Research Community Requirements Ann Harding, SWITCH Cambridge July 2014.

Slides:



Advertisements
Similar presentations
Innovation through participation Data Protection Code of Conduct (DP CoC) REFEDS Helsinki Mikael Linden, CSC – IT Center for Science
Advertisements

Federated Identity Management for Researchers – A quick overview from GÉANT BoF TNC May 2014 Dublin.
EduGAIN – Are we there yet? Lukas Hämmerle (ghost writer, Brook Schofield) FIM4R, Helsinki – 2 October 2013.
Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.
FIM-ig Federated Identity Management Interest Group.
EUROPEAN IDENTITY STRATEGY 1 NICOLE HARRIS e-Infrastructure Summer Workshops, Federated Identity Technology.
Federated Identity Management in New Zealand Sat Mandri Service Manager TNC15 REFEDs Meeting, 14 th June 2015.
BoF: Federated Identity Management for Researchers David Kelsey (STFC-RAL) TNC2014, Dublin 20 May 2014.
Authentication and Authorization in a federated environment Jules Wolfrat (SARA)
AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
CLARIN Infrastructure Vision (and some real needs) Daan Broeder CLARIN EU/NL Max-Planck Institute for Psycholinguistics.
Connect communicate collaborate GÉANT3plus Enabling Users Pilots Lukas Hämmerle Task Leader "Enabling Users"
Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.
European Life Sciences Infrastructure for Biological Information Life science community update for the 7 th Federated Identity Management.
7 th FIM 4 R meeting April 2014 ESRIN Frascati.
Jamie Hall (ILL). SciencePAD Persistent Identifiers Workshop PANData Software Catalogue January 30th 2013 Jamie Hall Developer IT Services, Institut Laue-Langevin.
EResearchers Requirements the IGTF model of interoperable global trust and with a view towards FIM4R AAI Workshop Presenter: David Groep, Nikhef.
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.
Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.
Authentication and Authorisation for Research and Collaboration David Kelsey AARC AHM Milan And mechanisms NA3 Task 4 – Scalable.
Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.
Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.
Authentication and Authorisation for Research and Collaboration David Groep AARC All Hands meeting Milano Policy and Best Practice.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos Open Day Event: Towards the European Open.
Federated Identity Management for Scientific Collaborations The Common Vision David Kelsey (STFC) 3 Nov 2011.
Understanding deployment issues on the Supply Chain Ann Harding, SWITCH, Nicole Harris, TERENA Cambridge July 2014.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
NREN Trust and Identity Strategy Ann Harding, SWITCH Cambridge July 2014.
AAI/Federated Identity Training Ann Harding, SWITCH Cambridge July 2014.
Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team
Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.
b2access.eudat.eu B2ACCESS The simple and secure authorisation and authentication platform of EUDAT This work is licensed under the Creative.
Connect communicate collaborate Internet2 Global Summit 27 April 2015 Washington DCs User Community Driven Development in Trust and Identity Services Ann.
Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,
Facing the challenge of relevance Erwin Bleumink 4 June 2013 TNC13.
European Grid Initiative AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting AARC and AARC2 Vienna, 1 st December.
Case Studies in Federated Identity Management for Research Communities Ann Harding, SWITCH/GN3plus Peter Gietz, DAASI International GmbH/DARIAH Tommi Nyro.
Connect communicate collaborate Case Studies in Federated Identity Management for Research Communities Ann Harding, SWITCH/GN3plus Peter Gietz, DAASI International.
David Groep Nikhef Amsterdam PDP & Grid AARC Authentication and Authorisation for Research and Collaboration an impression of the road ahead.
Federated Identity Management for Research Communities: FIM4R PSI workshop objectives Bob Jones, CERN.
Networks ∙ Services ∙ People Licia Florio TNC, Lisbon Consuming identities across e- Infrastructures 16 June 2015 PDO GÈANT.
Designing Identity Federation Policy, the right way Marina Vermezović, Academic Network of Serbia TNC2013 conference 4 May 2013.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos David Groep 9 th FIM4R Meeting The AARC Project.
Networks ∙ Services ∙ People Marina Adomeit TNC16 Conference, Prague Towards a platform for supporting collaboration GÉANT VOPaaS
Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.
Networks ∙ Services ∙ People Ann Harding Networkshop 44, Manchester Thinking globally, acting locally Trust and Identity in the GÉANT project.
Authentication and Authorisation for Research and Collaboration Licia Florio IGTF Meeting The AARC Project Amsterdam, 8 September.
Introduction to AAI Services
Boosting AAI for research and collaboration
Cross-sector and user-centric AAI
User Community Driven Development in Trust and Identity
eduTEAMS platform for collaboration Niels Van Dijk
Case Studies in Federated Identity Management for Research Communities
Federated Identity Management for Researchers (FIM4R)
EGI Security Policy Update
Mirjam van Daalen:: Paul Scherrer Institut
Boosting AAI for research and collaboration
Federated Identity Management for Scientific Collaborations
The AARC Project Licia Florio (GÉANT) Christos Kanellopoulos (GRNET)
The AARC Project Licia Florio AARC Coordinator GÉANT
ESA Single Sign On (SSO) and Federated Identity Management
AAI For Researchers Licia Florio AARC Project Coordinator GÉANT DI4R
AARC Blueprint Architecture and Pilots
Supporting communities with harmonized policy
AAI Architectures – current and future
Brian Matthews STFC EOSCpilot Brian Matthews STFC
FIM4R Requirements where GN3+ (SA5) is Active and Involved (9/2013)
Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.
Presentation transcript:

Research Community Requirements Ann Harding, SWITCH Cambridge July 2014

2 Connect | Communicate | Collaborate What eduGAIN is.

3 Connect | Communicate | Collaborate What people think eduGAIN is.

4 Connect | Communicate | Collaborate What we risk creating if we don’t close the gap wisely.

5 Connect | Communicate | Collaborate eduGAIN Gap Analysis – Research Community Requirements TERENA AAA Study Use cases, CERN to Life sciences and beyond 5 flavours of AAI 25 Recommendations FIM4R Paper HEP, Life sciences, Humanities, Climate science 12 common requirements 4 recommendations to providers Group continues at RDA

6 Connect | Communicate | Collaborate User friendliness and Ease of use Browser federated access Non-browser federated access Bridging communities Technology translators Open standards and sustainable licenses Levels of Assurance Authorisation under community control Well defined and harmonised attributes Flexible and scalable attribute release Attributes that cross national borders/Data Protection Attribute aggregation for authorisation Privacy and data protection Security Incident Response in Federations Summary of High & Medium Requirements

7 Connect | Communicate | Collaborate User friendliness and Ease of use Browser federated access Non-browser federated access Bridging communities Technology translators Open standards and sustainable licenses Levels of Assurance Authorisation under community control Well defined and harmonised attributes Flexible and scalable attribute release Attributes that cross national borders/Data Protection Attribute aggregation for authorisation Privacy and data protection Security Incident Response in Federations Requirements vs. GÉANT engagement Active Partially Active Not Active

8 Connect | Communicate | Collaborate User friendliness and Ease of use Browser federated access Non-browser federated access Bridging communities Technology translators Open standards and sustainable licenses Levels of Assurance Authorisation under community control Well defined and harmonised attributes Flexible and scalable attribute release Attributes that cross national borders/Data Protection Attribute aggregation for authorisation Privacy and data protection Security Incident Response in Federations Requirements vs. maturity of solution Service/Tool/BCP* Research/Service Development Requirements only * Deployment not universally guaranteed

9 Connect | Communicate | Collaborate User friendliness and Ease of use Browser federated access Non-browser federated access Bridging communities Technology translators Open standards and sustainable licenses Levels of Assurance Authorisation under community control Well defined and harmonised attributes Flexible and scalable attribute release Attributes that cross national borders/Data Protection Attribute aggregation for authorisation Privacy and data protection Security Incident Response in Federations Requirements vs. supply chain critical path (Warning – dangerously simplified) IdP/Campus SP/Research Community Federation eduGAIN Other/very complicated

10 Connect | Communicate | Collaborate Collaborative pilots between user communities and GÉANT “Umbrella is the Federated Identity Solution of the Photon and Neutron Community, enabling user initiated trans- facility access.” “A connected network of people, information, tools, and methodologies for investigating, exploring and supporting work across the broad spectrum of the digital humanities.” “Basic life science information constitutes a testament of human and natural evolution and advancement. As such, this wealth of knowledge should be freely available for all to access, study and process”

11 Connect | Communicate | Collaborate DARIAH Goals Make DARIAH services available via eduGAIN Encourage attribute release based on GÉANT Code of Conduct Group and attribute management integration with DARIAH-DE Textgrid Lab tools for scholarly digital editions Support digital humanities researchers Find and use a wide range of research data Work across domains and disciplines Experiment and innovate in collaboration with other scholars

12 Connect | Communicate | Collaborate Combination of eduGAIN and community specific DARIAH homeless-IdP and attribute authority DARIAH has been able to meet many requirements Distributed user and privilege administration Policies that allow for integration into DFN- AAI and eduGAIN DARIAH would like to see more entities available in eduGAIN and reasonable attributes available eduGAIN is the best approach to pan European AAI for DARIAH but some time is needed to fulfil all needs DARIAH Experience

13 Connect | Communicate | Collaborate ELIXIR Goals Requirements for Levels of Assurance Make EGA and REMS available on a pan-European basis via eduGAIN Part of a wider portfolio of ELIXIR AAI work Research requiring AAI – Matching the treatment to the cancer One in 10 women in the EU-27 will develop breast cancer before the age of 80. If they can identify patterns of genes that are active in different tumours, we can diagnose and treat cancers earlier ELIXIR distributed infrastructure

14 Connect | Communicate | Collaborate A pan-European approach to LoA would be appreciated/necessary in the future Minimise ELIXIR-specific customisation ELIXIR Experience Next phase of AAI in ELIXIR – blueprint for discussion External IdPs via eduGAIN ELIXIR specific services for authorisation (REMS), non web, homeless users and community management Federated identity cross sector collaboration: REMS to be used by FI-CLARIN & FI- CESSDA

15 Connect | Communicate | Collaborate Umbrella Goals Bridging Home Institution Accounts with Umbrella persistent identities Enable Home Org identities to be used in Umbrella & Umbrella identities to use eduGAIN Non-web-browser based access Umbrella platform - a collaborative effort by leading European Photon and Neutron facilities as part of several EU projects Unique and persistent user identification for interdisciplinary user community from biology, physics to earth sciences Optimisation of the process from experimental data acquisition to data publication Swiss Light Source at Paul Scherrer Institute in Villigen Switzerland Six such facilities use Umbrella and serve over 30’000 users - 40% of these researchers use multiple facilities.

16 Connect | Communicate | Collaborate More opportunities for NREN/Research Infrastructure Collaboration Security analysis discussion at FIM4R Piloting with a wider community has benefits JANET/Diamond Light in UK Moonshot Pilot Confidentiality aspects critical for Umbrella - high competition, especially structural biology Authorisation is delegated to the systems participating in Umbrella Umbrella Experience

17 Connect | Communicate | Collaborate GÉANT Experience Better Understanding = Better Services White paper “Options for Joining eduGAIN” Improved public documentation & knowledgebase Learning the profile of the user communities: Where are their users? Where are their services? Get people thinking beyond technology – focus on workflows not eduGAIN Custom support for finding the best option Help reach the right federation contacts Misunderstanding == unhappy users Unhappy users will just go away and make all the same mistakes we did 10 years ago Community expertise even more valuable than eduGAIN

18 Connect | Communicate | Collaborate Sh aring knowledge of federation capabilities Survey of Levels of Assurance GÉANT Experience – Where do we see progress? Ask us for help: Federations looking to do more Support of GÉANT Code of Conduct Emerging ‘opt-out’ pilots for eduGAIN REFEDs Federation Operator Best Practice Research communities services appearing in national federations and eduGAIN Knowledge gained with these pilots helps support other communities & plan service

19 Connect | Communicate | Collaborate The right way to deliver the wings and the rainbows Preserve the core value of eduGAIN to NRENs, federations and their campus users Be very aware of the supply chain Listen carefully to the consistent demands of the user communities Open up new approaches to the requirements GÉANT, serving more than eduGAIN?

20 Connect | Communicate | Collaborate Quiz Time

21 Connect | Communicate | Collaborate Quiz Time 1.How is GÉANT working on non-browser federated access? 2.Which of these requirements can eduGAIN most address: a. Security incident response b. Attributes that cross national borders c. User friendliness and ease of use d. Authorisation under community control 3.What communities are involved in FIM4R? 4.What are the two most important questions when talking to a new user group?

22 Connect | Communicate | Collaborate Quiz Time 5.Name a community interested in technology translation 6.Name a challenge hindering well defined and harmonised attributes 7.Name a mechanism for encouraging attribute release developed by GÉANT/REFEDS 8.Name a requirement NOT explicitly listed by FIM4R

23 Connect | Communicate | Collaborate Back at 16:00

24 Connect | Communicate | Collaborate | | Connect | Communicate | Collaborate Thank you!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.