Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSC – Tieteen tietotekniikan keskus Oy CSC – IT Center for Science Ltd. SAML2 draft profile in Haka 17.2.2010 Vienna Mikael Linden.

Published byGeoffrey Berry Modified over 8 years ago

Similar presentations

Presentation on theme: "CSC – Tieteen tietotekniikan keskus Oy CSC – IT Center for Science Ltd. SAML2 draft profile in Haka 17.2.2010 Vienna Mikael Linden."— Presentation transcript:

1 CSC – Tieteen tietotekniikan keskus Oy CSC – IT Center for Science Ltd. SAML2 draft profile in Haka 17.2.2010 Vienna Mikael Linden

2 Why SAML2 profiles Earlier, everyone used the same product –Shibboleth 1.3, Shibboleth 2, SimpleSAMLphp Now, various products are to be used –Commercial products –Commercial services (SaaS) with federated access Can’t use various products without a common profile

3 Haka SAML2 profile draft Additions to saml2int.org: https is MUST in endpoints OPTIONAL single logout (MUST use redirect binding, MUST be signed) –SHOULD ”behave well” (inform user on failures, tear down application level sessions…) OPTIONAL IdP Discovery Service Additions to metadata interoperability profile: Providers MUST use a CA approved by the federation (TERENA TCS, Sonera CA) validUntil MUST in metadata root element Valid attribute scopes (e.g. bobsmith@universityx.fi) –”operator provides using formats deemed currently appropriate” RequestedAttributes elements primary vehicle to pass ARPs to IdPs

4 Window of opportunity is still open for a common profile Everyone wins if there are fewer profiles –cross-federation use of software/services –confederations Haka’s draft profile in English: http://tinyurl.com/yj6opxehttp://tinyurl.com/yj6opxe –Will be presented to Haka technical advisory committee on Friday

Download ppt "CSC – Tieteen tietotekniikan keskus Oy CSC – IT Center for Science Ltd. SAML2 draft profile in Haka 17.2.2010 Vienna Mikael Linden."

Similar presentations

Suchin Rengan Principal Technical Architect Salesforce.com

Suchin Rengan Principal Technical Architect Salesforce.com
Dublin Core for Digital Video: Overview of the ViDe Application Profile.

Dublin Core for Digital Video: Overview of the ViDe Application Profile.
Federation management A mess? 9.4.2008 Nordunet Conference Mikael Linden CSC, the Finnish IT Center for Science.

Federation management A mess? Nordunet Conference Mikael Linden CSC, the Finnish IT Center for Science.
Innovation through participation GÉANT Data Protection Code of Conduct (DP CoC) 21.6.2012 FIM for research collaboration workshop Mikael Linden,

Innovation through participation GÉANT Data Protection Code of Conduct (DP CoC) FIM for research collaboration workshop Mikael Linden,
CSC – Tieteen tietotekniikan keskus Oy CSC – IT Center for Science Ltd. RAKETTI-OPI Integration Workgroup Action Plan.

CSC – Tieteen tietotekniikan keskus Oy CSC – IT Center for Science Ltd. RAKETTI-OPI Integration Workgroup Action Plan.
Saml-v2_0-intro-dec051 Security Assertion Markup Language An Introduction to SAML 2.0 Tom Scavo NCSA.

Saml-v2_0-intro-dec051 Security Assertion Markup Language An Introduction to SAML 2.0 Tom Scavo NCSA.
5/25/2015 AEB/Yleisesittely Roaming network access using Shibboleth in University of Helsinki Fall 2004 Internet2 Member Meeting 29th of September, 2004.

5/25/2015 AEB/Yleisesittely Roaming network access using Shibboleth in University of Helsinki Fall 2004 Internet2 Member Meeting 29th of September, 2004.
Kalmar Union 15.1.2008 Mikael Linden CSC, the Finnish IT Center for Science.

Kalmar Union Mikael Linden CSC, the Finnish IT Center for Science.
® Practical Approaches to Web Services Authentication 72nd OGC Technical Committee Frascati, Italy Fiona Culloch March 9, 2010 Sponsored and hosted by.

® Practical Approaches to Web Services Authentication 72nd OGC Technical Committee Frascati, Italy Fiona Culloch March 9, 2010 Sponsored and hosted by.
1 eAuthentication in Higher Education Tim Bornholtz Session #47.

1 eAuthentication in Higher Education Tim Bornholtz Session #47.
Innovation through participation eduGAIN federation operator training eduGAIN policy eduGAIN training in Vienna 17-18 Oct 2011

Innovation through participation eduGAIN federation operator training eduGAIN policy eduGAIN training in Vienna Oct 2011
Agenda Project beginnings and funding. Purpose of the federation. Federation members. Federation protocols. Special features in our federation. Pilot.

Agenda Project beginnings and funding. Purpose of the federation. Federation members. Federation protocols. Special features in our federation. Pilot.
CSC – Tieteen tietotekniikan keskus Oy CSC – IT Center for Science Ltd. The Language Bank of Finland User Authentication and Authorization Service https://aai.csc.fi/

CSC – Tieteen tietotekniikan keskus Oy CSC – IT Center for Science Ltd. The Language Bank of Finland User Authentication and Authorization Service
GFIPM Web Services Concept and Normative Standards GFIPM Delivery Team Meeting November 2011.

GFIPM Web Services Concept and Normative Standards GFIPM Delivery Team Meeting November 2011.
Shibboleth 2.0 : An Overview for Developers Scott Cantor The Ohio State University / Internet2 Scott Cantor The Ohio.

Shibboleth 2.0 : An Overview for Developers Scott Cantor The Ohio State University / Internet2 Scott Cantor The Ohio.
SWITCHaai Team Federated Identity Management.

SWITCHaai Team Federated Identity Management.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
GakuNin Registration System Motonori Nakamura, NII Japan APAN33 rd Meeting (16 Feb. 2012)

GakuNin Registration System Motonori Nakamura, NII Japan APAN33 rd Meeting (16 Feb. 2012)
SWITCHaai Team Introduction to Shibboleth.

SWITCHaai Team Introduction to Shibboleth.
CASE: Haka federation EuroCAMP, 3-5 April, 2006 CSC, the Finnish IT Center for Science

CASE: Haka federation EuroCAMP, 3-5 April, 2006 CSC, the Finnish IT Center for Science

Similar presentations

Ads by Google