1 / 11

Federated Identity Management for Researchers – A quick overview from G ÉANT

Federated Identity Management for Researchers – A quick overview from G ÉANT. BoF TNC 2014 20 May 2014 Dublin. The Starting Point – FIM4R and TERENA AAA Study. User friendliness. Attribute aggregation . Credential translation . Attribute release. Levels of Assurance . Homeless

samson
Download Presentation

Federated Identity Management for Researchers – A quick overview from G ÉANT

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Federated Identity Management for Researchers – A quick overview from GÉANT BoF TNC 2014 20 May 2014 Dublin

  2. The Starting Point – FIM4R and TERENA AAA Study User friendliness Attribute aggregation Credential translation Attribute release Levels of Assurance Homeless users Non-web-browser Bridging Communities 30+ Research Infrastructures in Europe Countless more “long tail” users

  3. Three Collaborative Pilots – User communities and GÉANT • “A connected network of people, information, tools, and methodologies for investigating, exploring and supporting work across the broad spectrum of the digital humanities.” • “Basic life science information constitutes a testament of human and natural evolution and advancement. As such, this wealth of knowledge should be freely available for all to access, study and process” “Umbrella is the Federated Identity Solution of the Photon and Neutron Community, enabling user initiated trans-facility access.”

  4. DARIAH Experience eduGAIN is the best approach to pan European AAI for DARIAH but some time is needed to fulfil all needs DARIAH would like to see more entities available in eduGAIN and reasonable attributes available DARIAH has been able to meet many requirements • Distributed user and privilege administration • Policies that allow for integration into DFN-AAI and eduGAIN Combination of eduGAIN and community specific • DARIAH homeless-IdP and attribute authority

  5. ELIXIR Experience • Nextphase of AAI in ELIXIR – blueprint for discussion • ExternalIdPs via eduGAIN • ELIXIR specificservices for authorisation (REMS), nonweb, homelessusers and communitymanagement A pan-Europeanapproach to LoA wouldbeappreciated/necessary in the future • MinimiseELIXIR-specificcustomisation Federated identity cross sector collaboration: REMS to beusedby FI-CLARIN & FI-CESSDA

  6. Umbrella Experience More opportunities for NREN/Research Infrastructure Collaboration • Security analysis discussion at FIM4R Piloting with a wider community has benefits • JANET/Diamond Light in UK Moonshot Pilot Confidentiality aspects critical for Umbrella - high competition, especially structural biology • Authorisation is delegated to the systems participating in Umbrella

  7. There’s plenty of work still to do for everyone Attributes - Release, consistency, community specific and harmonisation Understanding security and incident response Levels of Assurance A long term issue to be broken down Progress can be slow initially More experience, work faster Non web – Early pilot not novice user but evolving more Many other research communities developing AAI requirements and work

  8. The environment is right to do it FIM4R /RDA T&I Committee Increased EC/public awareness of security Federations looking to do more • Support of GÉANT Code of Conduct • Emerging ‘opt-out’ pilots for eduGAIN • REFEDs Federation Operator Best Practice Research communities services appearing in national federations and eduGAIN • Knowledge gained with these pilots helps support other communities & plan service • Ask us for help: • edugain-integration@geant.net

  9. There are funding channels to do work- Everyone with a piece of the problem REFEDS EINFRA Call GÉANT Policy Best Practises Identity Harmonisation Operational Practises LoA eduGAIN Training on policies Federation Harmonisation FaaS Proof of Concepts Moonshot Pilot Services eduroam Outreach Research Work Support for R&E communities Supporting Tools Guest IdPs Enabling Users

  10. We need to talk about… • The right people • Skilled • Representing all points on the chain – IdP, Federation, Interfederation, SPs, Researchers • With the right use cases • Not just ‘fix my problem’ • Scalable, realistic In the right places Reaching the IdPs? Supporting ‘real’ R&E

  11. Thank you! Join the BoF after today’s sessions for more about e-Research and Federated Identity.

More Related