Presentation is loading. Please wait.

Presentation is loading. Please wait.

Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.

Published bySharon Wilson Modified over 8 years ago

Similar presentations

Presentation on theme: "Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust."— Presentation transcript:

1 connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust & Identity Committee Member

2 2 connect communicate collaborate The Strategic Value of Trust & Identity Collaborative applications of research & education networks require trust & identity Our trust & identity systems enable greater collaboration, driving use of the network The network becomes more cost- efficient to operate, and more business-critical to its users

3 3 connect communicate collaborate NREN Trust & Identity Thinking Differently For most providers of identity, the user is the product and their customers are advertisers. This inherently erodes security, privacy and other characteristics that are important to NREN users The NRENs provide these characteristics through the federation of identity within the NREN community (“federated ID”): the products are trust and identity, and our users are the customers

4 4 connect communicate collaborate GÉANT & NREN Leadership Federated ID is an excellent match with the federative composition of the European R&E environment Research and education communities need to express more elaborate trust relationships, spanning complex international communities, than commercial offerings can support European NRENs today are world-leaders in developing & operating Federated ID systems eduroam: global system for wireless mobility eduGAIN: global system for Web SSO Outside R&E there is a trend towards “social ID”, driven by low cost and high convenience that does not protect the user nor support complex needs

5 5 connect communicate collaborate Managing Trust & Identity Strategy Establish and manage a European NREN Strategy for Trust & Identity Implement this strategy through the coordination of the NRENs’ various initiatives; Nationally, GÉANT, REFEDs and other means. Identify and, where appropriate, address any unmet requirements or capability gaps Managed and coordinated by the NREN Trust & Identity Committee

6 6 connect communicate collaborate Areas of Strategic Focus Harmonise our national propositions to improve our European and global propositions, and drive adoption of these at a national level Improve the effectiveness and excellence of our European operational capability to deliver these propositions Build bridges with other sectors, both operationally and through other collaborations

7 connect communicate collaborate GÉANT: Delivering Trust & Identity EC meets GÉANT 19 June 2014 Brussels Ann Harding, SWITCH Application Services Activity Leader

8 8 connect communicate collaborate Organisation and Structure Key themes Trust & Identity Services in GÉANT Application Services eduPKI eduroam eduGAIN Federation as a Service Moonshot Enabling Users Pilots Enhancing Core Services Core Production Services

9 9 connect communicate collaborate Define strategy for providing the GÉANT Cloud Service Task 2 Task 1 Task 3 About eduPKI Help users obtain the right certificates for the right purpose Competence centre for PKI issues Solving problems commercial operators won't solve c.130 certificates issued, eduroam as main user

10 10 connect communicate collaborate Task 2 Task 3 About eduroam Secure, consistent roaming access service Home organisation does authentication, roaming organisation does authorisation GÉANT operates European eduroam infrastructure GÉANT delivers service development to enhance usability, support takeup “Open your laptop and be online”

11 11 connect communicate collaborate Almost 70 countries worldwide, 44 in Europe Over 9300 eduroam service locations in Europe KPITargetAchieved Successful national authentications per month 56 000 00089 545 802 Successful international authentications per month 8 000 00017 576 920 ETLRS Uptime 99% >99% eduroam Service Delivery

12 12 connect communicate collaborate CAT (configuration assistant tool) launched on 25 March 2013 eduroam Service Innovations Making eduroam even easier to use 577 IdP registered (432 fully configured) 2900 admin downloads and c500,000 end-user downloads of profiles Apple iOS and MS Windows 7 together make up over 50% of all downloads

13 13 connect communicate collaborate About eduGAIN Federated identity and trust worldwide Technical platform for the trustworthy exchange of Security Assertion Markup Language (SAML) metadata Policy Framework for administrative and operational participation Connects users and services securely across borders Global Interfederation Service

14 14 connect communicate collaborate eduGAIN Service Delivery 24 eduGAIN Members 7 Joining eduGAIN 0 Candidate Federations 17 Other Federations Status: 18 May 2014

15 15 connect communicate collaborate Service Innovation – Federation as a Service - Bringing federation to all Market Analysis of NRENs who do not have a Federation Develop needed policy and technical infrastructure for offering Federation as a Service

16 16 connect communicate collaborate Service Innovation - Moonshot Pilot New features for federated identity beyond web CSC/Nordunet: SSH at Finland’s 2 nd largest supercomputer iRODs demo IdPs at Tampere & Helsinki Deployment Architecture at Swiss Light Source (PSI) Deployment complete at UK Diamond Light CESNET: Successful SAMBA tests A single unifying technology to manage user identities and control access to a wide range of web and non-web services

17 17 connect communicate collaborate Service Innovation - Enabling Users Helping communities benefit from federated identity Collaborate with international user communities to increase usage of AAI infrastructure Act as an expert partner for large, pan- European projects with AAI requirements Help increase the number of services using eduGAIN Pipeline for service development

18 18 connect communicate collaborate User-friendliness Homeless Users Scalable and Flexible Attribute Release Credential Translation Non-Browser Access Attribute Aggregation Levels of Assurance Enabling Users Addressing the challenges for researchers and other users

19 19 connect communicate collaborate Collaborative Development Enabling users’ community pilots Requirements for Levels of Assurance Mapping to Federation Policies ELIXIR Services in HAKA Production Federation Architectures for using eduGAIN Consult on DASISH AAI strategy Support safe attribute release via GÉANT CoCo Bridging Umbrella- Persistent Identities Non-web-browser Based Access

20 20 connect communicate collaborate Roadmap Data Protection & Code of Conduct Technical Service Improvements Launch Federation as a Service Pilot Ongoing Global Engagement Enhanced STORK2.0 Engagement Moonshot Pilot Additional User Community Support

21 connect communicate collaborate Thank you Any questions?

Download ppt "Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust."

Similar presentations

Innovation through participation eduGAIN federation operator training eduGAIN interfederation service 2011-10-17/18 Valter Nordh, NORDUnet / GU 1.

Innovation through participation eduGAIN federation operator training eduGAIN interfederation service /18 Valter Nordh, NORDUnet / GU 1.
Federated Identity Management for Researchers – A quick overview from GÉANT BoF TNC 2014 20 May 2014 Dublin.

Federated Identity Management for Researchers – A quick overview from GÉANT BoF TNC May 2014 Dublin.
EduGAIN – Are we there yet? Lukas Hämmerle (ghost writer, Brook Schofield) FIM4R, Helsinki – 2 October 2013.

EduGAIN – Are we there yet? Lukas Hämmerle (ghost writer, Brook Schofield) FIM4R, Helsinki – 2 October 2013.
© Janet 2012 Project Moonshot Technology, use cases & pilot 17 January, 2012 Haka conference, Helsinki 1.

© Janet 2012 Project Moonshot Technology, use cases & pilot 17 January, 2012 Haka conference, Helsinki 1.
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.

2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
Stork is an EU co-funded project INFSO-ICT-PSP-224993 STORK PRESENTATION STORK Presentation Lithuania March 2010.

Stork is an EU co-funded project INFSO-ICT-PSP STORK PRESENTATION STORK Presentation Lithuania March 2010.
FIM-ig Federated Identity Management Interest Group.

FIM-ig Federated Identity Management Interest Group.
To identity federation and beyond! Josh Howlett JANET(UK) HEAnet 2008.

To identity federation and beyond! Josh Howlett JANET(UK) HEAnet 2008.
Federated Identity Management in New Zealand Sat Mandri Service Manager TNC15 REFEDs Meeting, 14 th June 2015.

Federated Identity Management in New Zealand Sat Mandri Service Manager TNC15 REFEDs Meeting, 14 th June 2015.
Developments and challenges in authentication and authorisation Klaas Wierenga Berlin, 23 May 2006.

Developments and challenges in authentication and authorisation Klaas Wierenga Berlin, 23 May 2006.
Innovation through participation Interfederation through eduGAIN - steps and challenges eduGAIN interfederation service 2012-02-27 Federated Identity Systems.

Innovation through participation Interfederation through eduGAIN - steps and challenges eduGAIN interfederation service Federated Identity Systems.
Www.geant.org AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.

AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.
Michal Procházka, Jan Oppolzer CESNET.

Michal Procházka, Jan Oppolzer CESNET.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.

Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
Updates Licia Florio, TERENA REFEDS Meeting 5 Sept 2012.

Updates Licia Florio, TERENA REFEDS Meeting 5 Sept 2012.
Connect communicate collaborate GÉANT3plus Enabling Users Pilots Lukas Hämmerle Task Leader Enabling Users

Connect communicate collaborate GÉANT3plus Enabling Users Pilots Lukas Hämmerle Task Leader "Enabling Users"
Networks ∙ Services ∙ People www.geant.org Mandeep Saini TF-MSP, Espoo, Finland Service Delivery and Adoption 10 th Sep 2015 Task Leader, GN4-1 SA7 T3.

Networks ∙ Services ∙ People Mandeep Saini TF-MSP, Espoo, Finland Service Delivery and Adoption 10 th Sep 2015 Task Leader, GN4-1 SA7 T3.
Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.

Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.
European Life Sciences Infrastructure for Biological Information www.elixir-europe.org Life science community update for the 7 th Federated Identity Management.

European Life Sciences Infrastructure for Biological Information Life science community update for the 7 th Federated Identity Management.
Connect communicate collaborate GÉANT3 Services Connectivity and Monitoring Services by and for NRENs Ann Harding, SWITCH TNC 2010.

Connect communicate collaborate GÉANT3 Services Connectivity and Monitoring Services by and for NRENs Ann Harding, SWITCH TNC 2010.

Similar presentations

Ads by Google