Presentation is loading. Please wait.

Presentation is loading. Please wait.

Identity & Access Management InCommon Research and Scholarship

Published bySherman Martin Modified over 6 years ago

Similar presentations

Presentation on theme: "Identity & Access Management InCommon Research and Scholarship"— Presentation transcript:

1 Identity & Access Management InCommon Research and Scholarship
August 7, 2017 CIO Council 2:00 p.m. Smith Center, 561

2 Meeting Purpose and Intended Outcomes
To discuss whether Harvard should decide to become an InCommon Research and Scholarship institution Intended Outcomes Recommendation from the CIO Council

3 Opportunity Harvard is already federated with InCommon as an Identity Provider (IdP) By deciding to also identify as an Research and Scholarship institution (R&S), Harvard can simplify access for Harvard scholars to other applications that are federated as R&S services. What it means: Minimal work by IAM to release Name, , Institutional Affiliation and Unique Identifier (EPPN) by default to any R&S Service providers What it gets us: Scholars instantly access participating services using campus credentials without administrator involvement Eliminates the overhead of reviewing whether to federate with these providers on a case by case basis

4 Use Case: Access Other Institutions using InCommon R&S

5 Harvard Use Case IQSS wants Harvard to be R&S The Dataverse Project
Benefit: Dataverse can be opened up to the world Sponsors of the R&S Request: Merce Crosas James Cuff

6 Harvard’s Decision CIO Council is being consulted to confirm releasing this limited set of data by default to InCommon certified R&S institutions is acceptable. Potential Risk Discussion/Mitigation Harvard releases data to applications that it has not personally vetted Data are not sensitive; tend to be exchanged by researchers already, or be public If FERPA block exists, we need user consent No attribute release to R&S for anyone with FERPA (Common practice in H.E.) It is not crystal clear what the InCommon certification process entails; we must trust their process Review who else is participating Users would not realize their data are being released Provide outreach and communication through Schools and departments, describing the benefits

7 Here’s How InCommon Describes Value Proposition:
“The immediate and most tangible benefit is that researchers and scholars on campuses that support R&S may seamlessly access a growing list of R&S services without friction or administrator involvement. In other words, the end result may be characterized as: Federation for Research and Scholarship that Just Works. Many potential R&S services choose not to federate because IdP support for R&S across our campuses is spotty and uneven. We expect a threshold number of campuses to cause a "Cambrian Explosion" of valuable R&S services to appear in the InCommon Federation, which will spur collaboration and research in the US. Continuing our participatory role in the global R&E community, InCommon has introduced an international version of the Research & Scholarship Service Category to the REFEDS community, which requires broad support from InCommon participants to be successful.”

8 Discussion and Close For research community there is a sense of urgency to move towards this model The approach (of case by case) is simply not scalable to the thousands of campus IdPs and thousands of SPs supporting research and scholarship that InCommon anticipates in the future. List of institutions who are R&S Identity Providers: Service Providers:

9 Thank you!

Download ppt "Identity & Access Management InCommon Research and Scholarship"

Similar presentations

1 The Challenges of Creating an Identity Management Infrastructure for the University of California David Walker Karl Heins Office of the President University.

1 The Challenges of Creating an Identity Management Infrastructure for the University of California David Walker Karl Heins Office of the President University.
Sponsored by the National Science Foundation Campus Policies for the GENI Clearinghouse and Portal Sarah Edwards, GPO March 20, 2013.

Sponsored by the National Science Foundation Campus Policies for the GENI Clearinghouse and Portal Sarah Edwards, GPO March 20, 2013.
Information Resources and Communications University of California, Office of the President UCTrust David Walker Office of the President University of California.

Information Resources and Communications University of California, Office of the President UCTrust David Walker Office of the President University of California.
Federated Identity, Levels of Assurance, and the InCommon Silver Certification Jim Green Identity Management Academic Technology Services © Michigan State.

Federated Identity, Levels of Assurance, and the InCommon Silver Certification Jim Green Identity Management Academic Technology Services © Michigan State.
Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.

Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.
Federated Identity for Scientific Collaborations: Policy Issues Jim Basney 2 nd Workshop on Federated Identity Systems for Scientific.

Federated Identity for Scientific Collaborations: Policy Issues Jim Basney 2 nd Workshop on Federated Identity Systems for Scientific.
Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.

Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.
REFEDS RESEARCH AND EDUCATION (R&S) ENTITY CATEGORY NICOLE HARRIS.

REFEDS RESEARCH AND EDUCATION (R&S) ENTITY CATEGORY NICOLE HARRIS.
Identity Management What is it? Why? Responsibilities? Bill Weems Academic Computing University of Texas Health Science Center at Houston.

Identity Management What is it? Why? Responsibilities? Bill Weems Academic Computing University of Texas Health Science Center at Houston.
Credential Provider Operational Practices Statement CAMP Shibboleth June 29, 2004 David Wasley.

Credential Provider Operational Practices Statement CAMP Shibboleth June 29, 2004 David Wasley.
SWITCHaai Team Federated Identity Management.

SWITCHaai Team Federated Identity Management.
Use case: Federated Identity for Education (Feide) Identity collaboration and federation in Norwegian education Internet2 International Workshop, Chicago,

Use case: Federated Identity for Education (Feide) Identity collaboration and federation in Norwegian education Internet2 International Workshop, Chicago,
Identity and Access Management PM COP Forum May 20, 2014Tuesday10100 AMLamont Library.

Identity and Access Management PM COP Forum May 20, 2014Tuesday10100 AMLamont Library.
Federated Identity Management in New Zealand Sat Mandri Service Manager TNC15 REFEDs Meeting, 14 th June 2015.

Federated Identity Management in New Zealand Sat Mandri Service Manager TNC15 REFEDs Meeting, 14 th June 2015.
Internet2 – InCommon and Box Marla Meehl Colorado CIO 11/1/11.

Internet2 – InCommon and Box Marla Meehl Colorado CIO 11/1/11.
InCommon as Infrastructure: How Recommended Practices and Federation Features Help Scale Federated Identity Management Michael R. Gettes, Carnegie Mellon.

InCommon as Infrastructure: How Recommended Practices and Federation Features Help Scale Federated Identity Management Michael R. Gettes, Carnegie Mellon.
Federated or Not: Secure Identity Management Janemarie Duh Identity Management Systems Architect Chair, Security Working Group ITS, Lafayette College.

Federated or Not: Secure Identity Management Janemarie Duh Identity Management Systems Architect Chair, Security Working Group ITS, Lafayette College.
Belnet Federation Belnet – Loriau Nicolas Brussels – 12 th of June 2014.

Belnet Federation Belnet – Loriau Nicolas Brussels – 12 th of June 2014.
Stuff, including interfederation stuff Dr Ken Klingenstein, Director, Middleware and Security, Internet2.

Stuff, including interfederation stuff Dr Ken Klingenstein, Director, Middleware and Security, Internet2.
Federated Access to US CyberInfrastructure Jim Basney CILogon This material is based upon work supported by the National Science.

Federated Access to US CyberInfrastructure Jim Basney CILogon This material is based upon work supported by the National Science.

Similar presentations

Ads by Google