Internet2 – InCommon and Box Marla Meehl Colorado CIO 11/1/11.

Slides:



Advertisements
Similar presentations
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Advertisements

1 Leveraging Your Existing Campus Systems to Access Resource Partners: Federated Identity Management and Tales of Campus Participation EDUCAUSE 2006 October.
The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.
NIST Big Data Public Working Group Security and Privacy Subgroup Presentation September 30, 2013 Arnab Roy, Fujitsu Akhil Manchanda, GE Nancy Landreville,
Secure Communication Architectures.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Information Resources and Communications University of California, Office of the President UCTrust David Walker Office of the President University of California.
Moving Shared Print to the Network Level Emily Stambaugh ALA Annual Conference Las Vegas, NV June 27, 2014 “Looking to the Future of Shared Print” Shared.
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.
Network Identity Kai Kang 27 th October Outline Introduction –Definition –Five drivers –Basic services –Roadmap Network Identity management approaches.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
InCommon and Federated Identity Management 1
National Center for Supercomputing Applications University of Illinois at Urbana-Champaign InCommon and TeraGrid Campus Champions Jim Basney
Cloud Usability Framework
The Business of Identity Management Barry R. Ribbeck Director Systems Architecture & Infrastructure Rice University
InCommon Policy Conference April Uses  In order to encourage and facilitate legal music programs, a number of universities have contracted with.
SWITCHaai Team Federated Identity Management.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Federated Identity Management in New Zealand Sat Mandri Service Manager TNC15 REFEDs Meeting, 14 th June 2015.
2 Session # 50 Presented by: Russell Judd Chief Industry and Government Relations Officer Great Lakes Educational Loan Services Michael Sessa Executive.
The InCommon Federation The U.S. Access and Identity Management Federation
1 The Partnership Challenge Higher education’s missions are realized in increasingly global, collaborative, online relationships –Higher educations’ digital.
National Center for Supercomputing Applications University of Illinois at Urbana-Champaign Secure Access to Research Infrastructure via the InCommon Federation.
Single Sign-On Multiple Benefits via Alaska K20 Identity Federation 20 May 2011 BTOP Partner Meeting Anchorage, Alaska 20 May 2011 BTOP Partner Meeting.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
·
Federated or Not: Secure Identity Management Janemarie Duh Identity Management Systems Architect Chair, Security Working Group ITS, Lafayette College.
Belnet Federation Belnet – Loriau Nicolas Brussels – 12 th of June 2014.
2005 © SWITCH Perspectives of Integrating AAI with Grid in EGEE-2 Christoph Witzig Amsterdam, October 17, 2005.
…. PrePlanPrepareMigratePost Pre- Deployment PlanPrepareMigrate Post- Deployment First Mailbox.
1 Annual Meeting 2004 CrossRef Publishers International Linking Association, Inc Charles Hotel, Cambridge, MA November 9 th, 2004.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Shibboleth at Columbia Update David Millman R&D July ’05
Landstar Application Case Study: Development Of Content-rich Solutions For The Mobile Employee Bob Leo Director of Professional Services October 15, 2000.
EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks David Kelsey RAL/STFC,
The InCommon Federation The U.S. Access and Identity Management Federation
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
State of e-Authentication in Higher Education August 20, 2004.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Test your IdP
Access and Information Protection Product Overview Andrew McMurray Technical Evangelist – Windows
Towards a Unified Authentication, Authorisation and Accounting Infrastructure Patrick Kirk Chief Technical Officer (YHGfL) Lifelong Learning Infrastructure.
Introducing the new Office Fast and fluid experience with touch, pen, mouse & keyboard Immersive touch-optimized Windows 8 store apps Support for.
NSTIC and the Identity Ecosystem Jim Sheire Senior Advisor NSTIC National Program Office, NIST 14 November 2012.
GRID ANATOMY Advanced Computing Concepts – Dr. Emmanuel Pilli.
University of Washington Collaboration: Identity and Access Management Lori Stevens University of Washington October 2007.
Federations: The New Infrastructure Speaker Name Here Date Here Speaker Name Here Date Here.
User and Device Management
Identity Management, Federating Identities, and Federations November 21, 2006 Kevin Morooney Jeff Kuhns Renee Shuey.
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
Store, Manage, and Archive Content in the Cloud Michele Kimpton, DuraSpace CEO DuraSpace Nate Klingenstein, Internet 2 Internet 2 meeting, April 2013.
1 Identities and Federation: The Next IT Wave (The Canadian Access Federation) Rick Bunt President The Canadian University Council of CIOs (CUCCIO)
INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.
Leveraging Campus Authentication to Access the TeraGrid Scott Lathrop, Argonne National Lab Tom Barton, U Chicago.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
© 2015 TM Forum | 1 Service Level Management for Smart City Ecosystems and Trusted IoT Nektarios Georgalas, BT.
Designing Identity Federation Policy, the right way Marina Vermezović, Academic Network of Serbia TNC2013 conference 4 May 2013.
Education Portal Solutions for Higher Education Education portals create a common gateway to the data and services that the people throughout your university.
Enabling Secure Multi-Organization Collaboration Andrew Porter IT Director, Enterprise Architecture Merck & Co., Inc.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
With Office 365, Collaborative Solution by Qorus Streamlines Document Assembly and Enhances Productivity for Any Business-Critical Documents OFFICE 365.
Tom Barton, Senior Director for Integration, University of Chicago
92% of the world’s data was created in the past 2 years
Innovative Solutions from Internet2
A Business Case for Identity Management in Higher Education
PASSHE InCommon & Federated Identity Workshop
Registrars are a Barrier to Collaboration: Truth or CIO Pretext?
Web Information Systems Engineering (WISE)
Baseline Expectations for Trust in Federation
Presentation transcript:

Internet2 – InCommon and Box Marla Meehl Colorado CIO 11/1/11

InCommon – What is it A federation is an association of organizations that use a common set of attributes, practices and policies to exchange information about their users and resources in order to enable collaborations and transactions InCommon is a formal federation of organizations focused on creating a common framework for collaborative trust in support of research and education InCommon makes sharing protected online resources easier, safer, and more scalable in our age of digital resources and services Leveraging SAML-based authentication and authorization systems, InCommon enables cost-effective, privacy-preserving collaboration among InCommon participants InCommon eliminates the need for researchers, students, and educators to maintain multiple, password-protected accounts The InCommon federation supports user access to protected resources by allowing organizations to make access decisions to resources based on a user's status and privileges as presented by the user's home organization

InCommon – Benefits InCommon supports web-based distributed authentication and authorization services, an example of which is controlled access to protected library resources Participation in InCommon means that trust decisions regarding access to resources can be managed by exchanging information in a standardized format Using a standard mechanism for exchanging information provides economies of scale by reducing or removing the need to repeat integration work for each new resource Since access is driven by policies set by the resource being accessed, higher security and more granular control to resources can be supported Reduced account management overhead is another benefit, since users can be authenticated and access resources from the home institution and no longer need separate accounts to access particular resources InCommon is operated by Internet2 to provide consistency and participant support InCommon also preserves privacy since the home institution controls when identity is disclosed. Information can be exchanged about authorized user access, without having to disclose the identity of the user unless both sides agree it's needed.

InCommon - Membership There are two primary categories of federation participation in InCommon: Higher Education Institutions and their Sponsored Partners Organizations applying to join InCommon must agree at an executive level of their organization to the terms and conditions of federation participation, which include documenting an organization's practices and procedures used to grant and manage user accounts. There are also technical requirements to support InCommon's federated authentication model InCommon operates on a cost-recovery basis with fees reviewed annually. Fees are: A one time Participant Registration Fee of $700 and an annual fee of between $1,100 and $3,000, which includes one identity management system and up to 50 Service Provider IDs ▫The level of annual fee depends, for an educational institution, on the Carnegie classification; and, for an SP, on annual revenue

BOX - cloud content management platform One of the most commonly voiced collaboration needs today is the ability to easily access and share your personal content with anyone, from anywhere. Since 2005, Box has been helping more than six million individuals, small businesses and Fortune 1000 companies do just that. And starting in early 2012, Internet2 members who are also subscribers to InCommon can add this valuable service to their membership for an additional fee. Box With the Internet2 NET+ Box service: ▫Users can access, store and share content securely anywhere, anytime, on any device—at an affordable price ▫Users receive storage based on institutional subscription level and full mobile device access and support ▫Admins get an easy-to-use interface for managing and reporting on Box content ▫University efforts to protect information and ensure the privacy of personal data are supported ▫mobile device access and support