AutoSignon - A Reference Implementation of a Secure Single Sign-On Blackboard Building Block TM Richesh Ruchir, Technical Manager

Slides:



Advertisements
Similar presentations
MFA for Business Banking – Security Questions with 2nd Request Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing.
Advertisements

MFA for Business Banking – Security Questions with Reset Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing.
Different Approaches to Single-Sign-On Jeff Kahn, Verbena Consulting.
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
Copyright © 2005, SAS Institute Inc. All rights reserved. User Authentication and Single Sign-on Across the SAS ® 9 Platform Larry Noe and Scott Sweetland,
Introduction to DocuSign
Unifying the conceptual levels of network security through use of patterns Ph.D Dissertation Proposal Candidate: Ajoy Kumar, Advisor: Dr Eduardo B. Fernandez.
© Blackboard, Inc. © Northwestern University All rights reserved. Delivering New Data Types With Plone: A Building Block for Versatile Content Management.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
Virtual techdays INDIA │ august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist –
Identity and Access Management
Public Key Infrastructure from the Most Trusted Name in e-Security.
Sage CRM Developers Course
Aegis Identity Software, Inc. presents Trends in Identity and Access Management in Higher Education to US Federations June 20, 2012 Janet Yarbrough – Director.
TAM STE Series 2008 © 2008 IBM Corporation WebSEAL SSO, Session 108/2008 TAM STE Series WebSEAL SSO, Session 1 Presented by: Andrew Quap.
Shibboleth-intro-dec051 Shibboleth A Technical Overview Tom Scavo NCSA.
Claims Based Authentication
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Introduction to the Enterprise Library. Sounds familiar? Writing a component to encapsulate data access Building a component that allows you to log errors.
Valma Technical Aspects
Clarity Educational Community Get the Results You Need When You Need Them Transitioning to CA PPM On Demand Presented by: Joshua.
European Interoperability Architecture e-SENS Workshop : Document Interoperability Solutions use case 7-8 January 2015.
Bboogle: Updates and Experience Patricia Goldweic, Sr. Software Engineer, Northwestern University Brian Nielsen, Project Manager, Faculty Initiatives,
Security in Virtual Laboratory System Jan Meizner Supervisor: dr inż. Marian Bubak Consultancy: dr inż. Maciej Malawski Master of Science Thesis.
Identity Management: Past, Present, and Future Wait, the requirements have changed again.
ArcGIS Server and Portal for ArcGIS An Introduction to Security
SSL, Single Sign On, and External Authentication Presented By Jeff Kelley April 12, 2005.
Federated or Not: Secure Identity Management Janemarie Duh Identity Management Systems Architect Chair, Security Working Group ITS, Lafayette College.
Phone: Mega AS Consulting Ltd © 2007  CAT – the problem & the solution  Using the CAT - Administrator  Mega.
Higher Express Banner-APEX Integration Framework
CAS Lightning Talk Jasig-Sakai 2012 Tuesday June 12th 2012 Atlanta, GA Andrew Petro - Unicon, Inc.
Openness and Extending Blackboard Software Asbed Bedrossian Otto Khera USC.
Openid Connect
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Shibboleth Akylbek Zhumabayev September Agenda Introduction Related Standards: SAML, WS-Trust, WS-Federation Overview: Shibboleth, GSI, GridShib.
Portal-based Access to Advanced Security Infrastructures John Watt UK e-Science All Hands Meeting September 11 th 2008.
Qaforum Security Structure. What’s SSO Single sign-on (SSO) is mechanism whereby a single action of user authentication and authorization can permit a.
Extending ISA/IAG beyond the limit. AGAT Security suite - introduction AGAT Security suite is a set of unique components that allow extending ISA / IAG.
Postpaid Monthly Invoices (for MAC Authenticated Clients)
WLANs & Security Standards (802.11) b - up to 11 Mbps, several hundred feet g - up to 54 Mbps, backward compatible, same frequency a.
All Rights Reserved 2014 © CMG Consulting LLC Federated Identity Management and Access Andres Carvallo Dwight Moore CMG Consulting, LLC October
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Access Management 2.0: UMA for the #UMAam20 for questions 20 March 2014 tinyurl.com/umawg for slides, recording, and more 1.
Building Mobile Phone Applications With Windows Azure Nick HarrisWindows Azure Technical Evangelist Microsoft Blog:
Security fundamentals Topic 5 Using a Public Key Infrastructure.
Providing secure mobile access to information servers with temporary certificates Diego R. López
February, TRANSCEND SHIRO-CAS INTEGRATION ANALYSIS.
Attribute Delivery - Level of Assurance Jack Suess, VP of IT
Campuses New to Shibboleth: WebSSO Barry Johnson
Security Issues and Challenges in High Performance Grid Computing SASA SUBOTIC SASA SUBOTIC University of Pretoria.
Step 1of 11 Admin Demonstrations Click Here to Start.
1 Certification Issue : how do we confidently know the public key of a given user? Authentication : a process for confirming or refuting a claim of identity.
Introduction to Terra Dotta Applications Integration with Campus Data Systems for institutions beginning their software implementation.
Business Objects XIr2 Windows NT Authentication Single Sign-on 18 August 2006.
SAP GRC(Governance Risk and Compliance)/SECURITY ONLINE TRAINING  Magnific Name : SAP GRC/SECURITY 24*7 Technical support  faculty : Real time Experience.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Laserfiche Business Process Library: Jumpstart Business Process Automation Brandon Buccowich, Technical Marketing Engineer | Katie Fries, Presales Consultant.
Secured Services Best Practices on ArcGIS for Server Patrick Jackson & Thomas Noble.
Shibboleth Integration Fairfield University
CAS and Web Single Sign-on at UConn
Integrating Data Reviewer and Workflow Manager to Automate Data Quality Control Workflows Jay Cary.
Addressing the Beast: Single Sign-On II
Presentation title (including which technology you address)
Office 365 Identity Management
X-Road as a Platform to Exchange MyData
Computer Network Information Center, Chinese Academy of Sciences
Presentation title (including which technology you address)
D Guidance 26-Jun: Would like to see a refresh of this title slide
Presentation transcript:

AutoSignon - A Reference Implementation of a Secure Single Sign-On Blackboard Building Block TM Richesh Ruchir, Technical Manager

A Reference Implementation of a Secure Single Signon Blackboard Building Block™ Introduction Single Sign-On Blackboard ® Authentication Framework Introduction to AutoSignon Implementation Details Demo Application Open Source Project Q & A

Single Sign-On Identity management is an emerging challenge at many institutions Existing institutional solutions –CAS, Shibboleth Industry standards tackling authentication / authorization –OpenID, Basic Learning Tools Interoperability/LTI Not all institutions are prepared to invest in complex solutions Smaller institutions may not have a need

Blackboard ® Authentication Framework LDAP Internal database Custom authentication mechanism –Built by clients and by Blackboard Consulting Services(sm) –Support for CAS, Shibboleth, and others

Introduction to AutoSignon Allows users who are authenticated by a trusted system to access the Blackboard platform without needing to log in again (Inbound SSO) Based on the WebCT CE/Vista Automatic Signon Protocol Uses a MAC (Message Authentication Code) generated by request parameters and shared secret to validate incoming SSO requests before processing

AutoSignon Workflow

Implementation Details

Implementation Details (Contd.)

Admin Settings

Demo Application Reference implementation application

Open Source Project Available at

Q & As ?

Please provide feedback for this session by ing The subject of the should be title of this session: AutoSignon - A Reference Implementation of a Secure Single Sign-On Blackboard Building Block TM