Overview and Development Plans

Slides:



Advertisements
Similar presentations
Jens G Jensen CCLRC e-Science Single Sign-on to the Grid Federated Access and Integrated Identity Management.
Advertisements

Eduserv Athens Federations David Orrell Eduserv Athens Technical Architect.
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
Implementing Shibboleth-based Virtual Organisations and VO Federations using IAMSuite (including AAF update) James Dalziel & Alan Lin Professor of Learning.
Shibboleth at Newcastle Caleb Racey Webteam ISS Shibboleth experiences Program  Background  What shib has enabled  Benefits of shib  How to do shib.
1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.
Alex Reid, AARNet Australia Middleware Update; 16-Oct-06 Middleware in Australia - Update TF-ECM2 Malaga 16-Oct-06 Alex Reid Director, eResearch/Middleware.
T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
Beispielbild Shibboleth, a potential security framework for EDIT Lutz Suhrbier AG Netzbasierte Informationssysteme (
A Turnkey Fedora GUI Supporting Heterogeneous Metadata, Federated Identity, And Flexible Access Control Chi Nguyen, James Dalziel RAMP Project Macquarie.
Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.
NSF Middleware Initiative: GridShib Tom Barton University of Chicago.
1 July 2005© 2005 University of Kent1 Seamless Integration of PERMIS and Shibboleth – Development of a Flexible PERMIS Authorisation Module for Shibboleth.
Shibboleth and InCommon Copyright Texas A&M University This work is the intellectual property of the author. Permission is granted for this material.
Administrative Information Systems Shibboleth: The Next Generation ISIS Technical Information Session for Developers Datta Mahabalagiri March
Jens G Jensen CCLRC e-Science Single Sign-on to the Grid Federated Access and Integrated Identity Management.
Shibboleth: New Functionality in Version 1 Steve Carmody July 9, 2003 Steve Carmody July 9, 2003.
Shibboleth Use in the Open Source Community Keith Hazelton for Steven Carmody.
Federated A(A(A))I Jens Jensen hepsysman, RAL,
GridShib: Grid-Shibboleth Integration (Identity Federation and Grids) April 11, 2005 Von Welch
Shib in the present and the future Ken Klingenstein Director, Internet2 Middleware and Security.
Mairéad Martin The University of Tennessee September 13, 2015 Federated Digital Rights Management.
Shibboleth Possible Features – Version 2 Steve Carmody July 9, 2003 Steve Carmody July 9, 2003.
External Identity and Authorization in GENI. Topics Federated identity and virtual organizations ABAC Creating and transporting attributes.
GridShib Grid-Shibboleth Integration Von Welch, Tom Barton, Kate Keahey, Frank Siebenlist GlobusWORLD 2005.
I2Q & WMnet Pilot Presented by Jason Rousell – i2Q Jay Neale - i2Q.
Shibboleth: Installation and Deployment Scott Cantor July 29, 2002 Scott Cantor July 29, 2002.
2005 © SWITCH Perspectives of Integrating AAI with Grid in EGEE-2 Christoph Witzig Amsterdam, October 17, 2005.
Mellon Year 1 Review Michael J. Halm Alex Valentine.
David L. Wasley Office of the President University of California Shibboleth Safe delivery of reliable authorization data David L. Wasley University of.
GridShib: Grid/Shibboleth Interoperability September 14, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey, Raj Kettimuthu, Tom Scavo, Frank Siebenlist,
Internet2 CAMP Shibboleth Scott Cantor (Hey, that’s my EPPN too.) Tom Dopirak Scott Cantor (Hey, that’s my.
Shibboleth at the U of M Christopher A. Bongaarts code-people June 2, 2011.
Shibboleth Authenticate Locally, Act Globally A Penn State Case Study Renee’ Shuey May 4, 2004 ITS – Emerging Technologies.
Shibboleth for Local Attribute Delivery 21 June 2007.
Shibboleth: An Introduction
MAT U M A T U Middleware Assisted Take-Up Service For JISC Funded Early Adopters.
Internet2 Middleware Initiative Shibboleth Ren é e Shuey Systems Engineer I Academic Services & Emerging Technologies The Pennsylvania State University.
Shibboleth Access Management System Walter Hoehn & David Millman, Columbia University.
US of A and A Activities Ken Klingenstein, Director Internet2 Middleware Initiative.
NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.
Shibboleth: Status and Pilots. The Golden Age of Plywood.
Technical Topics for Deployed Campuses: Web SSO Will Norris University of Southern California.
1 Protection and Security: Shibboleth. 2 Outline What is the problem Shibboleth is trying to solve? What are the key concepts? How does the Shibboleth.
Shibboleth Update Eleventh Federal & Higher Education PKI Coordination Meeting (Fed/Ed Thursday, June 16, 2005.
Shibboleth at the U of M Christopher A. Bongaarts net-people March 10, 2011.
Gridshib-tech-overview-dec051 GridShib A Technical Overview Tom Scavo NCSA.
Mairéad Martin The University of Tennessee December 16, 2015 Federated Digital Rights Management.
Campuses New to Shibboleth: WebSSO Barry Johnson
Administrative Information Systems Shibboleth Install Session Technical Information Session for Developers Datta Mahabalagiri.
Shibboleth Authenticate Locally, Act Globally A Penn State Case Study.
126/02/2016 META ACCESS MANAGEMENT SYSTEM A Ship on the Grid – Interoperability between Shibboleth and the Grid – Dr. Erik Vullings Programme Manager Macquarie.
MGRID Architecture Andy Adamson Center for Information Technology Integration University of Michigan, USA.
Gridshib-intro-dec051 GridShib An Introduction Tom Scavo NCSA.
Shibboleth 1.2 Technical Overview “So you thought 1.1 was complicated…” Scott Cantor The Ohio State University and Internet2 Scott Cantor.
Overview SPIRE project: Looking at the feasibility of P2P in UK higher education Focused on Penn States open source P2P system ‘LionShare’ which is a heavily.
Shibboleth Architecture
Shibboleth Roadmap
HMA Identity Management Status
Web Portal Project.
e-Infrastructure Workshop 28th March 2006, University of Leeds
Introduction How to combine and use services in different security domains? How to take into account privacy aspects? How to enable single sign on (SSO)
What’s changed in the Shibboleth 1.2 Origin
Michael R Gettes, Duke University On behalf of the shib project team
Some data about the CBIC Federation
Federated Digital Rights Management
Shibboleth Deployment Overview
Shibboleth: Status and Pilots
Shibboleth 2.0 IdP Training: Introduction
NSF Middleware Initiative: GridShib
Presentation transcript:

Overview and Development Plans Shibboleth Roadmap Overview and Development Plans 4 December 2018 Steve Carmody Brown University

Topics V1.2 (spring 2004) V1.3 (late summer 2004) InCommon startup Projects Currently Underway Possible Future Efforts 12/4/2018

V1.2 (spring 2004) WILL interoperate with previous versions Increased configuration flexibility for targets in a complex multi-federation world Can be configured for membership in multiple Federations "application" is a unit of session management and attribute caching Service Provider IDs will determine Attribute Release. Increased configuration flexibility for origins Can configure global values for many config values Can override any of these on a RelyingParty basis 12/4/2018

V1.2 (spring 2004) Improved Security Improved Performance The HS now validates the providerId and SHIRE accompanying the request The AA now validates service provider credentials against federation metadata. Several different file formats are supported for holding credentials Improved Performance For both origins and targets More to come in v1.3 12/4/2018

V1.2 (spring 2004) The Shib target will now run on BOTH the apache-2 web server and the previously supported apache 1.3.x Vhost support on the target will now work as expected The target will support "lazy session establishment". The Attribute Authority will contain significantly improved support for use of an SQL-based data repository Support for Audit logging Improved packaging, easier to install Configuration Recommendations for improved performance 12/4/2018

POSSIBILITIES for V1.3 (late summer 2004) Complete multi-federation support in the origin side code Improved XML signing performance Extend ARP engine functionality (ARPs for groups) Attribute PUSH Extended Access Control Functionality (XACML) Improve User Experience (WAYF) 12/4/2018

InCommon startup Currently 10 campuses and targets (vendors) are testing procedures and policies Should be open for business by mid-summer 12/4/2018

Projects Currently Underway Java target implementation Improved W2003 Shib target packaging and functionality Web based GUI for ARP management GRID + Shib Integration Use of Shib by LionShare, Sakai, Fedora Investigation of H.323 use of Shib Middleware-enabled Collaboration Tools (mailing list software, WiKi’s, Blogs, Content Mgmt (ZOPE) …) Microsoft… 12/4/2018

Possible Future Efforts Use with portals, and 3-tier situations Exploring the tradeoffs between privacy and target manageability GUI for target side policy management Support for portions of SAML 2 Integration with lightweight VOs Coordinated efforts with the UK 12/4/2018

12/4/2018

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.