Consent and Federated Identity

Slides:



Advertisements
Similar presentations
Federated Identity for Grid Architects Tom Scavo NCSA
Advertisements

The Art of Federations. Topics Federations of what… Federated identity versus federations Federations in other sectors – business, gov, ad hoc R&E Federations.
Innovation through participation GÉANT Data Protection Code of Conduct (DP CoC) FIM for research collaboration workshop Mikael Linden,
Innovation through participation Attributes Release Working Group European data protection directive REFEDS meeting 22th Apr, 2012
Applications Through a PrivacyLens. Alternate Behaviors Two applications demonstrating different behaviors depending upon what attributes are released.
Federated Identity, Levels of Assurance, and the InCommon Silver Certification Jim Green Identity Management Academic Technology Services © Michigan State.
REFEDS RESEARCH AND EDUCATION (R&S) ENTITY CATEGORY NICOLE HARRIS.
SWITCHaai Team Federated Identity Management.
Shibboleth-intro-dec051 Shibboleth A Technical Overview Tom Scavo NCSA.
Shibboleth and uApprove at University of Michigan Luke Tracy – Ken Hammer –
Updates on Internet Identity. Topics Consumer marketplace update The big consumer players – OIX - and the other big consumer players.
Saml-intro-dec051 Security Assertion Markup Language A Brief Introduction to SAML Tom Scavo NCSA.
Exploring InCommon Getting Started with InCommon: Creating Your Roadmap.
Belnet Federation Belnet – Loriau Nicolas Brussels – 12 th of June 2014.
Stuff, including interfederation stuff Dr Ken Klingenstein, Director, Middleware and Security, Internet2.
GridShib: Grid/Shibboleth Interoperability September 14, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey, Raj Kettimuthu, Tom Scavo, Frank Siebenlist,
Applications Through a PrivacyLens: Overview Deck “what you release is who you are”
Social Identity Working Group Steve Carmody. Agenda Intro to Using Social Accounts Status and Recent News –Current UT Pilot –Current InCommon Pilot with.
Towards Interconnecting the Nordic Identity Federations TNC2007 Walter M Tveter, UiO Mikael Linden, CSC/HAKA Ingrid Melve, Uninett/Feide.
COmanage and InCommon: Present and Future Activities and Interactions Heather Flanagan, COmanage Project Coordinator, Internet2.
Kerberos and Identity Federations Daniel Kouřil, Luděk Matyska, Michal Procházka, Tomáš Kubina AFS & Kerberos Best Practices Worshop 2008.
OIX initiative, US only? Mapping Swedish Academic Identity Federation 2.0 Policy Framework to Open Identity Exchange (OIX) Trust Framework Provider Assessment.
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
Shibboleth What is it and what is it good for? Chad La Joie, Georgetown University.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Report and plans Attribute.
Transforming Government Federal e-Authentication Initiative David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.
Attribute Release and Scalable Consent \. Part of the original vision for federated identity and necessary for it to succeed Federated identity is less.
Administrative Information Systems Shibboleth Install Session Technical Information Session for Developers Datta Mahabalagiri.
Brown University Leveraging Social Identities Steve Carmody CSG, May 15, 2013.
Growth. Interfederation PKI is globally scalable Unfortunately, its not locally deployable… Federation is locally deployable Can it.
Federated Identity Management for Scientific Collaborations The Common Vision David Kelsey (STFC) 3 Nov 2011.
Understanding deployment issues on the Supply Chain Ann Harding, SWITCH, Nicole Harris, TERENA Cambridge July 2014.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
Shibboleth Identity Provider V3 Deployment Considerations Scott Cantor (tOSU) Walter Hoehn (U Memphis) David Langenberg (U Chicago)
The Policy Side of Federations Kenneth J. Klingenstein and David L. Wasley Tuesday, June 29, CAMP Shibboleth Implementation Workshop.
The Technology of Privacy Walter Hoehn
Leveraging Campus Authentication to Access the TeraGrid Scott Lathrop, Argonne National Lab Tom Barton, U Chicago.
Networks ∙ Services ∙ People Licia Florio TNC, Lisbon Consuming identities across e- Infrastructures 16 June 2015 PDO GÈANT.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Improving Extending the Shibboleth Identity Provider User Experience Keith Hazelton University of Wisconsin-Madison William G. Thompson, Jr. Unicon, Inc.
Improving Extending the Shibboleth Identity Provider User Experience Keith Hazelton University of Wisconsin-Madison William G. Thompson, Jr. Unicon, Inc.
Shibboleth Identity Provider Version 3
David Millman—Columbia January 2005
Shibboleth Architecture
Federation Systems, ADFS, & Shibboleth 2.0
Identity and Certificates
eduTEAMS platform for collaboration Niels Van Dijk
eduTEAMS Roadmap and Timeline,
Identity Management and Authorization
CLARIN Federated Identity Vision
Updates on Training Andrea Biancini (AARC2.AHM)2 NA2 WP leader
Federated Identity Management for Scientific Collaborations
Policy in harmony: our best practice
ESA Single Sign On (SSO) and Federated Identity Management
קורס פיננסי – מושגים פיננסיים / כלכליים
Leveraging the IGTF authentication fabric for research
The French federation Eurocamp 2007 Helsinki
Registrars are a Barrier to Collaboration: Truth or CIO Pretext?
Roman Contributions to our Culture.
AARC Blueprint Architecture and Pilots
UK Federation 101 Ian A. Young EDINA, University of Edinburgh (and the UK Federation) Internet2 Fall Member Meeting, 7 Dec Shibboleth Development.
Shibboleth and uApprove at University of Michigan
Shibboleth 2.0 IdP Training: Introduction
The Attribute and the ecosystem
Privacy & Interfederation
Baseline Expectations for Trust in Federation
User Provisioning Project
GEANT Data protection Code of Conduct 2.0 REFEDS meeting 16 June 2019
FIM4R Requirements where GN3+ (SA5) is Active and Involved (9/2013)
Presentation transcript:

Consent and Federated Identity

Topics Consent Where and when How the interface looks today Where it needs to go Informed consent Setting the bar Engaging the SP’s Educating the User

Jurisdictional Issues at the Start At least three policy spaces at play IdP location SP location User’s national and local laws Known exploits exist today…

At the point of collection of information Consent At the point of collection of information “We intend to use what you give us in the following ways” At the point of release of information “I authorize the release of this data in order to get my rubber squeeze toy…”

User interface Provide users with control, and guidance, over the release of attributes Includes consent, privacy management, etc. Basic controls (uApprove) now built into Shibboleth, but largely untapped in deployments. Additional technical developments would help scalability Human interface issues largely not yet understood – getting the defaults right, putting the informed into informed consent, etc.

Informed Consent

Next Steps Normalize the “presentation of the attributes” language Field test – get the defaults right Sift through what really needs consent Need to complete the business transaction Europe model more sophisticated but is compounded by national issues Federations as vehicle for national consent management ePTID – opaque, non-correlating. Does it need consent? Cookie consent? Attribute bundles

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.