Case study establishing momentum for implementing directory public key infrastructure
Download
1 / 26

Case Study: Establishing Momentum for Implementing Directory Public Key Infrastructure - PowerPoint PPT Presentation


  • 213 Views
  • Uploaded on

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure. Art Vandenberg Director, Advanced Campus Services Information Systems & Technology Georgia State University 404-463-9685 [email protected] Georgia State University.

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'Case Study: Establishing Momentum for Implementing Directory Public Key Infrastructure' - LionelDale


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
Case study establishing momentum for implementing directory public key infrastructure l.jpg

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure

Art Vandenberg

Director, Advanced Campus Services

Information Systems & Technology

Georgia State University

404-463-9685

[email protected]

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Georgia state university l.jpg
Georgia State University Directory & Public Key Infrastructure

  • Atlanta, Georgia http://www.gsu.edu/

  • A Unit of the University System of Georgia

  • Doctoral/Research University – Extensive

  • Enrollment Fall 1999: 23,492

  • Degrees Conferred 1999: 5,096

  • Facts: http://gsupublic-relations.gsu.edu/Facts/facts.html

  • Internet2 Member

  • Southeastern Universities Research Association (SURA)

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Abstract l.jpg
Abstract Directory & Public Key Infrastructure

  • The “eUniversity” & strategic importance of ecommerce

  • Industry analysis, vendor strategy, and higher education initiatives (cf. Internet2’s Middleware) concur

  • Leveraging resources is challenging

  • This presentation: “Year in the Life”

    • Awareness

    • Communities of interest

    • Aligning enterprise strategies

    • Participating in higher education initiatives

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Establishing a strategic initiative l.jpg
Establishing a Strategic Initiative Directory & Public Key Infrastructure

  • Competitive advantage of having an enterprise strategy

  • Directories & PKI – scalable solutions for:

    • Managing multiple identities

    • Providing secure transactions

    • Supporting an increasingly mobile population

  • GartnerGroup: “recommending that enterprises proactively plan for directory implementation”

  • The Burton Group: “integrated enterprise directory infrastructure… reduces management overhead and supports a variety of applications. Customers must invest in and plan for that infrastructure…”

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Gsu strategy cio creates advanced campus services l.jpg
GSU Strategy: CIO Creates Advanced Campus Services Directory & Public Key Infrastructure

  • “Advanced Campus Services will have a broad, coordinating role in the establishment of standards, methods and processes to… investigate possible common solutions for addressing the next generation eUniversity environment”

    • University-wide directory services and metadirectory solutions

    • Public-private key infrastructure

    • Define universal account creation, userids/password synchronization

    • Universal e-mail solutions

    • Interface to other electronic domains (one-card, library patron…)

  • Specific charge, responsibility & focus

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


A strategy among strategies l.jpg
A Strategy Among Strategies Directory & Public Key Infrastructure

  • But it’s not that simple, is it? GSU strategic projects include:

    • Migrating student/financial aid to vendor system

    • Completing network upgrades for Internet2 (and refresh cycles)

    • Supporting new financial system

    • Providing support for educational technology

    • Addressing student technology fee priorities

    • Managing security

    • Facing budget constraints… and more!

  • ACS started with 2 eft (reallocated) March 2000

    • Educate, discover resources, start “doing it”

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Early steps education resource discovery l.jpg
Early Steps – Education & Directory & Public Key InfrastructureResource Discovery

  • Internet2 Middleware Initiativehttp://www.internet2.edu/middleware/

  • CRENhttp://www.cren.net/

  • Federal PKI Technical Working Group

    http://gits-sec.treas.gov/fpkitechwork.htm

  • [email protected] “PKI for Networked Higher Education” http://www.educause.edu/netatedu/groups/pki/

  • The Burton Group Network Strategy Service http://www.tbg.com/

  • The GartnerGrouphttp://gartner4.gartnerweb.com/public/static/home/home.html

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Early steps education resource discovery cont d l.jpg
Early Steps – Education & Directory & Public Key InfrastructureResource Discovery…(cont’d)

  • Georgia Senate Bill 465, effective July 1, 2000, establishes the Georgia Technology Authority http://www.gagta.com

    “All state agencies, authorities, and boards are authorized to establish pilot projects… as models for the application of technology such as electronic signatures… One such pilot project may involve digital signatures and the use of a public key infrastructure established by a service provider.”

  • Overall Context: ACS  IT  GSU  University System of Georgia  higher education  State, Federal, Industry initiatives

  • Alignment of enterprise strategies

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Strategy alignment l.jpg
Strategy Alignment Directory & Public Key Infrastructure

  • The Burton Group: Public Key Infrastructure (PKI) Strategy Workshop March 2000 for University System GA.

  • “Major recommendations

    • The University System must begin implementation of the common directory infrastructure... immediately…

    • Member institutions should not deploy PKI without… directory plans. The University System must build a directory infrastructure that binds the member institutions to a community… as authoritative sources for information on their own students, faculty, and services.”

  • Endorsed by University System’s Administrative Committee on Information Technology Spring 2000

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


An annotated chronology of action l.jpg
An Annotated Chronology of Action Directory & Public Key Infrastructure

  • Initial Goals – Mar 2000

    • Issue White Paper on enterprise directory strategy

    • Develop evaluation criteria and methodology for PKI

    • Identify collaborative initiatives for directory or PKI

    • Define common directory structure for “GSU Person”

    • Draft policy and procedure for managing “GSU Person”

    • Identify PKI funding requirements & sources

    • Establish account management of administrative applications

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • SCT Summit Conference – Mar 18-22, 2000

    • Session topics included e-commerce/e-university issues

      • Directory services, resolving identifiers

      • Security, universal e-mail, single sign on

      • Technical integration with WebCT initiatives

    • SCT’s technology paradigm – “Relationship Leverage Solution”

  • Directory Strategy Presentation – Mar 27, 2000

    • Level setting document CIO, IT directors, staff

    • Overview of basic strategy, middleware definition

    • Proposed leveraging existing activities

    • Established strategic goals & recommended reading list

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d12 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • Conf. Call Renee Frost, U. Michigan – Apr 18, 2000

    • Project Director Internet2 Middleware “Early Adopters” Project

    • Guideline and roadmap

    • Campus profiles and identifier mappings

  • GartnerGroup PKI selection tool – Apr 20, 2000

    • Audio conference on software tool for evaluation of PKI vendors

    • Led to a demonstration for GSU, Board of Regents, Georgia Tech

    • Tool facilitates weighting and evaluation of criteria

    • Opportunity to discuss common goals – an enterprise approach

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d13 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • [email protected] PKI Working Group – May 7-9, 2000

    • In conjunction with North American Strategic Consultants group

    • How to communicate technical ideas to key decision makers

    • Context: an integrated, cost-effective solution – drivers include:

      • Authentication and authorization for distributed/distance learning

      • Access to online library resources

      • Secure email services

      • Management of web services

      • Interoperation of the eUniversity, government, higher ed vendors

    • Contacts: Internet2, University of Alabama at Birmingham, Georgetown, University of Wisconsin…

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d14 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • CUMREC – May 14-17, 2000

    • Internet2 middleware and directory sessions

    • Renee Frost (Internet2 Middleware Initiative: Early Harvest to Early Adopters and Beyond)

    • Mark Luker (Public Key Infrastructure and Digital Certificates)

  • Organizational Structure for GSU – May 22, 2000

    • Steering Group: CIO, IST Directors (matrix management)

    • Data Stewards for GSU Person Working Group

      • “eduPerson” LDAP object class

      • Identifying source data & mapping to directory attributes

      • Synchronization & interface processes; enterprise directory policy

    • LDAP Design Technical Working Group: Novell, UNIX, Oracle…

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d15 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • SURA Directory Proposal & “PKILabs” – Jun 2000

    • USG “common directory” proposal draft

    • Leads to SURA collaborative response to I2 “PKIlabs” RFP

    • Not awarded to SURA group, but collaborative dialog set

    • ACS connects to John Wandelt, Georgia Tech Research Institute, and the Federal PKI Technical Working Group activities

  • White Paper Issued – Jul 2000

    • “Enterprise Directory Infrastructure For a Community of Interest, A White Paper”

    • GSU’s directory/public key initiative in context

    • Context = GSU, University System of Georgia, higher education, State of Georgia and federal initiatives

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d16 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • University System Commitment – Aug 17, 2000

    • Vice Chancellor/CIO requested restatement of directory proposal

    • Enterprise Directory Infrastructure Technical Working Group

      • Convene a working group

      • Conduct campus profiles, identify existing directory initiatives

      • Recommend common directory design solutions

      • Establish an architectural model for the USG enterprise directory

      • Identify policy, administrative, and business issues

      • Recommend specific resource or funding requirements

      • Explore opportunities for collaboration

  • USG Technical Working Group – Oct 19, 2000

    • Commitment to implement a consolidated LDAP directory

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d17 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • Educause Conference– Oct 10-13, 2000

    • Directories and PKI; multi-campus Birds Of a Feather

    • ViDe video conferencing – no directory services

  • USG “Rock Eagle” Conference – Oct 25-27, 2000

    • Paper: Implementing Infrastructure for the eUniversity

    • Mary Trauner (GT): George Jetson – Can You Hear Me? next steps of video conferencing infrastructure include directories

  • Inernet2 Fall Meeting – Oct 29-Nov 21, 2000

    • Higher ed certificate policy; bridge certificate authority model

    • European directory work cf. SurfNet http://www.surfnet.nl/

    • Keith Hazelton mentions “ArchiTech” metadirectory services

    • Higher Education PKI Policy Activity Group – VOLUNTEER

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d18 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • NSF Pre-proposal, GSU & UAB – Nov 29, 2000

    • “to integrate and build an application toolkit that seamlessly ties a PKI infrastructure with voice-based IP communications”

    • While not invited to submit a full proposal, positive outcome:

      • Communication was positive

      • NSF review comments

      • Collaboration between ACS and GSU’s CIS department

  • GSU “person registry”– Dec 2000 - Jan 1, 2001

    • WebCT provisioning a prime driver

    • Bob Morgan (I2 Fall 2000 conf): “person registry” site http://depts.washington.edu/cac/project/personreg/resource/

    • Morgan’s “Phase I” list vs. Directories Save the World!

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d19 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • Directory Proposal to SURA – Jan 8, 2001

    • Directory Services Architecture for a Community of Interest

    • Extend European directory work & “directory-of-directories” with custom directory services

    • More discussion, collaboration

  • NSF Proposal, Directory Services – Jan 24, 2001

    • ITR/SI – Scalable, Customized, Authoritative LDAP Directory Services for Communities of Interest

    • Dr. Sham Navathe, Georgia Tech College of Computing, Co-PI

    • Web-based XML toolkit for user interfaces

    • Automated mechanisms to select entries from varied set of sources

    • Hosting services optimize placement, performance, management

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d20 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • Gartner PKI Tool & HEPKI-PAG – Jan 26, 2001

    • Evaluating PKI & model RFP guidelines

    • PKI inter-realm operation, mobility, open standards

    • How well does tool address higher education needs?

  • Account Process Working Group – Jan 31, 2001

    • Data Stewards, GSU Security Officer, ACS

    • Internal Audit findings on administrative account management

    • Findings can be addressed without reference to directory…

    • BUT: integrated directory greatly facilitates account management

  • “Person Registry” Weekly Status – February 15, 2001

    • Iterative “prototyping”: WebCT, student email, Rec Center access

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d21 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • GA Enterprise Info. Security Program – Feb 20, 2001

    • Ga Tech Research Inst support to Ga Technology Authority

    • John Wandelt: Overall security infrastructure

    • Resources include ACS, GT Info Security Officer

  • USG Consolidated Directory – Feb 23, 2001

    • Architecture based on “directory-of-directories” model

    • Likely will scale well for 34 institutions

    • Local independence of LDAP access

  • MetaMerge (ArchiTech) Acquired – Feb 26, 2001

    • “great potential for addressing a number of the thorny problems in shared infrastructure development facing administrators in…higher education.” Keith Hazelton, Senior IT Architect, U. of Wisconsin

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d22 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • CIS Graduate Student Resources – Feb 28, 2001

    • Navathe at GT Dr. Vijay Vaishnavi at GSU CIS

    • Vaishnavi research area: efficiency of B2B communications

    • Student resources possible

  • Internet2 VidMid Working Group – Mar 7-9, 2001

    • “Middleware” services supporting video conferencing

    • Includes directory services

  • ACS Subcontract to GTRI Proposal – Apr 18, 2001

    • PKI Planning & Support

    • Delivery order for PKI pilot June 2001-November 2001

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Chronology of action cont d23 l.jpg
Chronology of Action – (cont’d) Directory & Public Key Infrastructure

  • USG Admin Comm. for IT Status Report – May 1, 2001

    • Request funding (hw, staff) for consolidated directory service

    • Highlight need for system level Unique Identifier

    • Link to data warehousing project, SSN project, web ADA access

  • SURA Proposal for Directory Services – …May 7, 2001

    • GSU, Georgia Tech, Georgetown participation

    • Cost matching with GSU, directory-of-directories project

    • Sun Academic Equipment Grant for hardware

    • Memos noting synergy with ViDeNet proposal to SURA

  • ACS support for 3 graduate students – May 11, 2001

    • Undergrad, Masters, PhD in coordination with Vaishnavi GSU CIS

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Outcome l.jpg
Outcome Directory & Public Key Infrastructure

  • Resources discovered

  • Data sources mapped, “person registry” established

  • Enterprise Directory Policy drafted

  • Commitment to System level consolidated directory

  • Synergy with national initiatives higher ed, Internet2

  • Collaborative initiatives being developed

  • Funding sources being worked

  • Relationships built: GSU, USG, higher ed, Internet2…

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Conclusion l.jpg
Conclusion Directory & Public Key Infrastructure

  • High level vision & sponsorship

  • Dedicate someone

  • Establish some basic goals

  • Educate your organization

  • Communicate

  • Develop relationships

  • Stay open to opportunity

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


Questions discussion l.jpg
Questions & Discussion Directory & Public Key Infrastructure

Case Study: Establishing Momentum for Implementing Directory & Public Key Infrastructure


ad