It Is All about Identity (Whatever the Sphere)

Slides:



Advertisements
Similar presentations
1 Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM( final) {SWD(2012)
Advertisements

Identity Network Ideals – Heterogeneity & Co-existence
GT 4 Security Goals & Plans Sam Meder
REFEDS. Rome, October 2009 The OpenID Case Why It’s Not a Bad Idea to Play with The Big Guys.
TF-Mobility. Rome, October 2009 A Few Ideas on eduroam Service Composition.
Access Control Patterns & Practices with WSO2 Middleware Prabath Siriwardena.
Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.
TF-EMC2 February 2006, Zagreb Deploying Authorization Mechanisms for Federated Services in the EDUROAM Architecture (DAME) -Technical Project Proposal-
May 22, 2002 Joint Operations Group Discussion Overview Describe the UC Davis Security Architecture Describe Authentication Efforts at UC Davis Current.
The E-Authentication Initiative An Overview Peter Alterman, Ph.D. Assistant CIO for e-Authentication, NIH and Chair, Federal PKI Policy Authority The E-Authentication.
Prabath Siriwardena Senior Software Architect. An open source Identity & Entitlement management server.
18 th TF-EMC2. WebEx, June 2011 Diego R. Lopez, RedIRIS On the Many Ways to Identity Exchange (Again) Digital identities are more valuable as they are.
FIM-ig Federated Identity Management Interest Group.
Federated A(A(A))I Jens Jensen hepsysman, RAL,
Claims Based Authentication
Developments and challenges in authentication and authorisation Klaas Wierenga Berlin, 23 May 2006.
Connect. Communicate. Collaborate First steps in federation peering: eduGAIN and eduroam Diego R. Lopez - RedIRIS.
Federated Identity and the International Research Community Dr Ken Klingenstein Director, Internet2 Middleware and Security.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
Why the Identity messy-system sucks, and how to fix it. Josh Howlett, JANET(UK) TNC 2008, Bruges.
Serving society Stimulating innovation Supporting legislation Danny Vandenbroucke & Ann Crabbé KU Leuven (SADL) AAA-architecture for.
Connect. Communicate. Collaborate eduGAIN in Real Life! Ajay Daryanani, RedIRIS TERENA Networking Conference Brugge, 20th May 2008.
AAI WG EMI Christoph Witzig on behalf of EMI AAI WG.
Edugate Glenn Wearen HEAnet.. Summary 1 year Pilot Project / 2 years in production All IoT’s, Universities, Colleges, but only half of HEAnet’s members.
State of e-Authentication in Higher Education August 20, 2004.
The Feds and Shibboleth Peter Alterman, Ph.D. Asst. CIO, E-Authentication National Institutes of Health.
Diego R. Lopez, RedIRIS JRES2005, Marseille On eduGAIN and the Coming GÉANT Middleware Infrastructure.
Diego R. Lopez, RedIRIS TF-EMC2, Umea SIR, FedSSH and more to come…
Connect. Communicate. Collaborate Deploying Authorization Mechanisms for Federated Services in the eduroam architecture (DAMe)* Antonio F. Gómez-Skarmeta.
REFEDS. Rome, October 2009 Attribute space: LoAs, aggregation and reputation.
EUDAT receives funding from the European Union's Horizon 2020 programme - DG CONNECT e-Infrastructures. Contract No B2ACCESS LSDMA.
Programme ›TERENA ›Overview of the middleware initiatives in the European Higher Education ›What is eduroam: the technology and how to set up eduroam ›eduroam-in-a-box:
Creating a European entity Management Architecture for eGovernment Id GUIDE Keiron Salt
A uthentication & A uthorization for R esearch & C ollaboration Pilots in SA1 Paul van Dijk, SURFnet AARC.
Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.
Peter Alterman, Ph.D. Chair, Federal PKI Policy Authority Meet FedFed.
Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,
Workshop on Security for Web Services. Amsterdam, April 2010 Applying SAML to Identity Data Exchange.
AAI Interconnection with an European style Diego R. Lopez RedIRIS.
Networks ∙ Services ∙ People Marina Adomeit TNC16 Conference, Prague Towards a platform for supporting collaboration GÉANT VOPaaS
Federal Initiatives in IdM Dr. Peter Alterman Chair, Federal PKI Policy Authority.
WSO2 Identity Server. Small company (called company A) had few services deployed on one app server.
EAuthentication – Update on Federal Initiative Jacqueline Craig IR&C September 27, 2005.
Security in the wider world David Kelsey (STFC-RAL) GridPP37 – Ambleside 2 Sep 2016.
CALIPSOplus JRA2 Kickoff: Task 6 – Authentication + Identity
GEOSS Federated Single Sign-On
Cross-sector and user-centric AAI
LIGO Identity and Access Management
AAI for a Collaborative Data Infrastructure
Federation Systems, ADFS, & Shibboleth 2.0
First steps in federation peering: eduGAIN and eduroam
Identity Federations - Overview
EMI Interoperability Activities
TF-EMC2 meeting Mikael Linden,
Federation peering à la European The eduGAIN way
Federated Identity Management for Researchers (FIM4R)
Federated Identity Management for Scientific Collaborations
Federation peering à la European The eduGAIN way
Policy in harmony: our best practice
The DAMe’s First Steps: eduroam and NAS-SAML
Technical Approach Chris Louden Enspier
Pilots in AARC Arnout Terpstra (AARC2) / Paul van Dijk (AARC1)
Multi-Domain User Applications Research (JRA3)
Authentication and Authorization Federation
HIMSS National Conference New Orleans Convention Center
Matthew Levy Azure AD B2B vs B2C Matthew Levy
A(nother) view on federation issues
Community AAI with Check-In
GN2 JRA5 Roaming and Authorisation Jürgen Rauschenbach, DFN-Verein
Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.
Presentation transcript:

It Is All about Identity (Whatever the Sphere)

Identity transfer protocols are just vehicles for data transfer Just Identity Identity transfer protocols are just vehicles for data transfer Must not determine the nature of an individual identity Digital identities are more valuable as they are more widely assertable Inter-{change|operability|connection} is unavoidable Practical Legal Market The sooner we react the better

A Few Use Cases (From just those with SAML in common) InfoCard The obvious usability cases IdP/AA resolver OpenID Attribute query bootstrapping Aggregating user control OAuth Access to non-web resources Initial enrollment RADIUS Authentication in non-web environments Leveraged authorization X.509 Derived personal certificates PKI-based attribute authorities

EMC2/Mobility/GN3… Discussions ongoing on back-channels for network access in TF-Mobility Interconnecting InfoCard and eduroam The identity hubs in SIR, WAYF.DK,… The Beyond WebSSO work-item in TF-EMC2 Kerberos Dynamic LDAP SAML ECP DAMe and its successor(s) Specific tasks inside GN3 JRA3T2 Originally, on “user centric identity” Play with the technology and explore the policies

A global initiative to drive interoperability among identity protocols …Concordia… A global initiative to drive interoperability among identity protocols Originated inside Liberty Looking far beyond Driven by use cases Several collected Some demonstrated Proposal of an Identity Metasystem http://www.projectconcordia.org/

Collaboration models and requirements Identifier assessment Trust LoAs …And REFEDS? Collaboration models and requirements Hubs, gateways, credential services,… Identifier assessment Cross-border cases Trust Does PMA style make sense here? LoAs Protocols and transitivity Procedures and common semantics External (big) providers Reciprocity

www.rediris.es/sir

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.