Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.

Slides:



Advertisements
Similar presentations
Innovation through participation eduGAIN federation operator training eduGAIN interfederation service /18 Valter Nordh, NORDUnet / GU 1.
Advertisements

Federated Identity Management for Researchers – A quick overview from GÉANT BoF TNC May 2014 Dublin.
EduGAIN – Are we there yet? Lukas Hämmerle (ghost writer, Brook Schofield) FIM4R, Helsinki – 2 October 2013.
© Janet 2012 Project Moonshot Technology, use cases & pilot 17 January, 2012 Haka conference, Helsinki 1.
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
Stork is an EU co-funded project INFSO-ICT-PSP STORK PRESENTATION STORK Presentation Lithuania March 2010.
FIM-ig Federated Identity Management Interest Group.
To identity federation and beyond! Josh Howlett JANET(UK) HEAnet 2008.
Federated Identity Management in New Zealand Sat Mandri Service Manager TNC15 REFEDs Meeting, 14 th June 2015.
Developments and challenges in authentication and authorisation Klaas Wierenga Berlin, 23 May 2006.
Innovation through participation Interfederation through eduGAIN - steps and challenges eduGAIN interfederation service Federated Identity Systems.
AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.
Michal Procházka, Jan Oppolzer CESNET.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
Updates Licia Florio, TERENA REFEDS Meeting 5 Sept 2012.
Connect communicate collaborate GÉANT3plus Enabling Users Pilots Lukas Hämmerle Task Leader "Enabling Users"
Networks ∙ Services ∙ People Mandeep Saini TF-MSP, Espoo, Finland Service Delivery and Adoption 10 th Sep 2015 Task Leader, GN4-1 SA7 T3.
Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.
European Life Sciences Infrastructure for Biological Information Life science community update for the 7 th Federated Identity Management.
Connect communicate collaborate GÉANT3 Services Connectivity and Monitoring Services by and for NRENs Ann Harding, SWITCH TNC 2010.
EResearchers Requirements the IGTF model of interoperable global trust and with a view towards FIM4R AAI Workshop Presenter: David Groep, Nikhef.
Connect. Communicate. Collaborate The authN and authR infrastructure of perfSONAR MDM Ann Arbor, MI, September 2008.
Test your IdP
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.
Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.
Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.
Jacques Bus Head of Unit, DG INFSO-F5 “Security” European Commission FP7 launch in the New Member States Regional on-line conference 22 January 2007 Objective.
Connect. Communicate. Collaborate Deploying Authorization Mechanisms for Federated Services in the eduroam architecture (DAMe)* Antonio F. Gómez-Skarmeta.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos Open Day Event: Towards the European Open.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
NREN Trust and Identity Strategy Ann Harding, SWITCH Cambridge July 2014.
Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team
Connect communicate collaborate Internet2 Global Summit 27 April 2015 Washington DCs User Community Driven Development in Trust and Identity Services Ann.
Connect communicate collaborate GÉANT - The GN3 Project Goals - Challenges - Vision Hans Döbbeling, DANTE TNC 2009, Malaga,
Networks ∙ Services ∙ People Nicole Harris UK federation meeting eduGAIN, REFEDS and the UK 23 June 2015 Project Development Officer GÉANT.
Research Community Requirements Ann Harding, SWITCH Cambridge July 2014.
Trust and Identity Infrastructure Services Above the Network Ann Harding, SWITCH/GÉANT UbuntuNetConnect 2014.
Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,
Networks ∙ Services ∙ People Ann Harding GÉANT Symposium, Vienna Users Session A3 Trust and Identity March GÉANT Activity Leader Trust.
Facing the challenge of relevance Erwin Bleumink 4 June 2013 TNC13.
Case Studies in Federated Identity Management for Research Communities Ann Harding, SWITCH/GN3plus Peter Gietz, DAASI International GmbH/DARIAH Tommi Nyro.
Connect communicate collaborate Case Studies in Federated Identity Management for Research Communities Ann Harding, SWITCH/GN3plus Peter Gietz, DAASI International.
David Groep Nikhef Amsterdam PDP & Grid AARC Authentication and Authorisation for Research and Collaboration an impression of the road ahead.
Project Moonshot Daniel Kouřil EGI Technical Forum
Networks ∙ Services ∙ People Licia Florio TNC, Lisbon Consuming identities across e- Infrastructures 16 June 2015 PDO GÈANT.
Authentication and Authorisation for Research and Collaboration Licia Florio AARC CORBEL Workshop The AARC Project Paris, 31 May.
Designing Identity Federation Policy, the right way Marina Vermezović, Academic Network of Serbia TNC2013 conference 4 May 2013.
Networks ∙ Services ∙ People Marina Adomeit TNC16 Conference, Prague Towards a platform for supporting collaboration GÉANT VOPaaS
Networks ∙ Services ∙ People TNC 2016, Prague Alice Through the Looking Glass Science DMZ goes above the network 13 June
Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.
Networks ∙ Services ∙ People Ann Harding Networkshop 44, Manchester Thinking globally, acting locally Trust and Identity in the GÉANT project.
Making the future happen Some remarks from the perspective of the Reykjavik-Group Chair full report:
Authentication and Authorisation for Research and Collaboration Taipei - Taiwan Mechanisms of Interfederation 13th March 2016 Alessandra.
Networks ∙ Services ∙ People Di4R Network. Services. People. GÉANT 28 th September, Krakow.
Introduction to AAI Services
Boosting AAI for research and collaboration
Cross-sector and user-centric AAI
The Policy Puzzle Many groups and (proposed) policies, but leaving many open issues AARC “NA3” is tackling a sub-set of these “Levels of Assurance” –
eduTEAMS platform for collaboration Niels Van Dijk
Case Studies in Federated Identity Management for Research Communities
Federated Identity Management for Researchers (FIM4R)
Neil Witheridge’s slides
GÉANT International Networking and Collaboration
An AAI solution for collaborations at scale
Boosting AAI for research and collaboration
ELIXIR Safeguarding the results of life science research in Europe
AAI For Researchers Licia Florio AARC Project Coordinator GÉANT DI4R
AARC Blueprint Architecture and Pilots
AAI Architectures – current and future
Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.
Presentation transcript:

connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust & Identity Committee Member

2 connect communicate collaborate The Strategic Value of Trust & Identity Collaborative applications of research & education networks require trust & identity Our trust & identity systems enable greater collaboration, driving use of the network The network becomes more cost- efficient to operate, and more business-critical to its users

3 connect communicate collaborate NREN Trust & Identity Thinking Differently For most providers of identity, the user is the product and their customers are advertisers. This inherently erodes security, privacy and other characteristics that are important to NREN users The NRENs provide these characteristics through the federation of identity within the NREN community (“federated ID”): the products are trust and identity, and our users are the customers

4 connect communicate collaborate GÉANT & NREN Leadership Federated ID is an excellent match with the federative composition of the European R&E environment Research and education communities need to express more elaborate trust relationships, spanning complex international communities, than commercial offerings can support European NRENs today are world-leaders in developing & operating Federated ID systems eduroam: global system for wireless mobility eduGAIN: global system for Web SSO Outside R&E there is a trend towards “social ID”, driven by low cost and high convenience that does not protect the user nor support complex needs

5 connect communicate collaborate Managing Trust & Identity Strategy Establish and manage a European NREN Strategy for Trust & Identity Implement this strategy through the coordination of the NRENs’ various initiatives; Nationally, GÉANT, REFEDs and other means. Identify and, where appropriate, address any unmet requirements or capability gaps Managed and coordinated by the NREN Trust & Identity Committee

6 connect communicate collaborate Areas of Strategic Focus Harmonise our national propositions to improve our European and global propositions, and drive adoption of these at a national level Improve the effectiveness and excellence of our European operational capability to deliver these propositions Build bridges with other sectors, both operationally and through other collaborations

connect communicate collaborate GÉANT: Delivering Trust & Identity EC meets GÉANT 19 June 2014 Brussels Ann Harding, SWITCH Application Services Activity Leader

8 connect communicate collaborate Organisation and Structure Key themes Trust & Identity Services in GÉANT Application Services eduPKI eduroam eduGAIN Federation as a Service Moonshot Enabling Users Pilots Enhancing Core Services Core Production Services

9 connect communicate collaborate Define strategy for providing the GÉANT Cloud Service Task 2 Task 1 Task 3 About eduPKI Help users obtain the right certificates for the right purpose Competence centre for PKI issues Solving problems commercial operators won't solve c.130 certificates issued, eduroam as main user

10 connect communicate collaborate Task 2 Task 3 About eduroam Secure, consistent roaming access service Home organisation does authentication, roaming organisation does authorisation GÉANT operates European eduroam infrastructure GÉANT delivers service development to enhance usability, support takeup “Open your laptop and be online”

11 connect communicate collaborate Almost 70 countries worldwide, 44 in Europe Over 9300 eduroam service locations in Europe KPITargetAchieved Successful national authentications per month Successful international authentications per month ETLRS Uptime 99% >99% eduroam Service Delivery

12 connect communicate collaborate CAT (configuration assistant tool) launched on 25 March 2013 eduroam Service Innovations Making eduroam even easier to use 577 IdP registered (432 fully configured) 2900 admin downloads and c500,000 end-user downloads of profiles Apple iOS and MS Windows 7 together make up over 50% of all downloads

13 connect communicate collaborate About eduGAIN Federated identity and trust worldwide Technical platform for the trustworthy exchange of Security Assertion Markup Language (SAML) metadata Policy Framework for administrative and operational participation Connects users and services securely across borders Global Interfederation Service

14 connect communicate collaborate eduGAIN Service Delivery 24 eduGAIN Members 7 Joining eduGAIN 0 Candidate Federations 17 Other Federations Status: 18 May 2014

15 connect communicate collaborate Service Innovation – Federation as a Service - Bringing federation to all Market Analysis of NRENs who do not have a Federation Develop needed policy and technical infrastructure for offering Federation as a Service

16 connect communicate collaborate Service Innovation - Moonshot Pilot New features for federated identity beyond web CSC/Nordunet: SSH at Finland’s 2 nd largest supercomputer iRODs demo IdPs at Tampere & Helsinki Deployment Architecture at Swiss Light Source (PSI) Deployment complete at UK Diamond Light CESNET: Successful SAMBA tests A single unifying technology to manage user identities and control access to a wide range of web and non-web services

17 connect communicate collaborate Service Innovation - Enabling Users Helping communities benefit from federated identity Collaborate with international user communities to increase usage of AAI infrastructure Act as an expert partner for large, pan- European projects with AAI requirements Help increase the number of services using eduGAIN Pipeline for service development

18 connect communicate collaborate User-friendliness Homeless Users Scalable and Flexible Attribute Release Credential Translation Non-Browser Access Attribute Aggregation Levels of Assurance Enabling Users Addressing the challenges for researchers and other users

19 connect communicate collaborate Collaborative Development Enabling users’ community pilots Requirements for Levels of Assurance Mapping to Federation Policies ELIXIR Services in HAKA Production Federation Architectures for using eduGAIN Consult on DASISH AAI strategy Support safe attribute release via GÉANT CoCo Bridging Umbrella- Persistent Identities Non-web-browser Based Access

20 connect communicate collaborate Roadmap Data Protection & Code of Conduct Technical Service Improvements Launch Federation as a Service Pilot Ongoing Global Engagement Enhanced STORK2.0 Engagement Moonshot Pilot Additional User Community Support

connect communicate collaborate Thank you Any questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.