to access external resources offered via the Federation thereby extending the utility of its internal resources in a scalable fashion To leverage the scale provided by a trust fabric and reduce the number of 1 to 1 Relying Party Agreements.

12 Why does a Target join a Federation? To provide access to resources of interest to a larger community with some level of control and accountability. To leverage the scale of a shared trust fabric and reduce the number of 1 to 1 Relying Party Agreements.

13 Why a another federation? Federations membership is based on the needs of the constituents. Target requirements and Origin requirements may not match nicely with RPA in a more generalized Federation. Will targets that require a high LOA for I&A be satisfied with an assertion of how authenticated? When Target and Origin are “close” within a federation and the applications are mission critical why outsource the federation when they are already supporting the ends. It may be easier to establish a “local” federation as policies within a community may already exist (PKI).

Download ppt "Federations in Texas Barry Ribbeck University of Texas Health Science Center at Houston."

Similar presentations

PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.

PKI Solutions: Buy vs. Build David Wasley, U. California (ret.) Jim Jokl, U. Virginia Nick Davis, U. Wisconsin.
Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.

Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.
1 The Challenges of Creating an Identity Management Infrastructure for the University of California David Walker Karl Heins Office of the President University.

1 The Challenges of Creating an Identity Management Infrastructure for the University of California David Walker Karl Heins Office of the President University.
Joint CASC/CCI Workshop Report Strategic and Tactical Recommendations EDUCAUSE Campus Cyberinfrastructure Working Group Coalition for Academic Scientific.

Joint CASC/CCI Workshop Report Strategic and Tactical Recommendations EDUCAUSE Campus Cyberinfrastructure Working Group Coalition for Academic Scientific.
The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.
SLN to Open SUNY Task Force on Postsecondary Online Education in Florida Carey Hatch – Associate Provost Academic Technologies and Instructional Services.

SLN to Open SUNY Task Force on Postsecondary Online Education in Florida Carey Hatch – Associate Provost Academic Technologies and Instructional Services.
The Digital Preservation Network at UT Austin Chris Jordan Texas Advanced Computing Center.

The Digital Preservation Network at UT Austin Chris Jordan Texas Advanced Computing Center.
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.

David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
Beispielbild Shibboleth, a potential security framework for EDIT Lutz Suhrbier AG Netzbasierte Informationssysteme (http://www.ag-nbi.de)http://www.ag-nbi.de.

Beispielbild Shibboleth, a potential security framework for EDIT Lutz Suhrbier AG Netzbasierte Informationssysteme (
1 eAuthentication in Higher Education Tim Bornholtz Session #47.

1 eAuthentication in Higher Education Tim Bornholtz Session #47.
Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.

Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.
Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan,

Building Trusted Transactions Identity Authentication & Attribute Exchange In Public and Private Federations OASIS Conference September 2010 Joni Brennan,
Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.

Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.
Introduction to Environmental Management Systems (EMS) Environmental Health & Safety Environmental Protection Program 2008-2009.

Introduction to Environmental Management Systems (EMS) Environmental Health & Safety Environmental Protection Program
Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating.

Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating.
Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –

Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –
Identity Management and PKI Credentialing at UTHSC-H Bill Weems Academic Technology University of Texas Health Science Center at Houston.

Identity Management and PKI Credentialing at UTHSC-H Bill Weems Academic Technology University of Texas Health Science Center at Houston.
The Business of Identity Management Barry R. Ribbeck Director Systems Architecture & Infrastructure Rice University

The Business of Identity Management Barry R. Ribbeck Director Systems Architecture & Infrastructure Rice University
1 Governance in Identity Management Federations Clair Goldsmith, Ph.D. The University of Texas System Administration.

1 Governance in Identity Management Federations Clair Goldsmith, Ph.D. The University of Texas System Administration.
1 USHER Update Fed/ED December 2007 Jim Jokl University of Virginia.

1 USHER Update Fed/ED December 2007 Jim Jokl University of Virginia.

Similar presentations

Ads by Google