ABFAB Architecture Jim Schaad August Cellars. Previous Updates -01 – Resolved a number of review comments in the tracker -02 – Expanded Section 2 – Architecture.

Slides:

Advertisements

Similar presentations

© 2006 NEC Corporation - Confidential age 1 November SPEERMINT Security Threats and Suggested Countermeasures draft-ietf-speermint-voipthreats-01.

Advertisements

EAP Channel Bindings Charles Clancy Katrin Hoeper IETF 76 Hiroshima, Japan November 08-13, 2009.

August 2, 2005EAP WG, IETF 631 EAP-IKEv2 review Pasi Eronen.

NHIN Specifications Richard Kernan, NHIN Specification Lead (Contractor), Office of the National Coordinator for Health IT Karen Witting, Contractor to.

Directory Architecture Plans and Status UNITS Meeting Feb 2005 Tom Board, Director, ISA.

NEA Working Group IETF meeting Nov 17, 2011 IETF 82 - NEA Meeting1.

Draft-ietf-abfab-aaa-saml Josh Howlett, JANET IETF 82.

SASL-SAML update Klaas Wierenga Kitten WG 9-Nov-2010.

SAML Right Here, Right Now Hal Lockhart September 25, 2012.

Doc.: IEEE /0394r0 Submission March 2008 Dorothy Stanley, Aruba NetworksSlide 1 IEEE IETF Liaison Report Date: Authors:

Draft-ietf-pki4ipsec-ikecert-profile-05 Brian Korver

(Preliminary) Gap Analysis Hannes Tschofenig. Goal of this Presentation The IETF has developed a number of security technologies that are applicable to.

SAML 2.1 Building on Success. Outline n Summary of SAML 2.0 n Work done since 2.0 n Objectives of SAML 2.1 n Proposed Task List n Undecided Issues n Invitation.

SAML 2.0: Federation Models, Use-Cases and Standards Roadmap

T-MPLS Update (abridged) IETF70 December 2007 Stewart Bryant

Considerations draft-norwin-energy-consider-02 Bruce Nordman (as contributor)

Project Moonshot update ABFAB, IETF 80. About Moonshot Moonshot is implementing ABFAB Developer meeting, 24 March 2011 Testing event, 25 March 2011 A.

Connect. Communicate. Collaborate Place organisation and project logos in this area Usage of SAML in eduGAIN Stefan Winter, RESTENA Foundation TERENA Networking.

Shibboleth Akylbek Zhumabayev September Agenda Introduction Related Standards: SAML, WS-Trust, WS-Federation Overview: Shibboleth, GSI, GridShib.

Taking stock and next steps CCWG F2F, 23 March 2015.

SAML in Authorization Policies draft-guenther-geopriv-saml-policy-00.

Workshop Presentation [1] Investigating Liberty Alliance and Shibboleth Integration Nishen Naidoo, Supervisor: Dr. Steve Cassidy.

Doc.: IEEE /0862r0 Submission July 2013 Dorothy Stanley, Aruba NetworksSlide 1 IEEE IETF Liaison Report Date: Authors:

- DCWAC - Where we’ve come from, Where we are, Where we’re headed.

Draft-barnes-geopriv-policy-uri. -03 (err… -02) We updated the draft (-02) in early September – … and forgot to post it We updated it again (-03) right.

NEA Requirements Update -06 version summary. Posture Transport Considerations Issue –Ability of existing protocols used for network access to meet requirements.

State of e-Authentication in Higher Education August 20, 2004.

EAP Method Update (EMU) IETF-80 Chairs: Joe Salowey Alan DeKok.

RADEXT WG IETF 91 Rechartering. Why? Current charter doesn’t allow us to take on new work that is waiting in the queue Has an anachronistic Diameter entanglement.

Guidelines for Cryptographic Algorithm Agility Russ Housley IETF 89 - SAAG Session.

12/8/2015 draft-blb-mpls-tp-framework-01.txt A framework for MPLS in Transport networks draft-blb-mpls-tp-framework-01.txt Stewart Bryant (Cisco), Matthew.

Network Structures WG Paul Griffin 13 January 2006.

Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Report and plans Attribute.

Image © Viatour Luc ( Project Moonshot TNC 2010 Vilnius, 1 June 2010 Josh Howlett, JANET(UK)

© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential.

Connect. Communicate. Collaborate Deploying Authorization Mechanisms for Federated Services in the eduroam architecture (DAMe)* Antonio F. Gómez-Skarmeta.

IETF 54, Yokohama Kutscher/Ott/Bormann 1 SDPng Update Dirk Jörg Carsten draft-ietf-mmusic-sdpng-05.txt.

Authentication and Authorisation in eduroam Klaas Wierenga, AA Workshop TNC Lyngby, 20th May 2007.

Deploying Authorization Mechanisms for Federated Services in eduroam Klaas Wierenga, EuroCAMP Helsinki, 17&18th April 2007.

NSDI Strategic Plan Update National Geospatial Advisory Committee Meeting December 11, 2013.

1 AASHTOWare Bridge Design Tool AASHTOWare Bridge Rating/Design User Group Training Meeting Virginia Beach – August 2013.

1 Header Compression over IPsec (HCoIPsec) Emre Ertekin, Christos Christou, Rohan Jasani {

Draft-melia-mipshop-mobility-services-ps-01.txt. From IETF #66 Discuss MIH PS (as expressed by the WG chair) Need a single PS at WG level (several drafts.

Cross-Enterprise User Authentication Year 2 March 16, 2006 Cross-Enterprise User Authentication Year 2 March 16, 2006 John F. Moehrke GE Healthcare IT.

Security and Privacy for the Smart Grid James Bryce Clark, OASIS Robert Griffin, RSA Hal Lockhart, Oracle.

IETF 78 Maastricht 27 July 2010 Josh Howlett, JANET(UK)

2 August 2005draft-ietf-lemonade-profile-031 lemonade Profile Alexey Melnikov Stéphane Maes

TEE: TLS Authentication Using EAP draft-nir-tls-eap-02.txt Yoav Nir Yaron Sheffer (presenter) Hannes Tschofenig Peter Gutmann IETF-70, Vancouver, Dec.

SPPP Transport Session Peering Provisioning Protocol draft-ietf-drinks-sppp-over-soap-04.

21-07-xxxx IEEE MEDIA INDEPENDENT HANDOVER DCN: Title: Addressing Comment #2142 Date Submitted: March, 18, 2008 Presented.

Project Moonshot Daniel Kouřil EGI Technical Forum

CLASSe PROJECT: IMPROVING SSO IN THE CLOUD Alejandro Pérez Rafael Marín Gabriel López

PDS 2010 System Design Report MC Face-to-Face Washington, DC March 25-26, 2010.

IETF Provisioning of Symmetric Keys (keyprov) WG Update WG Chairs: Phillip Hallam-Baker Hannes Tschofenig Presentation by Mingliang Pei 05/05/2008.

HMA-T User Management (07-118) Abstract Test Suite Dr Andrew Woolf STFC Rutherford Appleton Lab.

CAPWAP Threat Analysis

HMA Identity Management Status

IT Infrastructure Plans

SAML New Features and Standardization Status

HMA Identity Management Status

IEEE IETF Liaison Report

Nancy Cam-Winget June 2015 SACM Requirements Nancy Cam-Winget June 2015.

Overview of IEEE Date: Authors: September 2014

Charles Clancy Katrin Hoeper IETF 73 Minneapolis, USA 17 November 2008

Guidelines for the implementation of Regulation (EC) No 91/2003 of the European Parliament and of the Council on Rail transport statistics version 6.0.

Failover mechanisms if available

Diameter ABFAB Application

IEEE IETF Liaison Report

Status of Medicaid Expansion Across the States

Presentation transcript:

ABFAB Architecture Jim Schaad August Cellars

Previous Updates -01 – Resolved a number of review comments in the tracker -02 – Expanded Section 2 – Architecture – Now does what the intro suggested cover the architecture and some of the design decisions

Upcoming Expect a new draft 1 st of September Continued expansion of section 2 Substantive updates to section 3

Help Required Privacy Considerations – Reference the IAB document or go our own way Deployment Considerations – Input from people desired – Infrastructure deployment – Application deployment

Help Required SAML assertion profile and attribute providers – Anybody implemented yet? – Deployment questions Esp. if any federated attribute profiles used EAP restrictions – What EAP attributes are required vs. suggested – EAP channel binding issues – Tunneled EAP methods: TEAP, TTLS, EAP-FAST – Non-tunneled EAP methods

Help Required Application Development – Shortage of documentation for newcomers – GSS-API Channel binding – what needs to be done – Transport requirements We know some for authentication, but what about normal operations – Order, lockstep, resends Reviews – what are we missing

Questions?