gatorlink authentication using shibboleth
play

GatorLink Authentication Using Shibboleth Peer 2 Peer August 6, - PowerPoint PPT Presentation

Sep 12, 2022 •484 likes •627 views

GatorLink Authentication Using Shibboleth Peer 2 Peer August 6, 2010 UF INFORMATION TECHNOLOGY Shibboleth Warren Curry Associate Director and Lead, Core IT ES Alan Cook Interim Director, Student Information Systems ES Eli

  1. GatorLink Authentication Using Shibboleth Peer 2 Peer August 6, 2010

  2. UF INFORMATION TECHNOLOGY Shibboleth Warren Curry Associate Director and Lead, Core IT – ES Alan Cook Interim Director, Student Information Systems – ES Eli Ben-Shoshan Shibboleth Technical Contact – CNS

  3. UF INFORMATION TECHNOLOGY Shibboleth Project Timeline Spring 2008: Project Began Initial „Go Live‟ Winter 2009: „Go Live‟ for Enterprise Apps Winter 2010: July 2010: 250 Approved Service Providers Fall 2010: GLAuth Will Sunset

  4. UF INFORMATION TECHNOLOGY What is Shibboleth? A standards-based, open-source software providing Web single sign-on across or within organizational boundaries

  5. UF INFORMATION TECHNOLOGY Shibboleth Allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner

  6. UF INFORMATION TECHNOLOGY

  7. UF INFORMATION TECHNOLOGY

  8. UF INFORMATION TECHNOLOGY Attribute Release • Shibboleth is designed to provide data about users (attributes) to authorized requestors • Attribute Release is governed by UF‟s Attribute Release Policy

  9. UF INFORMATION TECHNOLOGY Attribute Release • Attribute Release Policy is associated with an Application (typically a URL) • At UF, an Application is associated with a Responsible Party via UFID

  10. UF INFORMATION TECHNOLOGY www.it.ufl.edu/identity/shibboleth

  11. UF INFORMATION TECHNOLOGY InCommon “The mission of the InCommon Federation is to create and support a common framework for trustworthy shared management of access to on-line resources in support of education and research in the United States.” http://www.incommonfederation.org

  12. UF INFORMATION TECHNOLOGY Future of Gator Link Authentication • GLAUTH proposed sunset Nov. 1, 2010 • Password will not be collected on your applications • Kerberos or AD for all authentication • New features will be added as community needs and secure technology allows • Listserv for this community is active

  13. UF INFORMATION TECHNOLOGY Questions? Warren: whcurry@ufl.edu Alan: acook@ufl.edu Eli: ebs@ufl.edu

Recommend

Design and Implementation of Web Forward Proxy with Shibboleth Authentication Shibboleth

Design and Implementation of Web Forward Proxy with Shibboleth Authentication Shibboleth

Design and Implementation of Web Forward Proxy with Shibboleth Authentication Shibboleth Authentication KOMURA Takaaki Kyoto University SANO Hiroaki Kyoto University Library DEMIZU Noritoshi OCTOPATH corporation MAKIMURA Ken OCTOPATH corporation

415 views • 25 slides
Drupal Shibboleth Authentication Ray Saray Ali Karim Andrea Kapitan Server

Drupal Shibboleth Authentication Ray Saray Ali Karim Andrea Kapitan Server

Drupal Shibboleth Authentication Ray Saray Ali Karim Andrea Kapitan Server Tools AWS Docker Shibboleth Service Resources AWS Elastic Beanstalk - for deploying and scaling applications

315 views • 19 slides
Webmail Authentication Using Shibboleth and Virtual Directory Server Stefano Zanmarchi Carlo

Webmail Authentication Using Shibboleth and Virtual Directory Server Stefano Zanmarchi Carlo

Webmail Authentication Using Shibboleth and Virtual Directory Server Stefano Zanmarchi Carlo Manfredi Simone Marzola Giorgio Paolucci University of Padova - ITALY TERENA Eurocamp Athens November 6, 2008 Introduction Our infrustructure:

729 views • 18 slides
EGI-InSPIRE GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies

EGI-InSPIRE GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies

EGI-InSPIRE GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies Sergio Maffioletti <sergio.maffioletti@gc3.uzh.ch> Grid Computing Competence Centre, University of Zurich http://www.gc3.uzh.ch/ GridCertLib EGI

383 views • 26 slides
Trust Management in Shibboleth Trust Management in Shibboleth and InCommon and InCommon RL

Trust Management in Shibboleth Trust Management in Shibboleth and InCommon and InCommon RL

Trust Management in Shibboleth Trust Management in Shibboleth and InCommon and InCommon RL Bob Morgan University of Washington and Internet2 TERENA TF-EMC2 Florence, Italy March 2007 Trust management in SAML Trust management in SAML

566 views • 9 slides
Middleware integration in the Sympa mailing list software Olivier Salan - CRU 1. Sympa, its

Middleware integration in the Sympa mailing list software Olivier Salan - CRU 1. Sympa, its

15 novembre 2007 Middleware integration in the Sympa mailing list software Olivier Salan - CRU 1. Sympa, its middleware connectors 2. Sympa web authentication 3. CAS authentication 4. Shibboleth authentication 5. Sympa and dokuwiki 15

574 views • 24 slides
AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the process of verifying the identity of the communicating principals to one another Usually sub-divided into Entity authentication Authentication

288 views • 10 slides
The Shibboleth-enabled WebDAV server used in ESUP-Portail and ORI-OAI projects Raymond Bourges

The Shibboleth-enabled WebDAV server used in ESUP-Portail and ORI-OAI projects Raymond Bourges

The Shibboleth-enabled WebDAV server used in ESUP-Portail and ORI-OAI projects Raymond Bourges TERENA EuroCAMP 14 - 15 November 2007 Dubrovnik, Croatia Shibboleth-enabled WebDAV server 1) Context Demo (if it works) 2) Protocols

627 views • 40 slides
Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a precondition How to authenticate: Something you know Password, Secrets Something you have Smart Card, Token Something you are Biometrie

607 views • 4 slides
Project Shibboleth Project Shibboleth Update, Demonstration and Discussion Update, Demonstration

Project Shibboleth Project Shibboleth Update, Demonstration and Discussion Update, Demonstration

Project Shibboleth Project Shibboleth Update, Demonstration and Discussion Update, Demonstration and Discussion Michael Gettes (gettes@Duke.EDU) Michael Gettes (gettes@Duke.EDU) May 20, 2003 May 20, 2003 TERENA Conference, Zagreb, Croatia

489 views • 19 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

1.66k views • 27 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

613 views • 27 slides
A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization, Sessions Authentication Determining user identity Multiple ways What you know (password) What you have (phone, RSA SecureID, Yubikey)

1.57k views • 28 slides
Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password Token-based authentication Third party authentication Local Authentication How to store and verify password? Clear Data can be hacked

615 views • 14 slides
The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch Security Engineer kbabioch@suse.de New authentication standards ... 2 Some authentication technologies ... 3 - Authentication theory -

1.28k views • 88 slides
Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239 Authentication on a single machine Computer Security Authentication across a network February 21, 2007 Lecture 9 Lecture 9 Page 1 Page 2 CS 236,

302 views • 8 slides
I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform Agenda Authentication Inbound authentication Outbound authentication Single Sign-on Definitions Stage Process Method Physical

781 views • 48 slides
HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been proposed for applications including: Encryption and authentication For detecting malicious alterations of design components For

645 views • 15 slides
1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern University noubir@ccs.neu.edu Outline Overview of Authentication Systems [Chapter 9] Authentication of People [Chapter 10]

396 views • 17 slides
THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication overview Current state of Authentication The future of authentication MY JOURNEY 2012-2015 2004-2011 2015-Present 1998-2004 Staff at MIT

453 views • 34 slides
User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication middleware for Node. It is designed to serve a singular purpose: authenticate requests. Supports a comprehensive set of authentication mechanisms called

808 views • 16 slides
HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest

HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest

HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest mechanisms called challenge-response entity authentication exchange cleartext bitstrings directly, i.e., no cryptographic primitives are used A PUF

1.08k views • 38 slides
Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and

Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and

Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and Schroeder Authentication in general Bishop: Authentication is the binding of an identity to a principal. Network-based authentication mechanisms

1.6k views • 43 slides

More recommend