shib and incommon
play

Shib and InCommon Topics First principles Shib 2.0 Migration - PowerPoint PPT Presentation

Oct 11, 2022 •441 likes •562 views

Shib and InCommon Topics First principles Shib 2.0 Migration strategies InCommon Future of Shib Presenters Name 2000 First Principles We serve the R&E enterprise and scholar Externalize authentication

  1. Shib and InCommon

  2. Topics • First principles • Shib 2.0 • Migration strategies • InCommon • Future of Shib Presenter’s Name

  3. 2000 First Principles • We serve the R&E enterprise and scholar • Externalize authentication from the application • While at it, try to use rich external attributes within the application for privacy and security. Presenter’s Name

  4. 2008 First Principles • We serve the R&E enterprise and scholar • Externalize authentication from the application; internalize the risk-assessment. • While at it, try to use rich external attributes within the application for privacy, security, secrecy, scaling, ease of use, efficiency, etc. Presenter’s Name

  5. Shibboleth 2.0 • RC1 now out the door, and being heavily tested. Final release soon. • Product of the core Shib team, now spread across the US, Switzerland and the UK. • “Shib 2.0 will interoperate with other SAML 2.0 products better than they interoperate with each other.” • OpenSAML 2.0 already heavily used by Verisign, Tata , etc. Presenter’s Name

  6. Shib and OpenId • We are discussing Shib 2.0+ containing an OpenId provider • Shib 2.0++ will contain more clever and useful integration of federated and ad hoc identity management • The OpenId platform within Shib will have a warning reminding applications to use caution in their consumption of external identities. Presenter’s Name

  7. Missing pieces • End-user attribute release management • InfoCard? • Kludges • Dynamic metadata (not dynamic trust) • N-tier tokens • Java SP • Quick start package Presenter’s Name

  8. InCommon • Approximately 75 members and growing steadily • On third generation of Steering Committee • Growing steadily but strangely • National Institute of Health • Student service providers • Energy Labs • Odd overlaps with state federations , etc. • Fine print continues to be challenging Presenter’s Name

  9. InCommon Next Steps • Pending new members • MS (+Mr Bill !), Google, student service companies, medical consortia • Libraries, finally • InCommon Silver • LOA-2, • Not hard but lots of thought upfront • Rich new set of applications from NIH • Leveraged federations • Local, state, etc., single-purpose and multi-purpose • Dynamic metadata Presenter’s Name

  10. The Future of Shib • 2.0 is a relative plateau • Service industries springing up • Shib is important enough that it needs some independence from Internet2 Presenter’s Name

  11. Setting the direction • Options: • Apache, Kuali/Rice, Mellon, Red Hat, independent foundation, source forge, EDUCAUSE • Others? • Who decides? • Who executes? Presenter’s Name

Recommend

Trust Management in Shibboleth Trust Management in Shibboleth and InCommon and InCommon RL

Trust Management in Shibboleth Trust Management in Shibboleth and InCommon and InCommon RL

Trust Management in Shibboleth Trust Management in Shibboleth and InCommon and InCommon RL Bob Morgan University of Washington and Internet2 TERENA TF-EMC2 Florence, Italy March 2007 Trust management in SAML Trust management in SAML

566 views • 9 slides
Internet2 and STEVEN ZOPPI InCommon Trust and (SZOPPI@INTERNET2.EDU) Identity Initiatives AVP,

Internet2 and STEVEN ZOPPI InCommon Trust and (SZOPPI@INTERNET2.EDU) Identity Initiatives AVP,

Internet2 and STEVEN ZOPPI InCommon Trust and (SZOPPI@INTERNET2.EDU) Identity Initiatives AVP, Services Integration and For Open Research Cloud Architecture Declaration MAY 11, 2017 Brief Highlights CONTENTS T&I Work has been

185 views • 14 slides
Representing Joint Hierarchies with Box Embeddings Dhruvesh Patel*, Shib Sankar Dasgupta*,

Representing Joint Hierarchies with Box Embeddings Dhruvesh Patel*, Shib Sankar Dasgupta*,

Representing Joint Hierarchies with Box Embeddings Dhruvesh Patel*, Shib Sankar Dasgupta*, Michael Boratko, Xiang Li, Luke Vilnis, Andrew McCallum Hierarchies and Box Embeddings Mammal Dog Cat Dog Mammal Person Person Cat Woman Woman

613 views • 12 slides
OpenID OpenID and SAML and SAML Fiona Culloch, EDINA Fiona Culloch, EDINA EuroCAMP, Stockholm,

OpenID OpenID and SAML and SAML Fiona Culloch, EDINA Fiona Culloch, EDINA EuroCAMP, Stockholm,

Shib Shibbolet oleth Develo Developmen ent a t and Su d Supp pport Services t Services OpenID OpenID and SAML and SAML Fiona Culloch, EDINA Fiona Culloch, EDINA EuroCAMP, Stockholm, 7 May 2008 EuroCAMP, Stockholm, 7 May 2008 Shib

666 views • 20 slides
Globally understandable LoAs Milan Sova Use case CILogon accreditation with IGTF use

Globally understandable LoAs Milan Sova Use case CILogon accreditation with IGTF use

Globally understandable LoAs Milan Sova Use case CILogon accreditation with IGTF use InCommon Silver Q: What is ? A: See the Silver Profile Use case CILogon accreditation with IGTF use InCommon Silver Q: What is ? A: See the

402 views • 5 slides
Top-K Sequential Patterns Philippe Fournier-Viger 1 , Antonio Gomariz 2 , Ted Gueniche 1 ,

Top-K Sequential Patterns Philippe Fournier-Viger 1 , Antonio Gomariz 2 , Ted Gueniche 1 ,

TKS: Efficient Mining of Top-K Sequential Patterns Philippe Fournier-Viger 1 , Antonio Gomariz 2 , Ted Gueniche 1 , Esprance Mwamikazi 1 , Rincy Thomas 3 1 University of Moncton, Canada 2 University of Murcia, Spain 3 Sha-Shib College of

627 views • 26 slides
Security Contacts in SAML Metadata Jim Basney jbasney@ncsa.illinois.edu Topics About

Security Contacts in SAML Metadata Jim Basney jbasney@ncsa.illinois.edu Topics About

Security Contacts in SAML Metadata Jim Basney jbasney@ncsa.illinois.edu Topics About InCommon Federated security incident response Security contacts in metadata Metadata integrity Examples and statistics Open questions

463 views • 12 slides
SSO and authentication off campus: SimpleSAMLphp and SAML2 Jacob-Steen Madsen (jsm@wayf.dk) The

SSO and authentication off campus: SimpleSAMLphp and SAML2 Jacob-Steen Madsen (jsm@wayf.dk) The

SSO and authentication off campus: SimpleSAMLphp and SAML2 Jacob-Steen Madsen (jsm@wayf.dk) The setting Services Institutions 1 X LOGIN Shib SAML2 WAYF 2 CAS Y LOGIN CAS + LDAP SAML2 Consent-db 3 Z LOGIN Agreement A look at

583 views • 9 slides
Integration of N-tiers application Using CAS Single Sign On system with a webmail application,

Integration of N-tiers application Using CAS Single Sign On system with a webmail application,

Integration of N-tiers application Using CAS Single Sign On system with a webmail application, Horde K.U.Leuven Association velpi@groupt.be http://shib.kuleuven.be Integration of N-tiers application http://associatie.kuleuven.be/

911 views • 58 slides

More recommend