Presentation is loading. Please wait.

Presentation is loading. Please wait.

CERN IT Department CH-1211 Genève 23 Switzerland Federated identity system for scientific collaborations Summary of user requirements session.

Published byRussell Little Modified over 8 years ago

Similar presentations

Presentation on theme: "CERN IT Department CH-1211 Genève 23 Switzerland Federated identity system for scientific collaborations Summary of user requirements session."— Presentation transcript:

1 CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/it Federated identity system for scientific collaborations Summary of user requirements session Bob Jones 10 June 2011

2 CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/it User Communities Present European Photon/Neutron facilities Social Science and Humanities WLCG High Energy Physics Earth Sciences Life Sciences 9 June 2011 Federated Identity Management Workshop - Bob Jones 2

3 CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/it European Photon/Neutron facilities Users – Approx 10,000 users and need to keep a closer track of their involvement – Typically short-stays at facilities – ‘Part-time’ users – not gurus – Most are nomadic (use many facilities) and some are “homeless” (no home institution that could issue identity ) Key concerns – Confidentiality of data – Remote access to data – Potential remote control of experiments – PI to take role in authz Status: Umbrella project in prototype stage – Adopted Shibboleth/SAML – Considering a range of organisational schemes (central authority, local offices etc.) 9 June 2011 Federated Identity Management Workshop - Bob Jones 3

4 CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/it Social Sciences and Humanities Users – Several hundred – Some “homeless” users Key concerns – Single domain with identity managed by home institute – Many diverse and distributed data sets (multi-media, multi- format etc.) with complex relationships – SSO with explicit “acceptable usage” signature Status – eduGAIN (Shibboleth/SAML) prototype in use with CLARIN – Signatory process underway with the national IDFs and CLARIN service providers – Have created a home for the “homeless” 9 June 2011 Federated Identity Management Workshop - Bob Jones 4

5 CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/it WLCG Users – 5900 X509 certs Key concerns – Security tracking across multiple sites and accounts – Users have multiple accounts (not all within IGTF realm) – Scalability – Easy use (would like to hide certs from users) – Need conversion of security credentials Status – Production usage – Relies on IGTF – Tests underway for federated approach with BNL 9 June 2011 Federated Identity Management Workshop - Bob Jones 5

6 CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/it Earth Sciences Users – 5000+ for CMIP5 alone, much greater for other earth science deployments. – Currently 25 centres around Europe but likely to grow quickly Key concerns – Integration of many diverse data sets – Many technologies and tools already in use Status – Earth System Grid Federation in place using OpenID, X.509 and SAML – A standard solution for securing OPeNDAP and other HTTP-based services 9 June 2011 Federated Identity Management Workshop - Bob Jones 6

7 CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/it Life Sciences Users – Millions access data via the EBI website Key concerns – 20+ datasets that are continuously growing – At least 1 data set (European Genotype Archive) currently requires authentication Status – BiomedBridges ESFRI cluster project has security on work plan and will work to bring together up to 10 life science ESFRI projects 9 June 2011 Federated Identity Management Workshop - Bob Jones 7

8 CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/it Comparing user communityother projects# userschosen technologystatusIGTF photon/neutron EUROFEL, PanData, CRISP10,000Shibboleth/SAML Umbrella prototypeno Social Sciences and Humanities DARIAH, CLARIN, CESSDAH, (DASISH) hundreds now, potential for 10000+ across SSHShibboleth/SAML CLARIN SP federation - will see if they can use eduGAINyes WLCG 5900 globallyX509productionyes earth sciences Earth System Grid Federation, GENESI- DEC, CMIP5, Metafor, IS-ENES 5000+ for CIMP5 OpenID, X.509 and SAML production - earth system grid not yet but foresee for EGI integration life sciences ELIXIR & potentially 10 BMI ESFRI projects millions access data via EBI websiteno chosen yet security included in BioMedBridges project workplanno 9 June 2011 Federated Identity Management Workshop - Bob Jones 8

9 CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/it Conclusions There are many common needs and hence scope for agreement – SSO – Easy of use for part-time users – Focus is on data access – Support homeless users – Many tools and technologies deployed – Smooth transition from existing systems 9 June 2011 Federated Identity Management Workshop - Bob Jones 9

Download ppt "CERN IT Department CH-1211 Genève 23 Switzerland Federated identity system for scientific collaborations Summary of user requirements session."

Similar presentations

EGI-InSPIRE RI-261323 EGI-InSPIRE EGI-InSPIRE RI-261323 AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Case Studies in Identity Management for Scientific Collaboration 2014 Technology Exchange Jim Basney CILogon This material is.

Case Studies in Identity Management for Scientific Collaboration 2014 Technology Exchange Jim Basney CILogon This material is.
Www.egi.eu EGI-InSPIRE RI-261323 EGI-InSPIRE www.egi.eu EGI-InSPIRE RI-261323 EGI - Identity Management Steven Newhouse Director, EGI.eu Federated Identity.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI - Identity Management Steven Newhouse Director, EGI.eu Federated Identity.
Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.

Federated Identity Management for Research Communities (FIM4R) David Kelsey (STFC-RAL) EGI TF, AAI workshop 19 Sep 2012.
EMI INFSO-RI-261611 Session Summary AAI Needs for DCIs John White, HIP Christoph Witzig, SWITCH

EMI INFSO-RI Session Summary AAI Needs for DCIs John White, HIP Christoph Witzig, SWITCH
The LHC Computing Grid – February 2008 The Worldwide LHC Computing Grid Dr Ian Bird LCG Project Leader 15 th April 2009 Visit of Spanish Royal Academy.

The LHC Computing Grid – February 2008 The Worldwide LHC Computing Grid Dr Ian Bird LCG Project Leader 15 th April 2009 Visit of Spanish Royal Academy.
WLCG Security TEG, risks and Identity Management David Kelsey GridPP28, Manchester 18 Apr 2012.

WLCG Security TEG, risks and Identity Management David Kelsey GridPP28, Manchester 18 Apr 2012.
FIM-ig Federated Identity Management Interest Group.

FIM-ig Federated Identity Management Interest Group.
1 Common Challenges Across Scientific Disciplines Laurence Field CERN 18 th November 2013.

1 Common Challenges Across Scientific Disciplines Laurence Field CERN 18 th November 2013.
1 Multi Cloud Navid Pustchi April 25, 2014 World-Leading Research with Real-World Impact!

1 Multi Cloud Navid Pustchi April 25, 2014 World-Leading Research with Real-World Impact!
Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.

Climate Sciences: Use Case and Vision Summary Philip Kershaw CEDA, RAL Space, STFC.
Advanced Computing Services for Research Organisations Bob Jones Head of openlab IT dept CERN This document produced by Members of the Helix Nebula consortium.

Advanced Computing Services for Research Organisations Bob Jones Head of openlab IT dept CERN This document produced by Members of the Helix Nebula consortium.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.

Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
EMI AAI Strategy & Plans John White / Helsinki Institute of Physics Federated Identity Systems for Scientific Collaborations Workshop 09.06.2011, CERN,

EMI AAI Strategy & Plans John White / Helsinki Institute of Physics Federated Identity Systems for Scientific Collaborations Workshop , CERN,
7 th FIM 4 R meeting 23-24 April 2014 ESRIN Frascati.

7 th FIM 4 R meeting April 2014 ESRIN Frascati.
EResearchers Requirements the IGTF model of interoperable global trust and with a view towards FIM4R AAI Workshop Presenter: David Groep, Nikhef.

EResearchers Requirements the IGTF model of interoperable global trust and with a view towards FIM4R AAI Workshop Presenter: David Groep, Nikhef.
Federated Identity Management for Research Collaborations Bob Jones, CERN Daan Broeder, Max-Planck Institute for Psycholinguistics David Kelsey, Particle.

Federated Identity Management for Research Collaborations Bob Jones, CERN Daan Broeder, Max-Planck Institute for Psycholinguistics David Kelsey, Particle.
Federated Identity Management for HEP David Kelsey STFC – RAL Nijmegen workshop 22 June 2012.

Federated Identity Management for HEP David Kelsey STFC – RAL Nijmegen workshop 22 June 2012.
Https://aarc-project.eu Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.

Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.
Identity Management in DEISA/PRACE Vincent RIBAILLIER, Federated Identity Workshop, CERN, June 9 th, 2011.

Identity Management in DEISA/PRACE Vincent RIBAILLIER, Federated Identity Workshop, CERN, June 9 th, 2011.

Similar presentations

Ads by Google