CERN IT Department CH-1211 Genève 23 Switzerland Federated identity system for scientific collaborations Summary of user requirements session.

Slides:



Advertisements
Similar presentations
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Advertisements

Case Studies in Identity Management for Scientific Collaboration 2014 Technology Exchange Jim Basney CILogon This material is.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI - Identity Management Steven Newhouse Director, EGI.eu Federated Identity.
Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.
EMI INFSO-RI Session Summary AAI Needs for DCIs John White, HIP Christoph Witzig, SWITCH
The LHC Computing Grid – February 2008 The Worldwide LHC Computing Grid Dr Ian Bird LCG Project Leader 15 th April 2009 Visit of Spanish Royal Academy.
WLCG Security TEG, risks and Identity Management David Kelsey GridPP28, Manchester 18 Apr 2012.
FIM-ig Federated Identity Management Interest Group.
1 Common Challenges Across Scientific Disciplines Laurence Field CERN 18 th November 2013.
1 Multi Cloud Navid Pustchi April 25, 2014 World-Leading Research with Real-World Impact!
Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.
Advanced Computing Services for Research Organisations Bob Jones Head of openlab IT dept CERN This document produced by Members of the Helix Nebula consortium.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
EMI AAI Strategy & Plans John White / Helsinki Institute of Physics Federated Identity Systems for Scientific Collaborations Workshop , CERN,
7 th FIM 4 R meeting April 2014 ESRIN Frascati.
EResearchers Requirements the IGTF model of interoperable global trust and with a view towards FIM4R AAI Workshop Presenter: David Groep, Nikhef.
Federated Identity Management for Research Collaborations Bob Jones, CERN Daan Broeder, Max-Planck Institute for Psycholinguistics David Kelsey, Particle.
Federated Identity Management for HEP David Kelsey STFC – RAL Nijmegen workshop 22 June 2012.
Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.
Identity Management in DEISA/PRACE Vincent RIBAILLIER, Federated Identity Workshop, CERN, June 9 th, 2011.
European Life Sciences Infrastructure for Biological Information ELIXIR and Identity Management 2 nd Workshop on Federated Identity.
Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.
EResearchers Requirements ELIXIR AAI Workshop Presenter: Mikael Linden (ELIXIR AAI-TF)
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team
b2access.eudat.eu B2ACCESS The simple and secure authorisation and authentication platform of EUDAT This work is licensed under the Creative.
EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks EGEE: Enabling grids for E-Science Bob Jones.
Federated Identity Management How do we proceed? Bob Jones, CERN.
European Grid Initiative AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Federated Identity Management for Research Communities: FIM4R PSI workshop objectives Bob Jones, CERN.
CERN IT Department CH-1211 Geneva 23 Switzerland t OIS Operating Systems & Information Services CERN IT Department CH-1211 Geneva 23 Switzerland.
E-infrastructure requirements from the ESFRI Physics, Astronomy and Analytical Facilities cluster Provisional material based on outcome of workshop held.
Authentication and Authorisation for Research and Collaboration Peter Solagna, Nicolas EGI AAI integration experiences AARC Project.
DARIAH EU AAI consideration K. Skala, D. Davidović, Z. Šojat Lisbon, 22 May 2015.
Authentication and Authorisation for Research and Collaboration Taipei - Taiwan Mechanisms of Interfederation 13th March 2016 Alessandra.
1 Impact assessment of e-infrastructures lessons learnt from EGEE Bob Jones CERN IT Department Bob JonesNovember 2010.
Security in the wider world David Kelsey (STFC-RAL) GridPP37 – Ambleside 2 Sep 2016.
Research Community Requirements (FIM4R) David Kelsey (STFC-RAL) VAMP Workshop 6 Sep 2012.
The IGTF to eduGAIN Bridge
J. Quinteros, A. Heinloo, B. Weber, L. Hämmerle and W. Pempe
Introduction to AAI Services
Bob Jones EGEE Technical Director
WLCG Update Hannah Short, CERN Computer Security.
RCauth.eu CILogon-like service in EGI and the EOSC
Grid Computing Security Mechanisms: the state-of-the-art
EGI Updates Check-in Matthew Viljoen – EGI Foundation
AAI for a Collaborative Data Infrastructure
Cloud Providers and AARC
Identity Federations - Overview
Case Studies in Federated Identity Management for Research Communities
Ian Bird GDB Meeting CERN 9 September 2003
Federated Identity Management for Researchers (FIM4R)
EGEE support for HEP and other applications
GÉANT International Networking and Collaboration
ELIXIR Safeguarding the results of life science research in Europe
Connecting the European Grid Infrastructure to Research Communities
Input on Sustainability
ESA Single Sign On (SSO) and Federated Identity Management
EGI Webinar - Introduction -
Pilots in AARC Arnout Terpstra (AARC2) / Paul van Dijk (AARC1)
Common Authentication and Authorisation Service for Life Science Research Mikael Linden, ELIXIR Finland.
RCauth.eu CILogon-like service in EGI and the EOSC
Common Solutions to Common Problems
Integrating social science data in Europe
AAI in EGI Status and Evolution
Building a minimum viable Security Operations Centre
eIDAS-enabled Student Mobility
Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.
LifeWatch AARC Pilot Fernando Aguilar 13th FIM4R Workshop
Presentation transcript:

CERN IT Department CH-1211 Genève 23 Switzerland Federated identity system for scientific collaborations Summary of user requirements session Bob Jones 10 June 2011

CERN IT Department CH-1211 Genève 23 Switzerland User Communities Present European Photon/Neutron facilities Social Science and Humanities WLCG High Energy Physics Earth Sciences Life Sciences 9 June 2011 Federated Identity Management Workshop - Bob Jones 2

CERN IT Department CH-1211 Genève 23 Switzerland European Photon/Neutron facilities Users – Approx 10,000 users and need to keep a closer track of their involvement – Typically short-stays at facilities – ‘Part-time’ users – not gurus – Most are nomadic (use many facilities) and some are “homeless” (no home institution that could issue identity ) Key concerns – Confidentiality of data – Remote access to data – Potential remote control of experiments – PI to take role in authz Status: Umbrella project in prototype stage – Adopted Shibboleth/SAML – Considering a range of organisational schemes (central authority, local offices etc.) 9 June 2011 Federated Identity Management Workshop - Bob Jones 3

CERN IT Department CH-1211 Genève 23 Switzerland Social Sciences and Humanities Users – Several hundred – Some “homeless” users Key concerns – Single domain with identity managed by home institute – Many diverse and distributed data sets (multi-media, multi- format etc.) with complex relationships – SSO with explicit “acceptable usage” signature Status – eduGAIN (Shibboleth/SAML) prototype in use with CLARIN – Signatory process underway with the national IDFs and CLARIN service providers – Have created a home for the “homeless” 9 June 2011 Federated Identity Management Workshop - Bob Jones 4

CERN IT Department CH-1211 Genève 23 Switzerland WLCG Users – 5900 X509 certs Key concerns – Security tracking across multiple sites and accounts – Users have multiple accounts (not all within IGTF realm) – Scalability – Easy use (would like to hide certs from users) – Need conversion of security credentials Status – Production usage – Relies on IGTF – Tests underway for federated approach with BNL 9 June 2011 Federated Identity Management Workshop - Bob Jones 5

CERN IT Department CH-1211 Genève 23 Switzerland Earth Sciences Users – for CMIP5 alone, much greater for other earth science deployments. – Currently 25 centres around Europe but likely to grow quickly Key concerns – Integration of many diverse data sets – Many technologies and tools already in use Status – Earth System Grid Federation in place using OpenID, X.509 and SAML – A standard solution for securing OPeNDAP and other HTTP-based services 9 June 2011 Federated Identity Management Workshop - Bob Jones 6

CERN IT Department CH-1211 Genève 23 Switzerland Life Sciences Users – Millions access data via the EBI website Key concerns – 20+ datasets that are continuously growing – At least 1 data set (European Genotype Archive) currently requires authentication Status – BiomedBridges ESFRI cluster project has security on work plan and will work to bring together up to 10 life science ESFRI projects 9 June 2011 Federated Identity Management Workshop - Bob Jones 7

CERN IT Department CH-1211 Genève 23 Switzerland Comparing user communityother projects# userschosen technologystatusIGTF photon/neutron EUROFEL, PanData, CRISP10,000Shibboleth/SAML Umbrella prototypeno Social Sciences and Humanities DARIAH, CLARIN, CESSDAH, (DASISH) hundreds now, potential for across SSHShibboleth/SAML CLARIN SP federation - will see if they can use eduGAINyes WLCG 5900 globallyX509productionyes earth sciences Earth System Grid Federation, GENESI- DEC, CMIP5, Metafor, IS-ENES for CIMP5 OpenID, X.509 and SAML production - earth system grid not yet but foresee for EGI integration life sciences ELIXIR & potentially 10 BMI ESFRI projects millions access data via EBI websiteno chosen yet security included in BioMedBridges project workplanno 9 June 2011 Federated Identity Management Workshop - Bob Jones 8

CERN IT Department CH-1211 Genève 23 Switzerland Conclusions There are many common needs and hence scope for agreement – SSO – Easy of use for part-time users – Focus is on data access – Support homeless users – Many tools and technologies deployed – Smooth transition from existing systems 9 June 2011 Federated Identity Management Workshop - Bob Jones 9

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.