Internet 2 Weaving a Trust Fabric Shibboleth & PKI Spring 2003 Barry R Ribbeck University of Texas Health Science Center at.

Slides:



Advertisements
Similar presentations
Federated Identity for Grid Architects Tom Scavo NCSA
Advertisements

Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.
Dartmouth PKI Certificate Deployment June 2004 Fed Ed Meeting.
CREN-Mellon conference, December 1, 2001 University of Texas PKI Status.
Federations in Texas Barry Ribbeck University of Texas Health Science Center at Houston.
CAMP Med Identity and Access Management for HIPAA: Technology Model William A. Weems Assistant Vice President Academic Technology The University of Texas.
Identity Management Realities in Higher Education NET Quarterly Meeting January 12, 2005.
PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
The PKI Lab at Dartmouth. Dartmouth PKI Lab R&D to make PKI a practical component of a campus network Multi-campus collaboration sponsored by the Mellon.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
UC Irvine’s Pre-Shib Attribute Setup PH / QI Directory Provides Authoritative Attribute Store –Had both Faculty / Staff and Student Information UCI’s Campus.
Introduction to PKI Mark Franklin September 10, 2003 Dartmouth College PKI Lab.
NJVid New Jersey Video Portal 1 Grant partners. NJVid New Jersey Video Portal 2 NJTrust - New Jersey Identity Trust Federation NJViD Advisory Board Meeting.
Identity Management and PKI Credentialing at UTHSC-H Bill Weems Academic Technology University of Texas Health Science Center at Houston.
PKI-Enabled Applications That work! Linda Pruss Office of Campus Information Security
CAMP - June 4-6, Copyright Statement Copyright Robert J. Brentrup and Mark J. Franklin This work is the intellectual property of the authors.
Learning Management Systems Camp June 2004 Barry R Ribbeck UT HSC Houston Copyright, Barry Ribbeck, This work is the intellectual property of the.
Shibboleth Update a.k.a. “shibble-ware”
Weaving a Trust Fabric: Shibboleth & PKI & Grids Keith Hazelton, Copyright 2003 University of Wisconsin-Madison Senior IT Architect Internet2 MACE member.
Web Application Authentication with PKI & Other Functions Bill Weems & Mark B. Jones Academic Technology University of Texas Health Science Center at Houston.
1 Leveraging Your Existing Campus Systems to Access Resource Partners: Federated Identity Management and Tales of Campus Participation Clair Goldsmith,
1 PKI Update September 2002 CSG Meeting Jim Jokl
F. Guilleux, O. Salaün - CRU Middleware activities in French Higher Education.
PKI interoperability and policy in the wireless world.
The Windows NT ® 5.0 Public Key Infrastructure Charlie Chase Program Manager Windows NT Security Microsoft Corporation.
TNC2004 Rhodes 1 Authentication and access control in Sympa mailing list manager Serge Aumont & Olivier Salaün May 2004.
7 October 2015 Shibboleth. Agenda  Shibboleth Background and Status  Why is Shibboleth Important (to Higher Ed)?  Current Pilots Course Management.
1 PKI & USHER/HEBCA Fall 2005 Internet2 Member Meeting Jim Jokl September 21, 2005.
Internet2 Health Sciences Security Jere Retzer, OHSU March 7, 2001.
Co Chairs C. W. Goldsmith University of Alabama at Birmingham David L. Wasley University of California Office of the President.
David L. Wasley Office of the President University of California Shibboleth Safe delivery of reliable authorization data David L. Wasley University of.
NSF Middleware Initiative Renee Woodten Frost Assistant Director, Middleware Initiatives Internet2 NSF Middleware Initiative.
Information Technology  © 2001 The Trustees of Boston College  5/8/2003  Slide 1 Why Standards? Campus Perspective Bernard W. Gleason XML Forum Alexandria,
Cullen Jennings Certificate Directory for SIP.
Dartmouth PKI Update Robert Brentrup Internet2 Member Meeting April 21, 2004.
Shibboleth for Local Attribute Delivery 21 June 2007.
Internet2 Middleware Initiative Shibboleth Ren é e Shuey Systems Engineer I Academic Services & Emerging Technologies The Pennsylvania State University.
John Douglass, Developer Ron Hutchins, Dir. Engineering Herbert Baines, Dir. InfoSec.
US of A and A Activities Ken Klingenstein, Director Internet2 Middleware Initiative.
Comité Réseau des Universités News from CRU activities: Identity federation, eduroam, PKI, SCS, Sympa, security policies cru.fr 7th.
1 Protection and Security: Shibboleth. 2 Outline What is the problem Shibboleth is trying to solve? What are the key concepts? How does the Shibboleth.
Leveraging Campus Authentication for Grid Scalability Jim Jokl Marty Humphrey University of Virginia Internet2 Meeting April 2004.
Digital Diversity: Multi- institutional Access to Distributed Course Resources Barry Ribbeck UT HSC - Houston.
SSL Certificates for Secure Websites Dan Roberts Kent Network Users Group Wednesday, 17 March 2004.
Module 2: Introducing Windows 2000 Security. Overview Introducing Security Features in Active Directory Authenticating User Accounts Securing Access to.
Bridge Certification Architecture A Brief Overview by Tim Sigmon May, 2000.
Shibboleth Trust Model Shibboleth/SAML Communities (aka Federated Administrations) Club Shib Club Shib Application process Policy decision points at the.
Shibboleth & Federated Identity A Change of Mindset University of Texas Health Science Center at Houston Barry Ribbeck
Digital Signatures and Digital Certificates Monil Adhikari.
Copyright Statement Copyright Robert J. Brentrup This work is the intellectual property of the author. Permission is granted for this material to.
Identity Management, Federating Identities, and Federations November 21, 2006 Kevin Morooney Jeff Kuhns Renee Shuey.
Deployed PKI in Higher Education An Overview. Goal Find Institutions that have end-user-focused PKI up and running, and document their experiences Some.
NMI-EDIT and Rice University Federated Identity Management: Managing Access to Resources in Texas Barry Ribbeck Director System Architecture and Infrastructure.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability Shibboleth - gLite Christoph.
01 October 2001 “...By Any Other Name…”. Consequences and Truths (Ken) The Pieces and the Processes (Bob) Directories (Keith) Shibboleth and SAML (Scott)
Mary Trauner Senior Research Scientist Georgia Institute of Technology Middleware for Video.
1 US Higher Education Root CA (USHER) Update Fed/Ed Meeting December 14, 2005 Jim Jokl University of Virginia.
Blackboard Learning System r6 and Shibboleth Barry Ribbeck U.Texas Health Science Center at Houston Christopher Etesse Blackboard Inc.
Federated Identity Management at Virginia Tech
Federation Systems, ADFS, & Shibboleth 2.0
Scott Cantor April 10, 2003 Shibboleth and PKI Scott Cantor April 10, 2003.
Secure Enterprise Technology Initiatives e-Provisioning Group
USHER U.S. Higher Education Root Certificate Authority
Goals Introduce the Windows Server 2003 family of operating systems
Public Key Infrastructure from the Most Trusted Name in e-Security
U.T. System Federated Identity Management Update
HIMSS National Conference New Orleans Convention Center
Shibboleth Deployment Overview
September 2002 CSG Meeting Jim Jokl
Presentation transcript:

Internet 2 Weaving a Trust Fabric Shibboleth & PKI Spring 2003 Barry R Ribbeck University of Texas Health Science Center at Houston

UT Topology 16 physical institutions of higher learning 1 virtual institution All element operated independently In most cases, the institutions are geographically dispersed throughout Texas All institutions issue identity certificates as intermediate CA under the Verisign Public Root

Current PKI Uses System Wide SMIME signature Houston specific uses –SMIME signing and encryption –Strong A&I for 3 tier web applications Student Grades, Resident evaluations, LDAP Group management, CPHS, and many many others…… –VPN –Wireless Access (soon)

Commitments to PKI UT System wide publicly rooted PKI in its 5 th year Additional opportunities for use / expansion –Hippa –Events that exposed security weakness in a public venue

Collaboration Opportunities in Texas The University of Texas –Inter/Intra Institutional Within the Texas Medical Center-Houston –Inter-Institutional Outside the Texas Medical Center –Intra-Institutional

UT Collaborations Inter/Intra-Institutional UT Information Security (UT InfoSec) –Driving PKI requirements IT Security Hippa (TAC 202 Lite) Texas Administrative Code 202 Satellite Campuses –UT Houston School of Public Health –UT Houston School of Nursing

TMC Collaborations Graduate Medical Evaluations Student Exchange programs –UT, Rice, U of H, A&M, Baylor, Houston CC Adjunct Faculty from other institutions –MDACC, TCH, THI, TIRR, Methodist, St. Luke’s, Shriner’s, U of H, Private MDs

Today UT, Tomorrow ? 3 Tier Web based courses and applications –Cardio Physiology –Neurobiology and Anatomy –Blackboard –GMEDS –CPHS (possibly strong A&I) Helping Research and Security coexist Shared Library Resources

SHIB & PKI PKI as needed for authentication –Target presents requirements for strong authN –Users present UT/Verisign rooted certs to the Shib HS –HS validates cert, queries LDAP for existence of user in the directory and creates opaque handle etc…. –AA releases user’s credentials to target as required Shibboleth for authorization in the usual way Standardizing Identity Verification within UT via the same CP/CPS Boilerplates for bilateral agreements for Shibboleth Clubs / or UT Federation in terms of Target applications

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.