Diego R. Lopez RedIRIS update Middleware activities at the South-western Border.

Slides:



Advertisements
Similar presentations
Options for integrating the JANET Roaming Service (JRS) and Shibboleth Tim Chown University of Southampton (UK) JISC Access Management.
Advertisements

DPM ARCHITECT FOR XBRL XBRL taxonomy editor aimed at BUSINESS USERS Based on the DPM approach and DPM XBRL Architecture Currently on its last stage of.
Implementing Shibboleth-based Virtual Organisations and VO Federations using IAMSuite (including AAF update) James Dalziel & Alan Lin Professor of Learning.
Donkey Project Introduction and ideas around February 21, 2003 Yuri Demchenko.
TechSec WG: Related activities overview Information and discussion TechSec WG, RIPE-45 May 14, 2003 Yuri Demchenko.
TAC - Poznan, 6 June 2005 Building trust with a European style Diego R. Lopez RedIRIS.
EFDA Federation PAPI based federation as a test-bed for a common security infrastructure in EFDA sites R. Castro, J. Vega, A. Portas, D. R. López, S. Balme,
TF-EMC2 February 2006, Zagreb Deploying Authorization Mechanisms for Federated Services in the EDUROAM Architecture (DAME) -Technical Project Proposal-
Connect. Communicate. Collaborate The eduGAIN Way Diego R. Lopez - RedIRIS.
Beispielbild Shibboleth, a potential security framework for EDIT Lutz Suhrbier AG Netzbasierte Informationssysteme (
The EC PERMIS Project David Chadwick
Office of Science U.S. Department of Energy Grids and Portals at NERSC Presented by Steve Chan.
Academic Services Interactive Media Managing the Web with Java JA-SIG Winter 2002 Robert Sherratt Academic Services, Interactive Media.
WebFTS as a first WLCG/HEP FIM pilot
Shibboleth 2.0 : An Overview for Developers Scott Cantor The Ohio State University / Internet2 Scott Cantor The Ohio.
Shibboleth 2.0 IdP Training: Basics and Installation January, 2009.
Connect. Communicate. Collaborate Federation peering à la European The eduGAIN way Diego R. Lopez - RedIRIS.
Shibboleth-intro-dec051 Shibboleth A Technical Overview Tom Scavo NCSA.
QCDgrid Technology James Perry, George Beckett, Lorna Smith EPCC, The University Of Edinburgh.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
AAF Middleware update February Presented by Terry Smith Technical Manager and Heath Marks Manager.
3rd EuroCAMP Ljubljana Mind the Gap (And Try To Fill It with Any Tool at Hand) Bridging PAPI and Applications Diego R. Lopez.
Users’ Authentication in the VRVS System David Collados California Institute of Technology November 20th, 2003TERENA - Authentication & Authorization.
Australian Access Federation and other Middleware Initiatives Presented at TF-EMC2, Prague 4 Sep 2007 Patty McMillan, The University of Queensland.
PAPI Points of Access to Providers of Information.
Shibboleth: Installation and Deployment Scott Cantor July 29, 2002 Scott Cantor July 29, 2002.
2005 © SWITCH Perspectives of Integrating AAI with Grid in EGEE-2 Christoph Witzig Amsterdam, October 17, 2005.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability Shibboleth - gLite Christoph.
High-quality Internet for higher education and research AAI from the NREN perspective Schiphol, October 17, 2005
GridShib: Grid/Shibboleth Interoperability September 14, 2006 Washington, DC Tom Barton, Tim Freeman, Kate Keahey, Raj Kettimuthu, Tom Scavo, Frank Siebenlist,
Proposal for the new group web infrastructure SFT Group meeting 3/7/2009 Yves Perrin.
Connect. Communicate. Collaborate eduGAIN in Real Life! Ajay Daryanani, RedIRIS TERENA Networking Conference Brugge, 20th May 2008.
Diego R. Lopez, RedIRIS Francisco Cruz, UC3M Catalin Meirosu, TERENA JRES2005, Marseille Lyngby, May 2007 ARCA Federated Access to Multimedia Content.
Collaborative Platforms. Collaborations and Virtual Organizations IdM is a critical dimension of collaboration, crossing many applications.
Connect. Communicate. Collaborate Federation Interoperability Made Possible By Design: eduGAIN Diego R. Lopez (RedIRIS)
Federated Identity and Shibboleth Concepts Rick Summerhill Chief Technology Officer Internet2 GEC3 October 29, 2008 Slides by Nate Klingenstein
JISC Middleware Security Workshop 20/10/05© 2005 University of Kent.1 The PERMIS Authorisation Infrastructure David Chadwick
Update on PKI Activities in the Spanish Academic Network PKI-COORD November 26, Amsterdam.
US of A and A Activities Ken Klingenstein, Director Internet2 Middleware Initiative.
Comité Réseau des Universités News from CRU activities: Identity federation, eduroam, PKI, SCS, Sympa, security policies cru.fr 7th.
Shibboleth: Installation and Deployment Scott Cantor July 29, 2002 Scott Cantor July 29, 2002.
GRNET Service Box Yannis Mitsos, George Thanos, Faidon Liambotis TF-MSP meeting, Amsterdam February 4 th 2009.
Connect. Communicate. Collaborate The authN and authR infrastructure of perfSONAR MDM Ann Arbor, MI, September 2008.
Shibboleth 2.0 Update Ken Klingenstein. 2 Topics Shib v1.3 Status SAML new features Shibboleth 2.0 Features Shibboleth 2.x Features We Need Feedback.
Public Key Activities in the Spanish Academic Network PKI-COORD (PKI Coordination for Europe) December 6, Amsterdam.
© 2006 The University of Chicago Grouper Backgrounder for Authorization WG Tom Barton, U Chicago.
WebFTS File Transfer Web Interface for FTS3 Andrea Manzi On behalf of the FTS team Workshop on Cloud Services for File Synchronisation and Sharing.
Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Report and plans Attribute.
PAPI: Simple and Ubiquitous Access to Internet Information Services JISC/CNI Conference - Edinburgh, 27 June 2002.
Fonkey Project Update: Target Applications TechSec WG, RIPE-45 May 14, 2003 Yuri Demchenko.
1 Registry Services Overview J. Steven Hughes (Deputy Chair) Principal Computer Scientist NASA/JPL 17 December 2015.
Diego R. Lopez, RedIRIS JRES2005, Marseille On eduGAIN and the Coming GÉANT Middleware Infrastructure.
Diego R. Lopez, RedIRIS TF-EMC2, Umea SIR, FedSSH and more to come…
PAPI-PERMIS Integration Project Proposal David Chadwick
PAPI 2 Distributed trust model and AA interoperability.
Adding Distributed Trust Management to Shibboleth Srinivasan Iyer Sai Chaitanya.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability Shibboleth - gLite Christoph.
Workshop on Security for Web Services. Amsterdam, April 2010 Applying SAML to Identity Data Exchange.
AAI Interconnection with an European style Diego R. Lopez RedIRIS.
Connect. Communicate. Collaborate Applying eduGAIN to network operations The perfSONAR case Diego R. Lopez (RedIRIS) Maurizio Molina (DANTE)
Federation peering à la European The eduGAIN way
What’s going on at your friendly neighbourhood
Identity Federations - Installation and operation
Federation peering à la European The eduGAIN way
The French federation Eurocamp 2007 Helsinki
Some data about the CBIC Federation
Overview and Development Plans
O. Otenko PERMIS Project Salford University © 2002
What’s going on at your friendly neighbourhood
Update on a few activities And many things to do
Presentation transcript:

Diego R. Lopez RedIRIS update Middleware activities at the South-western Border

TF-EMC2 Malaga October 2006 SCHACing and COPing The use of SCHAC is recommended by RedIRIS through its iris-* set of schemas  Since the availability of SCHAC IAD release 1 The COPA coding schema is gaining momentum  Institutional codes of centers in the national council for scientific research and location-aware services COPA v2 in beta stage  Enhanced flexibility in virtual view definition First COPA-aware tools  SiLeDAP:  VOSnav:

TF-EMC2 Malaga October 2006 pkIRIS A web-based interface for managing PKIs  Based on OpenSSL  Coded in PHP  AA (PAPI and potentially others) aware Full LDAP backend  Extensibility of operations  Access methods based on COPA codes In use for the EUGridPMA-accredited Spanish PKI (pkIRISGrid)  Beta distributions in use at CICA and UNED (Spain), REUNA (Chile) and UNAM (Mexico)

TF-EMC2 Malaga October 2006 PAPI: Software PAPI about to be released  Maintenance releases (last version on Apache 1) PAPI 1.5 in beta testing phpPoA 2.0 in beta testing  Coherent object mode an enhanced attribute retrieval Several Java flavors in production  Tomcat filter  JAAS implementation  SAGPoA (AA-RR based) Rewriting the Java implementation  PAPI-EE and PAPICore Enhancing the proxy features  Better attribute entanglement

TF-EMC2 Malaga October 2006 PAPI speaks Shibboleth Both SP and IdP  Using the tests at  First real-usage tests to start next month The Shib Wiki Sympa Elsevier SP Experimenting with AKAShib configuration  Shibbolized applications can run behind a PAPI PoA without change

TF-EMC2 Malaga October 2006 PAPI: Community The federation idea has been soaking minds for quite a long time The two biggest PAPI-based federation are now interconnected Several projects for building federated infrastructures  With direct financial support  Similar to the one that brought eduroam The European fusion community is on the rails  First interconnection CFN-ITER-TJII  Meeting at JET next November

TF-EMC2 Malaga October 2006 OpenPMI Aimed for providing the necessary tools to build an open Privilege Management Infrastructure (PMI) according to standards  Authorization service based on attributes certificates  Available at Current status  Based on enhancing OpenSSL with attribute certificate support Collaboration with Adobe  SAML – AC translator  Attribute certificate delegation editor Visual design of delegation model Automatic AC generation Ongoing work  Java and Web Services support  Attribute certificate support in TLS handshake  Attribute certificates in smartcards

TF-EMC2 Malaga October 2006 AA application to SB in OSIRIS OSIRIS component 1 OSIRIS component 2 OSIRIS component N PoA AA component GPoA Liberty protocol OpenPMI Admin

TF-EMC2 Malaga October 2006 Opera Oberta Opera Oberta multicasts live opera performances from Gran Teatre del Liceu  10 Mbps MPEG2  Dolby Digital  More than 40 institutions in 5 countries DRM is performed using proprietary technology  Smartcard-based IPSec boxes Sessions are announced and managed via out- of-band methods

TF-EMC2 Malaga October 2006 Enhancing Opera Oberta Native IPSec multicast on IPv6 Session keys distributed and managed through IKE Session descriptions stored in LDAP  Session metadata  Session entitlements  Session key material Several output formats envisaged  Direct LDAP query  SDP  RSS Currently defining the schema and building initial component prototypes

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.