Presentation is loading. Please wait.

Presentation is loading. Please wait.

GÉANT 4-2 JRA3 T1 and T2 Federations and Campus (CaFe) e-Infrastructures and Service Providers (RASP) Daniela Pöhn JRA3 T1 LRZ/DFN-AAI Technology Exchange.

Published byMerete Fog Modified over 6 years ago

Similar presentations

Presentation on theme: "GÉANT 4-2 JRA3 T1 and T2 Federations and Campus (CaFe) e-Infrastructures and Service Providers (RASP) Daniela Pöhn JRA3 T1 LRZ/DFN-AAI Technology Exchange."— Presentation transcript:

1 GÉANT 4-2 JRA3 T1 and T2 Federations and Campus (CaFe) e-Infrastructures and Service Providers (RASP) Daniela Pöhn JRA3 T1 LRZ/DFN-AAI Technology Exchange 2016, Miami

2 Code of Conduct European Parliament and Council: data protection reform  legal and federation consultation  analysis of eduGAIN’s policies focused on attribute release  effective 25 May 2018 2.0 draft should cover attribute release out of EU/EEA as well Work with DLA Piper  analysis of policies Possible to craft a single Code of Conduct that will work globally? Roadmap: Fall 2016: Prepare a draft of a new, GDPR compliant Code of Conduct Spring 2017: Community consultation within REFEDS community Iterate 25 May 2018 submit to the data protection authorities for approval

3 Metadata and attribute release management
Attribute release: typical conversion rules stored centrally? Metadata management: scalable metadata release KPI monitoring Monitoring and Statistics Web page with all available tools Standardize F-Ticks format eduGAIN F-Ticks service Ticks by every IdP Aggregated per federation/inter-federation Public stats and internal stats

4 IdP as a Service Look at GARR IDEM, UK Federation,… TIER
Business models, security,… As Extension of Federation as a Service

5 eduGAIN incident management development
SIRTFI Security contacts in Metadata Validated Look at requirements from AARC Probe Overview/Monitoring page Self-assessment tool Management tool? Monitoring page added to technical eduGAIN

6 RASP – Research Infrastructures and Service Providers
Task Leader: Lukas Hämmerle

7 eduGAIN Connectivity Check Service (ECCS)
technical.edugain.org/eccs/ Checks for each eduGAIN IdP if it is properly "connected" to eduGAIN I.e. it loads eduGAIN metadata and displays a login page when a user tries to access an eduGAIN SP For each eduGAIN IdP do the following check: Initiate a login process from two eduGAIN SPs (except for disabled IdPs) Check if a reasonable login page is returned Classify error messages (Error = Red, Warning = Yellow) Display results on a public web page IdPs can be excluded from checks (=disabled IdPs) Check is not 100% accurate for non-Shib/non-SSP IdPs with custom authentication mechanisms InCommon Federation (August 8th) 30 red IdPs with errors, 48 yellow IdPs with warnings, 333 Ok IdPs

8 Effect of ECCS Announcement of ECCS

9 eduGAIN IsFederated Check Service (EIFCS)
technical.edugain.org/isFederatedCheck/ Find out if people and organisations are federated and eduGAIN-ready yet. Has a complete list of all IdPs and organisations of production federations world wide as well as of eduGAIN.

10 eduGAIN Access Check Service (EACS)
access-check.edugain.org Test federated access via an eduGAIN IdP using a set of short-term test identities (student, staff, researcher, incomplete attributes, R&S) Use of test identities limited to owner of SP (metadata contact) ******* test-student Research DB X Create service-specific test accounts with different profiles Use them for login on own service only Check if access works and attributes are available

11 Upcoming: eduGAIN Attribute Release Check Service (EARCS)
Work in Progress Check to see if IdP conforms to attribute release recommendations (i.e. R&S, CoCo) Any user from an IdP can take test Results will be public

12 Simple SP Registration Process
wiki.edugain.org/How_to_Join_eduGAIN_as_Service_Provider Generic (federation-independent) guide on how to register an SP in eduGAIN Refers to guides of individual member federations UK Access Management Federation (in a pilot) to act as a "federation-of- last-resort" in case SP does not know with which federation to register

Download ppt "GÉANT 4-2 JRA3 T1 and T2 Federations and Campus (CaFe) e-Infrastructures and Service Providers (RASP) Daniela Pöhn JRA3 T1 LRZ/DFN-AAI Technology Exchange."

Similar presentations

EduGAIN – Are we there yet? Lukas Hämmerle (ghost writer, Brook Schofield) FIM4R, Helsinki – 2 October 2013.

EduGAIN – Are we there yet? Lukas Hämmerle (ghost writer, Brook Schofield) FIM4R, Helsinki – 2 October 2013.
Copyright JNT Association 20051OptionalCopyright JNT Association 2007 Overview of the UK Access Management Federation Josh Howlett.

Copyright JNT Association 20051OptionalCopyright JNT Association 2007 Overview of the UK Access Management Federation Josh Howlett.
SWITCHaai Team Federated Identity Management.

SWITCHaai Team Federated Identity Management.
Innovation through participation Interfederation through eduGAIN - steps and challenges eduGAIN interfederation service 2012-02-27 Federated Identity Systems.

Innovation through participation Interfederation through eduGAIN - steps and challenges eduGAIN interfederation service Federated Identity Systems.
Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.

Federated Identity Management for HEP David Kelsey WLCG GDB 9 May 2012.
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.

INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
Test your IdP

Test your IdP
Federation as a Service Marina Vermezović, AMRES Federated Identity Technology Workshop Sofia, Bulgaria, 20. Jun 2014.

Federation as a Service Marina Vermezović, AMRES Federated Identity Technology Workshop Sofia, Bulgaria, 20. Jun 2014.
Https://aarc-project.eu Authentication and Authorisation for Research and Collaboration David Kelsey AARC AHM Milan And mechanisms NA3 Task 4 – Scalable.

Authentication and Authorisation for Research and Collaboration David Kelsey AARC AHM Milan And mechanisms NA3 Task 4 – Scalable.
Innovation through participation eduGAIN policy: A worm report TF-EMC2 Vienna 17.2.2010 Mikael Linden, CSC The worm farmer.

Innovation through participation eduGAIN policy: A worm report TF-EMC2 Vienna Mikael Linden, CSC The worm farmer.
Networks ∙ Services ∙ People Nicole Harris, GÉANT GN4 Project Update “SA5”, or Identity Stuff Internet2 Technology Exchange 2015.

Networks ∙ Services ∙ People Nicole Harris, GÉANT GN4 Project Update “SA5”, or Identity Stuff Internet2 Technology Exchange 2015.
Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.

Federated Identity Management for HEP David Kelsey HEPiX, IHEP Beijing 18 Oct 2012.
Https://aarc-project.eu Authentication and Authorisation for Research and Collaboration David Groep AARC All Hands meeting Milano Policy and Best Practice.

Authentication and Authorisation for Research and Collaboration David Groep AARC All Hands meeting Milano Policy and Best Practice.
Growth. Interfederation PKI is globally scalable Unfortunately, its not locally deployable… Federation is locally deployable Can it.

Growth. Interfederation PKI is globally scalable Unfortunately, its not locally deployable… Federation is locally deployable Can it.
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.

INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
Understanding deployment issues on the Supply Chain Ann Harding, SWITCH, Nicole Harris, TERENA Cambridge July 2014.

Understanding deployment issues on the Supply Chain Ann Harding, SWITCH, Nicole Harris, TERENA Cambridge July 2014.
Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team

Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team
Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.

Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.
Networks ∙ Services ∙ People www.geant.org Nicole Harris UK federation meeting eduGAIN, REFEDS and the UK 23 June 2015 Project Development Officer GÉANT.

Networks ∙ Services ∙ People Nicole Harris UK federation meeting eduGAIN, REFEDS and the UK 23 June 2015 Project Development Officer GÉANT.
Networks ∙ Services ∙ People www.geant.org Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,

Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,

Similar presentations

Ads by Google