Presentation is loading. Please wait.

Presentation is loading. Please wait.

BfB: Supporting Collaboration with Infrastructure.

Published byRobert Singleton Modified over 8 years ago

Similar presentations

Presentation on theme: "BfB: Supporting Collaboration with Infrastructure."— Presentation transcript:

1 BfB: Supporting Collaboration with Infrastructure

2 Topics The components: COmanage Grouper Shibboleth The activities VO versus Enterprise IdM Attributes and Metadata International Collaboration

3 The “Bedrock” Grant Building from Bedrock: Infrastructure Improvements for Collaboration and Science – an NSF OCI grant Focus on further developing and integrating tools to allow collaborations to operate efficiently in the IdM space COmanage Grouper Shibboleth http://www.internet2.edu/bedrock/

4 COmanage Scalable identity, group, access management for collaborative organizations, synthesizing identity needs and infrastructure from federated sources as well as internal CO sources Partner CO include: LIGO, iPlant, Bamboo

5

6 COmanage Upcoming deliverables Implementation by initial VO Hosted instance VAMP – a VO Advanced CAMP More domesticated applications Federated and social identity authentication REST API for applications to tie in to for authentication and other IdM needs http://www.internet2.edu/comanage

7 Grouper A rich, scalable toolkit to manage group information in the identity infrastructure Groups help consolidate actions around provisioning, reporting, access

8

9 Grouper Immediate deliverables and activities funded by Bedrock: Federated groups and Grouper instances http://www.internet2.edu/grouper

10 Shibboleth A standards based, open source software package for web single sign-on across or within organizational boundaries A powerful force behind federated identityImmediate deliverables and activities funded by Bedrock: Expand web-based architecture to non-web services

11 SAML federations worldwide – a bit of size

12 Shibboleth Upcoming items Expand web-based architecture to non-web services Single IdP log out Centralized discovery service Improved TestShib code http://shibboleth.internet2.edu/

13 More on the collaboration space How VO and Enterprise IdM differ VO often have greater federation needs VO generally built around unique data sets, instruments VO often multi-institutional, multi-national Enterprise IdM (usually) has a stronger LoA Enterprise IdM (usually) have a stronger infrastructure

14 Attributes and metadata Push versus pull in the domesticated application space Or, real time versus on-demand information to applications? What metadata should exist so that different collaboration management platforms can share information about their CO? What metadata should exist in a universe of CO?

15 Grouper in a VO context “We chose Grouper because of its flexibility, the number and types of interfaces (web services interfaces in particular), and because we could see that it was being solidly developed and supported.” - Scott Koranda, Senior Scientist @ LIGO VO have a need for group and group management similar to what enterprise need

16 Shibboleth, OpenID, Facebook… Federated versus Social identity Federated identity leverages organizational identity, rich attributes and multiple levels of assurance Social identity, represented by Google, MSN, Yahoo!, AOL, Facebook, etc. provide convenient and lightweight identities for many popular sites

17 Common traits to CO outside the portal world Single CO Probably a command-line oriented CO with an equal focus on person identity and tool availability Tool integration possibilities with a published REST API Multiple CO within the CMP Probably a CO that is acting more as a service provider to various groups than one focused on a single collaboration effort, where absolute control over branding is important See the CO Assessment Document to help understand requirements of a complex environment

18 Common traits to Portal-based CO Single CO Probably a CO with a more app-focused collaboration See the Domestication Wiki for apps that may suit your VO Multiple CO in a CMP Probably a CO that is acting as a service provider to a variety of collaborations that cannot share resources fully, but where the apps and services are still the focus of the collaboration

19 Outreach efforts International collaborations on collaboration COIN – SURFnet COIP – SWAMI Gakunin federation in Japan

20 URL COmanage REST API: https://spaces.internet2.edu/display/COmanage/REST +COnnector CO Requirements Assessment Document: https://spaces.internet2.edu/display/COmanage/CO+R equirements+Assessment Domesticated Application wiki: https://wiki.surfnetlabs.nl/display/domestication

Download ppt "BfB: Supporting Collaboration with Infrastructure."

Similar presentations

Connected Health Framework

Connected Health Framework
NATIONAL AERONAUTICS AND SPACE ADMINISTRATION 1 NASA Earth Science Data Systems (ESDS) Software Reuse Working Group CEOS WIGSS-22 Annapolis, MD September.

NATIONAL AERONAUTICS AND SPACE ADMINISTRATION 1 NASA Earth Science Data Systems (ESDS) Software Reuse Working Group CEOS WIGSS-22 Annapolis, MD September.
ASCR Data Science Centers Infrastructure Demonstration S. Canon, N. Desai, M. Ernst, K. Kleese-Van Dam, G. Shipman, B. Tierney.

ASCR Data Science Centers Infrastructure Demonstration S. Canon, N. Desai, M. Ernst, K. Kleese-Van Dam, G. Shipman, B. Tierney.
The FI-WARE Project – Base Platform for Future Service Infrastructures OCTOBER 2011 Presentation at proposers day.

The FI-WARE Project – Base Platform for Future Service Infrastructures OCTOBER 2011 Presentation at proposers day.
Drive-By Dialogues. Presenter’s Name Topics The Long Strange Trip of I2 – NLR Merger A Brief Comment on Optical Networking Middleware Developments Security.

Drive-By Dialogues. Presenter’s Name Topics The Long Strange Trip of I2 – NLR Merger A Brief Comment on Optical Networking Middleware Developments Security.
A Middleware Unified Field Theory Identity Management / Directories Privileges / Groups Single Sign-On / Federation Enterprise Integration from network.

A Middleware Unified Field Theory Identity Management / Directories Privileges / Groups Single Sign-On / Federation Enterprise Integration from network.
December 19, 2006 Solving Web Single Sign-on with Standards and Open Source Solutions Trey Drake AssetWorld 2007 Albuquerque, New Mexico November 2007.

December 19, 2006 Solving Web Single Sign-on with Standards and Open Source Solutions Trey Drake AssetWorld 2007 Albuquerque, New Mexico November 2007.
May 23 2007 Archiving 2007 1 PAWN: A Policy-Driven Software Environment for Implementing Producer- Archive Interactions in Support of Long Term Digital.

May Archiving PAWN: A Policy-Driven Software Environment for Implementing Producer- Archive Interactions in Support of Long Term Digital.
Thee-Framework for Education & Research The e-Framework for Education & Research an Overview TEN Competence, Jan 2007 Bill Olivier,

Thee-Framework for Education & Research The e-Framework for Education & Research an Overview TEN Competence, Jan 2007 Bill Olivier,
Realising the Potential of Service Oriented Architecture Kris Horrocks Connected Systems Division Microsoft.

Realising the Potential of Service Oriented Architecture Kris Horrocks Connected Systems Division Microsoft.
TUESDAY 24 APR 2012 COLLABORATION IS HAPPENING: UPDATES FROM THE FIELD AND BEYOND HEATHER FLANAGAN INTERNET2 HAROLD TEUNISSEN SURFNET.

TUESDAY 24 APR 2012 COLLABORATION IS HAPPENING: UPDATES FROM THE FIELD AND BEYOND HEATHER FLANAGAN INTERNET2 HAROLD TEUNISSEN SURFNET.
Widely Distributed Access Management Tom Barton University of Chicago.

Widely Distributed Access Management Tom Barton University of Chicago.
Presenter’s Name InCommon Approximately 80 members and growing steadily More than two million “users” Most of the major research institutions (MIT joining.

Presenter’s Name InCommon Approximately 80 members and growing steadily More than two million “users” Most of the major research institutions (MIT joining.
Optimizing Business Operations Business Priorities Presentation.

Optimizing Business Operations Business Priorities Presentation.
Intro to Identity for Developers Tom Barton, U Chicago Scott Cantor, Ohio State Patrick Michaud, U Washington.

Intro to Identity for Developers Tom Barton, U Chicago Scott Cantor, Ohio State Patrick Michaud, U Washington.
AAF Middleware update February16 2012 Presented by Terry Smith Technical Manager and Heath Marks Manager.

AAF Middleware update February Presented by Terry Smith Technical Manager and Heath Marks Manager.
IPlant Collaborative Tools and Services Workshop iPlant Collaborative Tools and Services Workshop Collaborating with iPlant.

IPlant Collaborative Tools and Services Workshop iPlant Collaborative Tools and Services Workshop Collaborating with iPlant.
External Identity and Authorization in GENI. Topics Federated identity and virtual organizations ABAC Creating and transporting attributes.

External Identity and Authorization in GENI. Topics Federated identity and virtual organizations ABAC Creating and transporting attributes.
11-July-2011, SURFnet Heather Flanagan, COmanage Project Coordinator Benn Oshrin, COmanage Developer Scott Koranda, U. Wisconsin – Milwaukee and LIGO.

11-July-2011, SURFnet Heather Flanagan, COmanage Project Coordinator Benn Oshrin, COmanage Developer Scott Koranda, U. Wisconsin – Milwaukee and LIGO.
Gee, I could have had a VO: Cloud- based COmanage Chris Hubing and Jim Leous.

Gee, I could have had a VO: Cloud- based COmanage Chris Hubing and Jim Leous.

Similar presentations

Ads by Google