Open Collaboration Exchange Alexander Blanc, Niels van Dijk, Jocelyn Manderveld, Remco Poortinga - van Wijnen VAMP 2013, Espoo.

Slides:



Advertisements
Similar presentations
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Advertisements

EduGAIN – Are we there yet? Lukas Hämmerle (ghost writer, Brook Schofield) FIM4R, Helsinki – 2 October 2013.
Step-up Authentication as-a Service Pieter van der Meulen Technical Product Manager.
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
Agenda Project beginnings and funding. Purpose of the federation. Federation members. Federation protocols. Special features in our federation. Pilot.
Stork is an EU co-funded project INFSO-ICT-PSP STORK PRESENTATION STORK Presentation Lithuania March 2010.
SWITCHaai Team Federated Identity Management.
Hydra from 35,000ft Chris Awre Hydra Europe Symposium London School of Economics, 23 rd April 2015.
Federated Identity Management in New Zealand Sat Mandri Service Manager TNC15 REFEDs Meeting, 14 th June 2015.
BfB: Supporting Collaboration with Infrastructure.
EGI-Engage EGI-Engage Engaging the EGI Community towards an Open Science Commons Project Overview 9/14/2015 EGI-Engage: a project.
11-July-2011, SURFnet Heather Flanagan, COmanage Project Coordinator Benn Oshrin, COmanage Developer Scott Koranda, U. Wisconsin – Milwaukee and LIGO.
AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
Belnet Federation Belnet – Loriau Nicolas Brussels – 12 th of June 2014.
Supporting Are we ready? REFEDS, Oct 2013 Ann Harding
Social Identity Working Group Steve Carmody. Agenda Intro to Using Social Accounts Status and Recent News –Current UT Pilot –Current InCommon Pilot with.
SURFfederatie & SURFconext Federated identity system for scientific collaborations 9-10 June 2011 CERN Remco Poortinga – van Wijnen*, SURFnet
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
Innovation through participation eduGAIN interfederation service for research and education Cern FedID workshop in RAL, UK 2-3 Nov 2011 Mikael Linden,
Test your IdP
Federation as a Service Marina Vermezović, AMRES Federated Identity Technology Workshop Sofia, Bulgaria, 20. Jun 2014.
Towards a Unified Authentication, Authorisation and Accounting Infrastructure Patrick Kirk Chief Technical Officer (YHGfL) Lifelong Learning Infrastructure.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos GRNET Proposed Pilots for Libraries and eGov.
Authentication and Authorisation for Research and Collaboration Michał Jankowski, Maciej Brzeźniak AARC General Meeting, Milan.
Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
A uthentication & A uthorization for R esearch & C ollaboration Pilots in SA1 Paul van Dijk, SURFnet AARC.
NREN Trust and Identity Strategy Ann Harding, SWITCH Cambridge July 2014.
Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team
Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.
b2access.eudat.eu B2ACCESS The simple and secure authorisation and authentication platform of EUDAT This work is licensed under the Creative.
Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,
Federated Identity Fundamentals Ann Harding, SWITCH Cambridge July 2014.
Facing the challenge of relevance Erwin Bleumink 4 June 2013 TNC13.
AAI needs of the Distributed Computing Infrastructures - CLARIN Dieter Van Uytvanck Max Planck Institute for Psycholinguistics
INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.
Authentication and Authorisation for Research and Collaboration Bari, Italy Training and Outreach Authentication and Authorisation.
David Groep Nikhef Amsterdam PDP & Grid AARC Authentication and Authorisation for Research and Collaboration an impression of the road ahead.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI-InSPIRE PY5 new activities Peter Solagna – EGI.eu.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Enabling SSO capabilities in the EGI Cloud services Peter Solagna – EGI.eu.
Authentication and Authorisation for Research and Collaboration Heiko Hütter, Martin Haase, Peter Gietz, David Groep AARC 3 rd.
Networks ∙ Services ∙ People Marina Adomeit TNC16 Conference, Prague Towards a platform for supporting collaboration GÉANT VOPaaS
How eduGAIN can help education: a real life story Sabita Behari Product Manager TNC14.
Networks ∙ Services ∙ People TNC 2016, Prague Alice Through the Looking Glass Science DMZ goes above the network 13 June
Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.
Networks ∙ Services ∙ People Ann Harding Networkshop 44, Manchester Thinking globally, acting locally Trust and Identity in the GÉANT project.
Authentication and Authorisation for Research and Collaboration Taipei - Taiwan Mechanisms of Interfederation 13th March 2016 Alessandra.
Networks ∙ Services ∙ People Mandeep Saini AARC/CORBEL Workshop Collaborative Organisation Platform as a Service June 1, 2016, Paris Product.
Networks ∙ Services ∙ People Di4R Network. Services. People. GÉANT 28 th September, Krakow.
WACREN EduID Fostering Identity Federations in West and Central Africa 3rd Sci-GaIA Workshop Dar es Salaam, Tanzania – 5 th September Omo Oaiya.
Introduction to AAI Services
Cross-sector and user-centric AAI
The Policy Puzzle Many groups and (proposed) policies, but leaving many open issues AARC “NA3” is tackling a sub-set of these “Levels of Assurance” –
Mechanisms of Interfederation
User Community Driven Development in Trust and Identity
eduTEAMS platform for collaboration Niels Van Dijk
Innovative Solutions from Internet2
Marketplace & service catalog concepts, first design analysis
Scalability of trust and metadata exchange across federations
Neil Witheridge’s slides
EGI-Engage Engaging the EGI Community towards an Open Science Commons
ELIXIR Safeguarding the results of life science research in Europe
Sustainability and Operational models
AAI Architectures – current and future
Discovery and Federated Identity
Community AAI with Check-In
Baseline Expectations for Trust in Federation
Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.
worlds largest IT service provider
Presentation transcript:

Open Collaboration Exchange Alexander Blanc, Niels van Dijk, Jocelyn Manderveld, Remco Poortinga - van Wijnen VAMP 2013, Espoo

Current situation (good news) AAI/FIM well established across Europe and elsewhere Solid growth (NL) on number of connected IDPs, SPs and usage eduGAIN bridges HE&R fields

SURFconext statistics

Most used services All ‘campus centric’ type of services (not surprisingly) Also internal services (portal, timetable, …) Institutions somewhat reluctant to move to the cloud (for employees) Google apps mostly for students only

But… eduGAIN only start of a solution (enabling) Although eduGAIN connects HE&R, no bridge to other (commercial/research) communities/fields yet (see VCH) (HE&R) Federations typically not allowed to connect other IdPs Most IdPs focus on ‘campus centric’ services Difficult to get IdPs to connect to services for a subset of users E.g. VO services… Opt-out vs opt-in? Try ‘zero attribute’ authentication? No simple magic solution

So… Can we apply ideas from the network world? Especially network exchanges? See From Network Exchange to Collaboration Exchange - A guided tour Make it easy to connect and let participants decide who they want to work with

O.C.E. why? Transnational Several use cases show: Federated approach needed as ‘enterprise’ IDM trust models are poorly suited for collaborative cross-sector and transnational activities Transnational collaboration is hindered by differences in federation readiness, licensing issues, technical and other barriers. OCE allows entities to connect to multiple trust frameworks on one technical platform OCE will support several well established trust frameworks (e.g. eduGAIN) by default OCE significantly lowers barriers for transnational cloud service delivery

O.C.E. why? Cross-sector OCE supports cross-sector collaboration capabilities out of the box OCE specifically supports public/private partnerships Therefore decreasing need for guest access OCE enables knowledge transfer on federated approaches from research and education to other sectors

What are Open Collaboration Exchanges? An transnational infrastructure for identity- and service providers to interconnect, facilitating authentication-, authorization- and group management processes An infrastructure; that combines a technical infrastructure (a "switchboard") with multiple behavioural trust/policy frameworks and thus allows entities to connect to multiple trust frameworks on one technical platform An open and secure platform, using open standards, based on open source (OpenConext) technology Self-service configuration interfaces for all participants Ecosystem for ‘value-added services’, such as a higher level of authentication, statistics, provisioning, metering/billing, etc. Aimed towards implementation of multi-stakeholder governance and maintenance Enabler of cross-sector and transnational collaboration and service delivery

O.C.E. What it is not A replacement for eduGAIN Leverages/uses eduGAIN and other services/trust frameworks Pixie dust for collaboration Still a lot (most?) effort for non-technical issues A trust framework itself ‘Only’ aggregator with optional added self-service functions A finished product Still very much a concept/idea, many many things still unclear

O.C.E.Overview OCE (self-service) OCE (self-service) IDP1 IDP2 Trust framework eduGAIN SURFconext DIGID Trust framework eduGAIN SURFconext DIGID Trust framework eduGAIN WAYF Trust framework eduGAIN WAYF SP1 SP2 Trust framework SURFconext DIGID Trust framework SURFconext DIGID Trust framework eduGAIN Trust framework eduGAIN IDP1 IDP2 SP2 eduGAIN IDP1 IDP2 SP2 Entree IDP1 SP1 Entree IDP1 SP1 DIGID IDP1 SP1 DIGID IDP1 SP1 trust framework2 IDP1 SP2 trust framework2 IDP1 SP2 OCE (metadata) OCE (metadata)

O.C.E. What’s next? Engage Different (european) educational federations Several OpenConext pilot partners eduGAIN Global partners Learn AMS-IX, Netherlight and other exchanges Possible similar ideas, initiatives or projects Partnerships Work with strategic partners on innovation, governance, and funding Pilots In research and education Cross-sector

O.C.E.pointers eduGAIN OpenConext From Network Exchange to Collaboration Exchange - A guided tour MARIO Collaboration Exchange for Services and Identities

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.