eid federations
play

eID federations APAN 29, February 10th 2010, Sydney David Simonsen - PowerPoint PPT Presentation

Apr 08, 2023 •584 likes •2.39k views

eID federations APAN 29, February 10th 2010, Sydney David Simonsen Today's menu eID federations introduction & overview About WAYF, the Danish eID federation (funding organisation, staff etc.) Federation

  1. Extending single-sing-on Services Institutions 1 X login WAYF 2 Y login

  2. Extending single-sing-on Services Institutions 1 X login WAYF 2 Y login

  3. Extending single-sing-on Services Institutions 1 X login WAYF 2 Y login

  4. Extending single-sing-on Services Institutions 1 X login WAYF 2 Y login HEIMAT - transparent login to federation from local SSO

  5. The LMS as dashboard • Service collections, also external services, via federated access

  6. The LMS as dashboard • Service collections, also external services, via federated access

  7. Citizens' login service

  8. Citizens' login • All >18 years (with a bank account) • 3.5 mio people (out of 5.5 mio) Commercial services DK bank login Citizens' login service Public/gov services

  9. Citizens' login • All >18 years (with a bank account) • 3.5 mio people (out of 5.5 mio) Commercial services DK bank login Citizens' login service Public/gov services

  10. External (strong) authentication Services Institutions 1 X login WAYF 2 Y login

  11. External (strong) authentication Services Institutions 1 X login WAYF 2 Y login

  12. External (strong) authentication Services Institutions 1 X login WAYF 2 Y login

  13. External (strong) authentication Services Institutions 1 X login WAYF 2 Y login Enrolment of students Password reset self service Expensive services ...

  14. Level of Assurance • Classification of authentication strength • Classification of trust-levels

  15. Strength of authentication • Initial authentication • Login session • Follow national / EU / USA standard ?

  16. Shibboleth Services Institutions WAYF Shib 1.2 Shib 1.3 X 1 SAML1.1 login WAYF Shib 2 SAML 2 Y 2 login WAYF

  17. Protocol translation Services Institutions 1 X SAML2 Shib 1.3 WAYF CAS SAML2 2 Y

  18. Protocol translation Services Institutions p 1 h X p L M SAML2 Shib 1.3 A S e e l WAYF d p i m s n i i s CAS SAML2 2 Y http://rnd.feide.no/simplesamlphp

  19. Multi-protocol support SAML 2.0 as Service Provider • SAML 2.0 as Identity Provider • Shiboleth 1.3 as Service Provider • Shiboleth 1.3 as Identity Provider • A-Select as Service Provider • A-Select as Identity Provider • CAS for remote authentication • OpenID Provider support (experimental) • OpenID Consumer support (experimental) • WS-Federation as a Service Provider • LDAP, Multi-LDAP • SQL • InfoCard • PAPI as Service Provider • PAPI as Identity Provider

  20. SAML2 profiles

  21. SAML2 profiles

  22. SAML2 profiles http://saml2int.org/

  23. Attributes

  24. $

  25. Attribute release profiles

  26. Set or calculated attributes

  27. Set or calculated attributes • (Schac)HomeOrg (ruc.dk) Services Institutions 1 X login WAYF 2 Y login

  28. Set or calculated attributes • (Schac)HomeOrg (ruc.dk) Services Institutions • (Schac)YearOfBirth 1 X login WAYF 2 Y login

  29. Set or calculated attributes • (Schac)HomeOrg (ruc.dk) Services Institutions • (Schac)YearOfBirth 1 X login WAYF • (eduPerson)TargetedID 2 Y login

  30. SchacHomeOrg

  31. SchacHomeOrg Services Institutions Inst2.dk 1 X login WAYF 2 Y login

Recommend

Data protection law a new challenge for International Sports Federations GDPR and what

Data protection law a new challenge for International Sports Federations GDPR and what

Data protection law a new challenge for International Sports Federations GDPR and what International Sports Federations must know Bangkok, 20 April 2018 Franois Carrard, Dr . iur ., Attorney-at-law www.kellerhals-carrard.ch AGENDA 1.

440 views • 19 slides
CVMFS for Data Federations Derek Weitzel University of Nebraska - Lincoln Problem with Data

CVMFS for Data Federations Derek Weitzel University of Nebraska - Lincoln Problem with Data

CVMFS for Data Federations Derek Weitzel University of Nebraska - Lincoln Problem with Data Federations Users must know the exact filenames for each job. They have to use special tools they are unfamiliar with in order to use it (such

408 views • 18 slides
WebRTC Identity in SAML Federations Mihly Mszros May 19, 2015 NIIF Institute Budapest /

WebRTC Identity in SAML Federations Mihly Mszros May 19, 2015 NIIF Institute Budapest /

WebRTC Identity in SAML Federations Mihly Mszros May 19, 2015 NIIF Institute Budapest / Hungary Agenda Education & Research Identity Federations SAML Terminology Overview of SAML auth call flow WebRTC Identity model

1.09k views • 52 slides
Integrating running apps into federations + JANUS Terena Eurocamp, 11/2009, Budapest Ernesto

Integrating running apps into federations + JANUS Terena Eurocamp, 11/2009, Budapest Ernesto

Integrating running apps into federations + JANUS Terena Eurocamp, 11/2009, Budapest Ernesto Revilla erny@yaco.es 1 Integrating running apps into federations Background: Yaco (30 pers Open Source company) Setting up the andalusian

612 views • 16 slides
Sustainability Models for Digital Preservation Federations Robert H. McDonald San Diego

Sustainability Models for Digital Preservation Federations Robert H. McDonald San Diego

Sustainability Models for Digital Preservation Federations Robert H. McDonald San Diego Supercomputer Center mcdonald@sdsc.edu Tyler O. Walters Georgia Institute of Technology tyler@gatech.edu This work is licensed under a Creative Commons

341 views • 12 slides
Integrating non web-based services with identity federations Jens Khler, Michael Simon,

Integrating non web-based services with identity federations Jens Khler, Michael Simon,

bw IDM Integrating non web-based services with identity federations Jens Khler, Michael Simon, Sebastian Labitzke, Tobias Dussa, Martin Nubaumer bw IDM The bwIDM project Services of the state of Baden-Wrttemberg placed at

560 views • 11 slides
Dynamic Federations Seamless aggregation of standard-protocol-based storage endpoints Fabrizio

Dynamic Federations Seamless aggregation of standard-protocol-based storage endpoints Fabrizio

Dynamic Federations Seamless aggregation of standard-protocol-based storage endpoints Fabrizio Furano Patrick Fuhrmann Paul Millar Daniel Becker Adrien Devresse Oliver Keeble Ricardo Brito da Rocha Alejandro Alvarez Credits to ShuTing Liao (ASGC) 1

653 views • 25 slides
Kantara F2F Berlin Closing Session Summary slides from: Business Cases for Trusted Federations

Kantara F2F Berlin Closing Session Summary slides from: Business Cases for Trusted Federations

Kantara F2F Berlin Closing Session Summary slides from: Business Cases for Trusted Federations Trust Framework Meta Model Telecommunications Identity Open Source Support Initiative Privacy Framework eGovernment Board of Trustees BCTF

322 views • 17 slides
PKI in federations - approach to non-web services Milan Sova, CESNET EuroCAMP, Dubrovnik, 2007

PKI in federations - approach to non-web services Milan Sova, CESNET EuroCAMP, Dubrovnik, 2007

Everything you never wanted to know about PKI in federations - approach to non-web services Milan Sova, CESNET EuroCAMP, Dubrovnik, 2007 SAMLized applications HTTPS web browser What about email access network access

141 views • 11 slides
911 Scholarship Fund An Update and An Appeal Arlington County Civic Federations 911 911 911

911 Scholarship Fund An Update and An Appeal Arlington County Civic Federations 911 911 911

Civic Federation 911 Scholarship Fund An Update and An Appeal Arlington County Civic Federations 911 911 911 Scholarship Fund 15 Years Later Schol olarsh ship p Fund Established In December 2001 In Recognition Of Arlington Public

455 views • 10 slides
IT-SDC : Support for Distributed Computing 1 The problem Pick a number of generic

IT-SDC : Support for Distributed Computing 1 The problem Pick a number of generic

Dynamic Federations Storage federations for HTTP and WebDAV Fabrizio Furano (presenter) Adrien Devresse CERN IT-SDC IT-SDC : Support for Distributed Computing 1 The problem Pick a number of generic HTTP/WebDAV storage endpoints,

704 views • 47 slides
Refeds update REpresentatives of FEDerationS TF-EMC2 Marseille 4th Feb 2008 Mikael.Linden@csc.fi

Refeds update REpresentatives of FEDerationS TF-EMC2 Marseille 4th Feb 2008 Mikael.Linden@csc.fi

Refeds update REpresentatives of FEDerationS TF-EMC2 Marseille 4th Feb 2008 Mikael.Linden@csc.fi CSC, the Finnish IT Center for Science Refeds mailing list refeds@terena.org public archive http://www.terena.nl/mail-archives/refeds

350 views • 10 slides
Easing access to Grids using identity federations Daniel Kouil T erena NREN & Grid

Easing access to Grids using identity federations Daniel Kouil T erena NREN & Grid

Easing access to Grids using identity federations Daniel Kouil T erena NREN & Grid Workshop 2008, Dublin PKI & Grids what we learnt The Grid authentication mechanism A lot of achievements Promising principles ...

154 views • 11 slides
Fiscal Federalism Issues in Resource-Rich Federations by Robin Boadway Queens University,

Fiscal Federalism Issues in Resource-Rich Federations by Robin Boadway Queens University,

Fiscal Federalism Issues in Resource-Rich Federations by Robin Boadway Queens University, Canada Joint Workshop on Fiscal Federalism, Public, Regional and Urban Economics Catholic University of Bras lia, Brazil, May 1011, 2018

562 views • 43 slides
Introduction to Identity Federations Brook Schofield eduGAIN Task Leader, GN3 Project &

Introduction to Identity Federations Brook Schofield eduGAIN Task Leader, GN3 Project &

Introduction to Identity Federations Brook Schofield eduGAIN Task Leader, GN3 Project & Project Development Officer, TERENA schofield@terena.org 15 October 2012 Building Federated Identity Policy, GN3 Symposium, Vienna, Austria Innovation

157 views • 12 slides
Identity internetworking with eduGAIN Diego R. Lopez - RedIRIS Confederations Federate

Identity internetworking with eduGAIN Diego R. Lopez - RedIRIS Confederations Federate

Connect. Communicate. Collaborate Identity internetworking with eduGAIN Diego R. Lopez - RedIRIS Confederations Federate Federations Connect. Communicate. Collaborate Same federating principles applied to federations themselves Own

510 views • 22 slides
The Collaboration Game Niels van Dijk, Technical Product Manager SURFnet Topics - Identity

The Collaboration Game Niels van Dijk, Technical Product Manager SURFnet Topics - Identity

The Collaboration Game Niels van Dijk, Technical Product Manager SURFnet Topics - Identity federations 2010 - The Collaboration Game - A distributed landscape - Enter Domestication - The future of Domestication Identity federations 101

434 views • 39 slides
How to join XrootD Federations with dCache Plugins Karsten Schwank Berlin, 27.5.2013 dCache

How to join XrootD Federations with dCache Plugins Karsten Schwank Berlin, 27.5.2013 dCache

How to join XrootD Federations with dCache Plugins Karsten Schwank Berlin, 27.5.2013 dCache Team Contents Join the CMS XrootD Federation (AAA) Join the Atlas XrootD Federation (FAX) Install the Atlas Pool Monitoring Plugin Use the

645 views • 60 slides
INTERNATIONAL WATERSKI & WAKEBOARD FEDERATION Are you looking for.. An Athletes Bio? A

INTERNATIONAL WATERSKI & WAKEBOARD FEDERATION Are you looking for.. An Athletes Bio? A

INTERNATIONAL WATERSKI & WAKEBOARD FEDERATION Are you looking for.. An Athletes Bio? A Federations Contact Details? IWWFs World or Confederation Calendar? To find news on a specific competition? Results? An Event Venue Near

786 views • 20 slides
EASM 2014 preferences. However, knowledge creation/appropriation in non-profits is constrained

EASM 2014 preferences. However, knowledge creation/appropriation in non-profits is constrained

WHAT SERVICE INNOVATION TYPES ARE IMPLEMENTED BY SPORT FEDERATIONS? Submitting author: Dr Mathieu Winand University of Stirling, School of Sport Stirling, FK9 4LA United Kingdom All authors: Mathieu Winand (corresp), Thierry Zintz Type:

248 views • 3 slides
EASM 2014 who are not suspected to take doping substances (benevolence) and they have to state

EASM 2014 who are not suspected to take doping substances (benevolence) and they have to state

THE TRUSTWORTHINESS OF THE ANTI-DOPING WORK OF SPORT FEDERATIONS Submitting author: Mr Dennis Dreiskaemper Institute of Sport and Exercise Sciences, University of Mnster Mnster, 48149 Germany All authors: Dennis Dreiskaemper (corresp),

543 views • 3 slides
Co Combined Ch Charities Ca Campaign Kick Off Event September 27, 2018 Welcome and Thank You

Co Combined Ch Charities Ca Campaign Kick Off Event September 27, 2018 Welcome and Thank You

City and County of San Francisco Co Combined Ch Charities Ca Campaign Kick Off Event September 27, 2018 Welcome and Thank You Agenda Welcome from Airport COO Jeff Littlefield Campaign Chair Linda Yeung Federations/Charity

762 views • 51 slides
CONNECTING CARE FOR CHILDREN: A partnership between CCGs, hospital & community health

CONNECTING CARE FOR CHILDREN: A partnership between CCGs, hospital & community health

CONNECTING CARE FOR CHILDREN: A partnership between CCGs, hospital & community health providers, GP federations & networks, local authority, charity, patients, citizens and more NEL ICS 22 nd July 2020 THE PROBLEM THE OPPORTUNITY WHY

701 views • 38 slides
TF-NOC flash presentation DFN TF-NOC Feb 2012 Dubrovnik Thomas Schmid, schmid@dfn.de DFN (1)

TF-NOC flash presentation DFN TF-NOC Feb 2012 Dubrovnik Thomas Schmid, schmid@dfn.de DFN (1)

TF-NOC flash presentation DFN TF-NOC Feb 2012 Dubrovnik Thomas Schmid, schmid@dfn.de DFN (1) Head office in Berlin Management, Project Management, Planning, Ordering, Services (Lambda Service, Roaming, PKI, Federations, LIR, IP

378 views • 17 slides

More recommend