Dr Tony McDonald - FMSC Breaking Boundaries 2005 1 Dr Tony McDonald - FMSC

Slides:



Advertisements
Similar presentations
Shibboleth at Cardiff University Lindsay Roberts Project Manager – Shibboleth Implementation Phase 2.
Advertisements

Joint Information Systems Committee 01/04/2014 | | Slide 1 Connecting People to Resources The JISC Access Management Strategy Nicole Harris Programme Manager.
JISC Conference 2004 Promoting E-Resources Clare Holmes Head of Sales, UK & Ireland.
RIPPLL Regional Interoperability Project on Progression for Lifelong Learning.
RIPPLL Regional Interoperability Project on Progression for Lifelong Learning Dr Angela Smallwood, Project Director Sandra.
A view from Kingston Some thoughts on collaborative ePortfolio project work in Nottingham Sandra Kingston, Project Manager Centre for International ePortfolio.
Directorate of Learning Resources Accessing electronic journals from off-campus This causes lots of headaches, but dont despair, heres how to do it! If.
Joint Information Systems Committee Supporting UK Further and Higher Education JISC Information Environment and Architecture, part 1 Alicia Wise and Andy.
A centre of expertise in digital information managementwww.ukoln.ac.uk Approaches To E-Learning: Developing An E-Learning Strategy Brian Kelly UKOLN University.
The technical side of Portals and ePortfolios Bonnie Ferguson Michael Wilcox.
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
Introduction to Shibboleth and the IAMSECT Project.
KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.
Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.
Introduction to Library Resources within SVHG September 2009.
Shibboleth at Newcastle Caleb Racey Webteam ISS Shibboleth experiences Program  Background  What shib has enabled  Benefits of shib  How to do shib.
JISC Metaleth Project Athens, Shibboleth and the University of Bristol 29 th January 2007.
Joint Information Systems Committee 19/05/2015 | | Slide 1 Voyage of the UK JISC Federation: Shibbolising the UK’s Research, Higher and Further Education.
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.
Thee-Framework for Education & Research The e-Framework for Education & Research an Overview TEN Competence, Jan 2007 Bill Olivier,
Case Study: Newcastle University
Iamsect.ncl.ac.u k IAMSECT Inter-institutional Authorisation Management to Support eLearning with reference to Clinical Teaching Core Middleware Programme.
Using networked technologies to support staff development 1.Some definitions. 2.Where are we now? 3.Some potential benefits/applications. 4.Issues to consider.
Shibboleth access management: a replacement for Athens and more? Mark Norman and Christian Fernau OUCS 21 June 2007.
Healthcare Library Induction Name: Abbas Bismillah Job title: Healthcare Library Manager.
Developments in Access and Identity Management Phil Leahy – Athens Product Manager.
© 2004, School of Medical Education Development, University of Newcastle upon Tyne ePortfolios Ottawa Conference, 2004 Implementation and evaluation of.
NHS Greater Glasgow & Clyde Local Data Sharing Partnership Case Study “ Data Sharing Enabled by Clinical Portal Technologies” George Lynch Information.
© Copyright NHS Institute for Innovation and Improvement 2011 Productive General Practice Introduction Dr Richard More Clinical Lead PGP Director, Xytal.
1 Beyond the Library: i-Skills for University Administration © Netskills, Quality Internet Training, Newcastle University Partly.
Identity Management 2.0 George O. Strawn NSF CIO.
National Science Foundation Chief Information Officer CIO Fall Update for the Advisory Committee for Business and Operations: Identity Management 2.0 George.
Introduction to the National Learning Management System (NLMS) This presentation has been designed as a template for Trusts to adapt and change. It is.
Practical issues addressed during pilot (clip-on pouches to improve portability + higher capacity batteries). Conclusions / Future Plans This pilot demonstrates.
Engaging with communities for health improvement: lessons for commissioners Presentation at ‘Reducing health inequalities in Bradford & Airedale Districts’,
WORKING EFFECTIVELY IN AN INFORMATION TECHNOLOGY ENVIRONMENT
Supporting further and higher education AA(A) – What does it mean to the service provider? Alan Robiette, JISC Development Group.
WXET1143 Lecture7: , Chat and Messaging. Introduction  Electronic mail is everywhere.  Now many people in business, government, and education use.
Copyright JNT Association 2005Copyright JNT Association An Introduction to Access Management and the UK Federation Simon Cooper.
TNC2004 Rhodes 1 Authentication and access control in Sympa mailing list manager Serge Aumont & Olivier Salaün May 2004.
The Joined up Web - Newcastle University, a case study Dr Tony McDonald Faculty of Medicine.
Dr. Bhavani Thuraisingham October 2006 Trustworthy Semantic Webs Lecture #16: Web Services and Security.
EPICS Outcomes of a regional ePortfolio initiative to support life-long learning Horner AP *, Cotterill SJ *, Ingraham B +, Thompson.
Supporting further and higher education Middleware and AA within the JISC Environment Nicole Harris, JISC Development Group.
Alan Seatwo Knowledge Management Specialist How information helps to promote diversities and social justice An overview of an information literacy project.
NHS – Enabling Change Improving processes and adding value 5th February 2015 Ian Quinnell Associate Director for Programme Management and Service Improvement.
Shibboleth On-line Authentication System Jon Browne Senior Consultant Drew Heald BSc (Hons), MPhil, MCP Systems Developer IBIS Business Consultants Ltd.
Key themes covered Search engines Locating/ assessing suitable resources Information Skills – knowing where to look Free web-based RDN,NLN, Ferl JISC or.
ePET portfolio EPICS and Beyond… Simon Cotterill School of Medical Education Development University of Newcastle upon Tyne,
MAT U M A T U Middleware Assisted Take-Up Service For JISC Funded Early Adopters.
WISER: Remote access to databases and datasets This session will help you to set up access to Oxford online resources from your home computer. The session.
Federated Access Management The Motherwell Experience Carole Gray.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
UK Access Management Federation Matthew Dovey Programme Director, Digital Infrastructures (Research) 10 June 2011 CERN.
Intra- to Inter-institutional Use of Shibboleth Bruce Vincent, Stanford University June 28, 2006.
Extending the librarian role A Conversation Briefing with Linda Ward, Library Services Manager, University Hospitals of Leicester NHS Trust.
HINARI: What have we learned? World Health Organization Trieste, October 2003.
Shibboleth & Federated Identity A Change of Mindset University of Texas Health Science Center at Houston Barry Ribbeck
Knowledge Services Group Introduction The shared space is to aid communication and sharing of knowledge for staff working in remote and rural care Encourage.
KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.
How to register for an NHS Athens Account Contact Matt Holland [
Shibboleth Use at the National e-Science Centre Hub Glasgow at collaborating institutions in the Shibboleth federation depending.
International Students Mentoring Programme Monira Ahmed International Students Mentoring Project Manager University of Liverpool.
SSH. 2 SSH – Secure Shell SSH is a cryptographic protocol – Implemented in software originally for remote login applications – One most popular software.
INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Embedding Making Every Contact Count in Nursing and Midwifery
Unit# 5: Internet and Worldwide Web
Presentation transcript:

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Authentication and Authorization (including focussing on Shibboleth) Dr Tony McDonald, Assistant Director FMSC Project manager, IAMSECT Project manager, FDTL-4 ePortfolios Technical Director, CETL4HealthNE

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Background School of Medical Education Development Responsible for IT provision of the MBBS programme, 1700 students, 1400 staff - many in the NHS Project manager, IAMSECT (Shibboleth dissemination) Project manager, FDTL-4 ePortfolios Technical Director, CETL4HealthNE ie not an über-geek...

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 The session... Is about information/knowledge transfer Is informal Is about making connections Is about problem solving... Is about recognizing the potential of authentication/authorization systems Is about getting these systems setup at your institution

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Outline What is authentication/authorization Single sign on Shibboleth (introduction, issues) Use cases Discussion Shibboleth futures Roundup

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 What is authentication/authorization? authentication - identifies who you are username, N.I. number, address, employee number, biometrics, DNA authorization - what you are allowed to do almost always requires another level of lookup in the past, particularly for online systems, these have usually been combined. You login to a system and it knows what you can do.

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Authentication login (username/password) - Windows, unix, Amazon username can be anything; d56rtx, would be keyed against flat files, databases, active directory, LDAP These ‘databases’ can be held locally or remotely

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Authentication - who you are You have the keys

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Authorization - what you can do But can you drive the car?

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Single sign on A way of accessing more systems using one login It can be centralised (Athens, one big domain) Big database in the middle of the world, managed centrally Can also be de-centralised (Shibboleth is best known example) Lots of small databases, managed locally implies some level of communication between sites

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Why use single sign on? Shared students including students from ‘feeder’ colleges Shared resources Journals, re-usable learning objects Not necessarily electronic resources Increasingly needed for ‘joined up’ systems and processes

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Shibboleth Possibly the first password Distributed authentication and authorization Standards-based (SAML) Lots of backing from JISC and Internet-2 Then said they unto him, Say now Shibboleth: and he said Sibboleth: for he could not frame to pronounce it right. Then they took him, and slew him at the passages of Jordan: and there fell at that time of the Ephraimites forty and two thousand. Judges 12:5-7 Then said they unto him, Say now Shibboleth: and he said Sibboleth: for he could not frame to pronounce it right. Then they took him, and slew him at the passages of Jordan: and there fell at that time of the Ephraimites forty and two thousand. Judges 12:5-7

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Core Concepts of Shibboleth A user is authenticated at “home” Home knows who and what a user is eg Tony McDonald, member of staff; access to some admin areas Service providers make access decisions based on what a user is (ie staff, student, medic etc) Service providers should only know the minimum about a user Can improve privacy

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Some Issues... Involves trust between institutions - this must come first and this is where federations can help Data protection issues Technical ability of provider and consumer of Shibboleth- enabled resources not rocket-science, but not trivial either (IAMSECT is helping to simplify the process)

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Some use cases Based on some selected projects currently underway; IAMSECT (Shibboleth awareness raising, developing functioning systems) FDTL-4 ePortfolios (ePortfolios for medicine, since grown into a major growth area for our school) CETL4HealthNE (9000 health care students in 3 years)

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 IAMSECT JISC funded May 04-Apr 06 Three Universities; Newcastle*, Durham* and Northumbria, plus Subject Centre for Medicine, Dentistry and Veterinary Medicine - and the NHS Technical and managerial issues are addressed, documented and disseminated. What worked? What could have been done better? More people using Shibboleth Better inter-institutional relations Insight into NHS processes Consortium agreements Different VLEs/OSes worked Emphasized benefits earlier? Certification authority issues BlackBoard/Open Source

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 ePortfolios FDTL-4 funded Oct 03-Sep 05 Three Universities; Newcastle, Sheffield and Leeds - focussing on medical students ePortfolios for medical students at all institutions, using two different VLEs What worked? What lessons were learnt? ePortfolios integrated into course Better inter-institutional relations Led to ePET project - web service enabled ePortfolio, authentication issues Also led to EPICS project - ePortfolios and Shibboleth ePortfolios and Shibboleth are not a natural fit See Simons talk tomorrow! (10:30am) Sydney room - ie here

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 CETL4HealthN E HEFCE funded Oct 04-Sep 09 Five Universities of North-East; Newcastle, Northumbria, Durham, Sunderland, Teesside. Strategic Health Authorities and NHS Trusts £4.5 million over 5 years Impact on 9000 diverse students in first 3 years What’s working? What could be done better? Better communications - always Emphasized benefits earlier? People wanting to use Shibboleth Good inter-institutional relations Insight into NHS processes

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Relation to ePortfolios (FDTL- 4) See Simons talk tomorrow! (11am) Moving data between institutions

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Shibboleth and CETL4HealthNE Perhaps an ideal vehicle for Shibboleth Access required to wide range of resources VLEs, training, video, admin. For a wide range of students From many institutions Five HEIs, SHA’s, NHS Trusts Medicine Nursing Physiotherapy Dentistry Speech & Language Therapy Occupational Therapy Pharmacy Radiography Social Work Foundation Degrees and 9000 students impacted in first three years...

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 JISC Investment Various programmes, attacking problem from both sides: Information provision (EDINA, MIMAS etc) - origins in Shibboleth parlance Information usage (core middleware) - targets in Shib-speak Large sums of money have been invested 01/ projects, 05/05, 07/04, DeL - 6 projects And are transitioning from Athens to Shibboleth

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Your Turn! - 15 mins Using examples from the use cases (or wherever), do a SWOT on; Introducing single sign on systems into my organisation

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Discussion points? It could work but not here... What would we use it for? How do we get started?

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Username management Should be greatly reduced should be done by institutional IT services Access to wider variety of resources Athens are ‘Shibboleth-enabling’ services, using their gateway JISC - doing same thing with EDINA, MIMAS and other services How does it help me?

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Shibboleth Futures Shibboleth is a disruptive technology Authentication, privacy barrier removed Online “reputation based” systems could kill journals? Services bought in from outside e.g. webmail for students Niche services flourish What happens next?

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Group Discussion Some possible talking points; Is Shibboleth really disruptive? How can I make this work at my institution? and It’ll never work at my institution Where do I sign up?

Dr Tony McDonald - FMSC Breaking Boundaries Dr Tony McDonald - FMSC Breaking Boundaries 2005 Resources IAMSECT - Lots of links and resources to Shibboleth and related information. Including a glossary MEDEV - VLEs, ePortfolios, Admin systems, Medical Education, CETL4HealthNE, Subject Centre for Medicine, Veterinary Medicine and Dentistry JISC - (search for Shibboleth) Driving the Shibboleth agenda in the UK

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.