Security in the wider world David Kelsey (STFC-RAL) GridPP37 – Ambleside 2 Sep 2016.

Slides:



Advertisements
Similar presentations
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Advertisements

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI - Identity Management Steven Newhouse Director, EGI.eu Federated Identity.
Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.
EGI-Engage EGI-Engage Engaging the EGI Community towards an Open Science Commons Project Overview 9/14/2015 EGI-Engage: a project.
AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.
European Life Sciences Infrastructure for Biological Information Life science community update for the 7 th Federated Identity Management.
EResearchers Requirements the IGTF model of interoperable global trust and with a view towards FIM4R AAI Workshop Presenter: David Groep, Nikhef.
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.
Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.
Authentication and Authorisation for Research and Collaboration David Kelsey AARC AHM Milan And mechanisms NA3 Task 4 – Scalable.
Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.
Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.
JRA1.4 Models for implementing Attribute Providers and Token Translation Services Andrea Biancini.
Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos Open Day Event: Towards the European Open.
WLCG Authentication & Authorisation LHCOPN/LHCONE Rome, 29 April 2014 David Kelsey STFC/RAL.
EUDAT receives funding from the European Union's Horizon 2020 programme - DG CONNECT e-Infrastructures. Contract No B2ACCESS LSDMA.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team
Authentication and Authorisation for Research and Collaboration Taipei Taiwan Authentication and Authorisation for Research and.
European Grid Initiative AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting AARC and AARC2 Vienna, 1 st December.
Networks ∙ Services ∙ People Licia Florio TNC, Lisbon Consuming identities across e- Infrastructures 16 June 2015 PDO GÈANT.
EGI-Engage EGI-Engage WP3 e-Infrastructure Commons Diego Scardaci EGI.eu/INFN 6/18/2016 EGI-Engage – First.
Authentication and Authorisation for Research and Collaboration Peter Solagna, Davide Vaghetti, et al. Topics for PY2 activities.
Authentication and Authorisation for Research and Collaboration Licia Florio AARC CORBEL Workshop The AARC Project Paris, 31 May.
European Life Sciences Infrastructure for Biological Information European Life Sciences Infrastructure for Biological Information.
EGI-Engage EGI Webinar - Introduction - Gergely Sipos EGI.eu / MTA SZTAKI 6/26/
Authentication and Authorisation for Research and Collaboration Peter Solagna, Nicolas EGI AAI integration experiences AARC Project.
Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.
Cloud Security Session: Introduction 25 Sep 2014Cloud Security, Kelsey1 David Kelsey (STFC-RAL) EGI-Geant Symposium Amsterdam 25 Sep 2014.
ELIXIR AAI Michal Procházka, Mikael Linden, EGI VC 15 March 2016.
SCI & Sirtfi David Kelsey (STFC-RAL) EGI Conference, Lisbon 19 May 2015.
Introduction to AAI Services
Bob Jones EGEE Technical Director
WLCG Update Hannah Short, CERN Computer Security.
Boosting AAI for research and collaboration
RCauth.eu CILogon-like service in EGI and the EOSC
EGI Updates Check-in Matthew Viljoen – EGI Foundation
AARC Update What’s been happening in AARC which matters for GÉANT
User Community Driven Development in Trust and Identity
eduTEAMS platform for collaboration Niels Van Dijk
Identity Federations - Overview
CheckIn: the AAI platform for EGI
AAI Alignment Nicolas Liampotis (based on the work of Mikael Linden)
Federated Identity Management for Researchers (FIM4R)
Check-in Nicolas Liampotis
GÉANT International Networking and Collaboration
Boosting AAI for research and collaboration
The AARC Project Licia Florio (GÉANT) Christos Kanellopoulos (GRNET)
The AARC Project Licia Florio AARC Coordinator GÉANT
Solutions for federated services management EGI
Policy in harmony: our best practice
EGI Webinar - Introduction -
OIDC Federation for Infrastructures
Pilots in AARC Arnout Terpstra (AARC2) / Paul van Dijk (AARC1)
AAI For Researchers Licia Florio AARC Project Coordinator GÉANT DI4R
Updated (VO) Community Security Policies
AARC Blueprint Architecture and Pilots
Common Authentication and Authorisation Service for Life Science Research Mikael Linden, ELIXIR Finland.
AARC2 JRA1 Update Nicolas Liampotis
AAI Architectures – current and future
RCauth.eu CILogon-like service in EGI and the EOSC
David Kelsey (STFC-RAL)
Community AAI with Check-In
AAI in EGI Status and Evolution
Federated Incident Response
Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.
Presentation transcript:

Security in the wider world David Kelsey (STFC-RAL) GridPP37 – Ambleside 2 Sep 2016

Overview Reminder - EGI CSIRT continues to be the operational security body for WLCG (in Europe) –The UK NGI Security team plays a leading role –Funding for security coordination from the EGI Foundation Many different activities – just show a few today –Policies, Procedures, Monitoring, Training, Dissemination … EU H2020 projects - development –EGI-Engage –AARC (Authentication and Authorisation for Research & Collaboration) “Wise Information Security for Einfrastructures” (WISE) Future H2020 proposals –AARC2 now approved: ? May 2017 – April 2019 –EINFRA12 call (EGI-Engage follow-on): ? Jan 2018 – Dec Sep 2016 Kelsey/Security 2

EGI-Engage SA1.2 2 Sep 2016 Kelsey/Security 3

EGI SVG 2 Sep 2016 Kelsey/Security 4

2 Sep 2016 Kelsey/Security 5

AARC 2 Sep 2016 Kelsey/Security 6

2 Sep 2016 Kelsey/Security 7

The new EGI AAI infrastructure TJRA1.1 JRA1 E-Infrastructure Commons EGI-Engage JRA1.1 – slides from Diego Scardaci

Core requirements for the AAI Credentials/Tokens –Users access EGI services with credentials released by his/her home organisation (eduGAIN support) –Take into account the so-called homeless users –Level Of Assurance (LoA) for each credential type Open architecture –Support the most common technologies to manage federated identities: SAML, OpenID Connect, X.509, etc. –Support several attributes sources –Easily extensible and interoperable with other infrastructures Hide the complexity to the Service providers –Token Translator Services (TTSs) Convert a credential to be recognised by the service JRA1 E-Infrastructure Commons

New EGI AAI and trust model JRA1 E-Infrastructure Commons Information sent to service providers Community Attribute Authority TRUST Community attributes User “User A” EGI Services Level of Assurance

Liaison with AARC & Requirements gathering Collaboration established with the AARC project: –Adopt AAI policies, solutions and best practices defined at European level –Deal with problems that require a larger scope to be resolved (e.g. global unique identifiers, levels of assurance, etc.) –The AARC Blueprint IdP/SP proxy model, TTS based on CILogon Requirements gathering –EGI-Engage Competence Centers –Other EGI communities and RIs –EGI Tools JRA1 E-Infrastructure Commons

EGI AAI WP3 E-Infrastructure Commons

EGI AAI WP3 E-Infrastructure Commons

EGI AAI WP3 E-Infrastructure Commons

IGTF/AARC 2 Sep 2016 Kelsey/Security 15

USA - CILogon 2 Sep 2016 Kelsey/Security 16

AARC IOTA CA 2 Sep 2016 Kelsey/Security 17

WISE 2 Sep 2016 Kelsey/Security 18

2 Sep 2016 Kelsey/Security 19

WISE 2 Sep 2016 Kelsey/Security 20

WISE 2 Sep 2016 Kelsey/Security 21

WISE 2 Sep 2016 Kelsey/Security 22

Next WISE Workshop Tuesday 27 Sep 2016 Before the Digital Infrastructures for Research (DI4R) conference in Krakow, Poland 2 Sep 2016 Kelsey/Security 23

QUESTIONS? 2 Sep 2016 Kelsey/Security 24

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.