eid federations
play

eID federations APAN 29, February 10th 2010, Sydney David Simonsen - PowerPoint PPT Presentation

Apr 08, 2023 •584 likes •2.39k views

eID federations APAN 29, February 10th 2010, Sydney David Simonsen Today's menu eID federations introduction & overview About WAYF, the Danish eID federation (funding organisation, staff etc.) Federation

  1. Extending single-sing-on Services Institutions 1 X login WAYF 2 Y login

  2. Extending single-sing-on Services Institutions 1 X login WAYF 2 Y login

  3. Extending single-sing-on Services Institutions 1 X login WAYF 2 Y login

  4. Extending single-sing-on Services Institutions 1 X login WAYF 2 Y login HEIMAT - transparent login to federation from local SSO

  5. The LMS as dashboard • Service collections, also external services, via federated access

  6. The LMS as dashboard • Service collections, also external services, via federated access

  7. Citizens' login service

  8. Citizens' login • All >18 years (with a bank account) • 3.5 mio people (out of 5.5 mio) Commercial services DK bank login Citizens' login service Public/gov services

  9. Citizens' login • All >18 years (with a bank account) • 3.5 mio people (out of 5.5 mio) Commercial services DK bank login Citizens' login service Public/gov services

  10. External (strong) authentication Services Institutions 1 X login WAYF 2 Y login

  11. External (strong) authentication Services Institutions 1 X login WAYF 2 Y login

  12. External (strong) authentication Services Institutions 1 X login WAYF 2 Y login

  13. External (strong) authentication Services Institutions 1 X login WAYF 2 Y login Enrolment of students Password reset self service Expensive services ...

  14. Level of Assurance • Classification of authentication strength • Classification of trust-levels

  15. Strength of authentication • Initial authentication • Login session • Follow national / EU / USA standard ?

  16. Shibboleth Services Institutions WAYF Shib 1.2 Shib 1.3 X 1 SAML1.1 login WAYF Shib 2 SAML 2 Y 2 login WAYF

  17. Protocol translation Services Institutions 1 X SAML2 Shib 1.3 WAYF CAS SAML2 2 Y

  18. Protocol translation Services Institutions p 1 h X p L M SAML2 Shib 1.3 A S e e l WAYF d p i m s n i i s CAS SAML2 2 Y http://rnd.feide.no/simplesamlphp

  19. Multi-protocol support SAML 2.0 as Service Provider • SAML 2.0 as Identity Provider • Shiboleth 1.3 as Service Provider • Shiboleth 1.3 as Identity Provider • A-Select as Service Provider • A-Select as Identity Provider • CAS for remote authentication • OpenID Provider support (experimental) • OpenID Consumer support (experimental) • WS-Federation as a Service Provider • LDAP, Multi-LDAP • SQL • InfoCard • PAPI as Service Provider • PAPI as Identity Provider

  20. SAML2 profiles

  21. SAML2 profiles

  22. SAML2 profiles http://saml2int.org/

  23. Attributes

  24. $

  25. Attribute release profiles

  26. Set or calculated attributes

  27. Set or calculated attributes • (Schac)HomeOrg (ruc.dk) Services Institutions 1 X login WAYF 2 Y login

  28. Set or calculated attributes • (Schac)HomeOrg (ruc.dk) Services Institutions • (Schac)YearOfBirth 1 X login WAYF 2 Y login

  29. Set or calculated attributes • (Schac)HomeOrg (ruc.dk) Services Institutions • (Schac)YearOfBirth 1 X login WAYF • (eduPerson)TargetedID 2 Y login

  30. SchacHomeOrg

  31. SchacHomeOrg Services Institutions Inst2.dk 1 X login WAYF 2 Y login

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Data protection law a new challenge for International Sports Federations GDPR and what

Data protection law a new challenge for International Sports Federations GDPR and what

Data protection law a new challenge for International Sports Federations GDPR and what International Sports Federations must know Bangkok, 20 April 2018 Franois Carrard, Dr . iur ., Attorney-at-law www.kellerhals-carrard.ch AGENDA 1.

440 views • 19 slides
CVMFS for Data Federations Derek Weitzel University of Nebraska - Lincoln Problem with Data

CVMFS for Data Federations Derek Weitzel University of Nebraska - Lincoln Problem with Data

CVMFS for Data Federations Derek Weitzel University of Nebraska - Lincoln Problem with Data Federations Users must know the exact filenames for each job. They have to use special tools they are unfamiliar with in order to use it (such

408 views • 18 slides
WebRTC Identity in SAML Federations Mihly Mszros May 19, 2015 NIIF Institute Budapest /

WebRTC Identity in SAML Federations Mihly Mszros May 19, 2015 NIIF Institute Budapest /

WebRTC Identity in SAML Federations Mihly Mszros May 19, 2015 NIIF Institute Budapest / Hungary Agenda Education & Research Identity Federations SAML Terminology Overview of SAML auth call flow WebRTC Identity model

1.09k views • 52 slides
Integrating running apps into federations + JANUS Terena Eurocamp, 11/2009, Budapest Ernesto

Integrating running apps into federations + JANUS Terena Eurocamp, 11/2009, Budapest Ernesto

Integrating running apps into federations + JANUS Terena Eurocamp, 11/2009, Budapest Ernesto Revilla erny@yaco.es 1 Integrating running apps into federations Background: Yaco (30 pers Open Source company) Setting up the andalusian

612 views • 16 slides
Sustainability Models for Digital Preservation Federations Robert H. McDonald San Diego

Sustainability Models for Digital Preservation Federations Robert H. McDonald San Diego

Sustainability Models for Digital Preservation Federations Robert H. McDonald San Diego Supercomputer Center mcdonald@sdsc.edu Tyler O. Walters Georgia Institute of Technology tyler@gatech.edu This work is licensed under a Creative Commons

341 views • 12 slides
Integrating non web-based services with identity federations Jens Khler, Michael Simon,

Integrating non web-based services with identity federations Jens Khler, Michael Simon,

bw IDM Integrating non web-based services with identity federations Jens Khler, Michael Simon, Sebastian Labitzke, Tobias Dussa, Martin Nubaumer bw IDM The bwIDM project Services of the state of Baden-Wrttemberg placed at

560 views • 11 slides
Dynamic Federations Seamless aggregation of standard-protocol-based storage endpoints Fabrizio

Dynamic Federations Seamless aggregation of standard-protocol-based storage endpoints Fabrizio

Dynamic Federations Seamless aggregation of standard-protocol-based storage endpoints Fabrizio Furano Patrick Fuhrmann Paul Millar Daniel Becker Adrien Devresse Oliver Keeble Ricardo Brito da Rocha Alejandro Alvarez Credits to ShuTing Liao (ASGC) 1

653 views • 25 slides
Kantara F2F Berlin Closing Session Summary slides from: Business Cases for Trusted Federations

Kantara F2F Berlin Closing Session Summary slides from: Business Cases for Trusted Federations

Kantara F2F Berlin Closing Session Summary slides from: Business Cases for Trusted Federations Trust Framework Meta Model Telecommunications Identity Open Source Support Initiative Privacy Framework eGovernment Board of Trustees BCTF

322 views • 17 slides
PKI in federations - approach to non-web services Milan Sova, CESNET EuroCAMP, Dubrovnik, 2007

PKI in federations - approach to non-web services Milan Sova, CESNET EuroCAMP, Dubrovnik, 2007

Everything you never wanted to know about PKI in federations - approach to non-web services Milan Sova, CESNET EuroCAMP, Dubrovnik, 2007 SAMLized applications HTTPS web browser What about email access network access

141 views • 11 slides
911 Scholarship Fund An Update and An Appeal Arlington County Civic Federations 911 911 911

911 Scholarship Fund An Update and An Appeal Arlington County Civic Federations 911 911 911

Civic Federation 911 Scholarship Fund An Update and An Appeal Arlington County Civic Federations 911 911 911 Scholarship Fund 15 Years Later Schol olarsh ship p Fund Established In December 2001 In Recognition Of Arlington Public

455 views • 10 slides
IT-SDC : Support for Distributed Computing 1 The problem Pick a number of generic

IT-SDC : Support for Distributed Computing 1 The problem Pick a number of generic

Dynamic Federations Storage federations for HTTP and WebDAV Fabrizio Furano (presenter) Adrien Devresse CERN IT-SDC IT-SDC : Support for Distributed Computing 1 The problem Pick a number of generic HTTP/WebDAV storage endpoints,

704 views • 47 slides
Refeds update REpresentatives of FEDerationS TF-EMC2 Marseille 4th Feb 2008 Mikael.Linden@csc.fi

Refeds update REpresentatives of FEDerationS TF-EMC2 Marseille 4th Feb 2008 Mikael.Linden@csc.fi

Refeds update REpresentatives of FEDerationS TF-EMC2 Marseille 4th Feb 2008 Mikael.Linden@csc.fi CSC, the Finnish IT Center for Science Refeds mailing list refeds@terena.org public archive http://www.terena.nl/mail-archives/refeds

350 views • 10 slides
Easing access to Grids using identity federations Daniel Kouil T erena NREN & Grid

Easing access to Grids using identity federations Daniel Kouil T erena NREN & Grid

Easing access to Grids using identity federations Daniel Kouil T erena NREN & Grid Workshop 2008, Dublin PKI & Grids what we learnt The Grid authentication mechanism A lot of achievements Promising principles ...

154 views • 11 slides
Fiscal Federalism Issues in Resource-Rich Federations by Robin Boadway Queens University,

Fiscal Federalism Issues in Resource-Rich Federations by Robin Boadway Queens University,

Fiscal Federalism Issues in Resource-Rich Federations by Robin Boadway Queens University, Canada Joint Workshop on Fiscal Federalism, Public, Regional and Urban Economics Catholic University of Bras lia, Brazil, May 1011, 2018

562 views • 43 slides
Introduction to Identity Federations Brook Schofield eduGAIN Task Leader, GN3 Project &

Introduction to Identity Federations Brook Schofield eduGAIN Task Leader, GN3 Project &

Introduction to Identity Federations Brook Schofield eduGAIN Task Leader, GN3 Project & Project Development Officer, TERENA schofield@terena.org 15 October 2012 Building Federated Identity Policy, GN3 Symposium, Vienna, Austria Innovation

157 views • 12 slides
Identity internetworking with eduGAIN Diego R. Lopez - RedIRIS Confederations Federate

Identity internetworking with eduGAIN Diego R. Lopez - RedIRIS Confederations Federate

Connect. Communicate. Collaborate Identity internetworking with eduGAIN Diego R. Lopez - RedIRIS Confederations Federate Federations Connect. Communicate. Collaborate Same federating principles applied to federations themselves Own

510 views • 22 slides
STATUS OF THE MAIN BEAM QUADRUPOLE NANO-POSITIONING + SOME OBJECTIVES WITHIN PACMAN K. Artoos ,

STATUS OF THE MAIN BEAM QUADRUPOLE NANO-POSITIONING + SOME OBJECTIVES WITHIN PACMAN K. Artoos ,

STATUS OF THE MAIN BEAM QUADRUPOLE NANO-POSITIONING + SOME OBJECTIVES WITHIN PACMAN K. Artoos , S. Janssens, C. Collette (ULB), M. Esposito, C. Eymin, P. Fernandez Carmona K. Artoos , CLIC Workshop 2014 Outline 2 Intro + Link to the PACMAN

523 views • 28 slides
Instrumentation and analysis progress for g2p experiment Pengjia Zhu University of Science and

Instrumentation and analysis progress for g2p experiment Pengjia Zhu University of Science and

Instrumentation and analysis progress for g2p experiment Pengjia Zhu University of Science and Technology of China On behalf of the E08-027(g2p) collaboration 1 fifth hardon physics workshop,July 4 th ,2013 g2p collaboration Spokesperson

821 views • 41 slides
Systems Engineering Drivers Mark Austin E-mail: austin@isr.umd.edu Institute for Systems

Systems Engineering Drivers Mark Austin E-mail: austin@isr.umd.edu Institute for Systems

ENES 489P Hands-On Systems Engineering Projects Systems Engineering Drivers Mark Austin E-mail: austin@isr.umd.edu Institute for Systems Research, University of Maryland, College Park p. 1/46 Topic 2: Systems Engineering Drivers 1.

478 views • 46 slides
SP Far Detector Anode Panel, Cathode Panel, and Field Cage V. Guarino February 5, 2018 SP Far

SP Far Detector Anode Panel, Cathode Panel, and Field Cage V. Guarino February 5, 2018 SP Far

SP Far Detector Anode Panel, Cathode Panel, and Field Cage V. Guarino February 5, 2018 SP Far Detector Give an over view of DSS Design and APA Gaps Overview of Integration Model Areas where we need feedback from APA Consortium 2

572 views • 14 slides
Building Sustained Business Constituency Participation in Latin America Environment, Challenges

Building Sustained Business Constituency Participation in Latin America Environment, Challenges

Building Sustained Business Constituency Participation in Latin America Environment, Challenges and Opportunities March 2019, ICANN Kobe Andrew Mack Mark W. Datysgeld Gabriela Szlak 1 About the Study The Study Team Why the Study?

179 views • 7 slides
Collaborating with Student Affairs to Reach New Horizons in Campus Internationalization NAFSA

Collaborating with Student Affairs to Reach New Horizons in Campus Internationalization NAFSA

Collaborating with Student Affairs to Reach New Horizons in Campus Internationalization NAFSA 2015 Annual Conference Boston, MA May 27, 2015 Stephanie Gordon Karen L. Pennington, PhD Vice President for Professional Vice President for

688 views • 32 slides
Exploiting crowd sourced platforms for statistical purposes Donatella Fazio, Marina Signore

Exploiting crowd sourced platforms for statistical purposes Donatella Fazio, Marina Signore

European Conference on Quality in Official Statistics (Q2014) Vienna, 3-5 June 2014 Exploiting crowd sourced platforms for statistical purposes Donatella Fazio, Marina Signore Italian National Institute of Statistics (Istat) Outline

275 views • 16 slides
CMS Spokesperson Report - Current Status and Challenges Talk Presented to CMS RRB-45

CMS Spokesperson Report - Current Status and Challenges Talk Presented to CMS RRB-45

CMS Spokesperson Report - Current Status and Challenges Talk Presented to CMS RRB-45 CERN-RRB-2017-096 Joel Butler Oct. 24, 2017 Outline Introduction Management and Collaboration News 2017 Run 2018 Run and LS2 Computing

878 views • 72 slides

More recommend