project shibboleth project shibboleth update
play

Project Shibboleth Project Shibboleth Update, Demonstration and - PowerPoint PPT Presentation

Jan 23, 2023 •285 likes •489 views

Project Shibboleth Project Shibboleth Update, Demonstration and Discussion Update, Demonstration and Discussion Michael Gettes (gettes@Duke.EDU) Michael Gettes (gettes@Duke.EDU) May 20, 2003 May 20, 2003 TERENA Conference, Zagreb, Croatia

  1. Project Shibboleth Project Shibboleth Update, Demonstration and Discussion Update, Demonstration and Discussion Michael Gettes (gettes@Duke.EDU) Michael Gettes (gettes@Duke.EDU) May 20, 2003 May 20, 2003 TERENA Conference, Zagreb, Croatia TERENA Conference, Zagreb, Croatia

  2. Shibboleth A word which was made the criterion by which to distinguish the Ephraimites from the Gileadites. The Ephraimites, not being able to pronounce sh, called the word sibboleth. See -- Judges xii. Hence, the criterion, test, or watchword of a party; a party cry or pet phrase. - Webster's Revised Unabridged Dictionary (1913): 2

  3. Stage 1 - Addressing Three Scenario’s Member of campus community accessing licensed resource • Anonymity required Member of a course accessing remotely controlled resource • Anonymity required Member of a workgroup accessing controlled resources • Controlled by unique identifiers (e.g. name) Taken individually, each of these situations can be solved in a variety of straightforward ways. Taken together, they present the challenge of meeting the user's reasonable expectations for protection of their personal privacy. 3

  4. Establishing a User Context 4

  5. Getting Attributes and Determining Access 5

  6. Shibboleth Architecture 6

  7. Shibboleth Architecture -- Managing Trust TRUST Attribute Shib Server engine Target Browser Web Server Target Site Origin Site 7

  8. Milestones Project formation - Feb 2000 Stone Soup Process - began late summer 2000 with bi-weekly calls to develop scenario, requirements and architecture. Linkages to SAML established Dec 2000 Architecture and protocol completion - Aug 2001 Design - Oct 2001 Coding began - Nov 2001 Alpha-1 release – April 24, 2002 OpenSAML release – July 15, 2002 v0.7 Shibboleth released Nov 25, 2002 v0.8 March 1, 2003 v1.0 May 2003 (end of month) v1.1 conversations ruminating; v1.2 may be the plateau 8

  9. Code status v0.8 released March 2003 (coding teams – MIT, Columbia, Ohio State, CMU); v1.0 due out April 10 v0.7 much easier to install than alpha’s. C/C++ only on origin. Java still on target. Relatively safe to deploy and experiment Release issues – platform dependencies, fragile Apache components, binaries vs source, etc… v0.7 to v0.8 new features – ARP’s redone, added robustness timeframes – march 1, 2003 general release V0.8 to 1.0 – SAML 1.1 support, bug fixes and re-packaging 9

  10. Course Management Early Adopters WebCT Webassign Blackboard (Demonstrated April, 2003) OKI 10

  11. The Library Pilots • Explore and Evaluate the utility of the Shibboleth model (attributes) for controlling access to licensed resources • Identify problems and issues with this approach • How well do existing licenses map to attributes? • Library “walk-in” customers • Identify and address Shib deploy issues for campuses AND for vendors • Explore new possibilities, including role-based access controls 11

  12. Campus Participants Carnegie Mellon Penn State Columbia U. Colorado Dartmouth U. Michigan Georgetown U. Washington London School of Economics U. Wisconsin - Madison New York Unv. UCOP (U. California System) Ohio State U.Texas Health Science Center at Houston Others coming on 12

  13. Vendor Participants EBSCO ~ Elsevier OCLC Sfx (Ex libris) JSTOR McGraw Hill eBooks Innovative (III) Consortial efforts: WRLC, Athens, … 13

  14. Shibboleth Deployment Issues Access Issues Kiosks and walk-ins logins for on-campus use Licensing issues reconciling license structures with directory structures system and consortial issues mitigating disintermediation Functional issues handling Shibbed and non-Shibbed resources roll-out strategies entitlements vs attributes what attributes to pass how to structure the attribute name space 14

  15. A Quick Demonstration Shib Demo Site 15

  16. Next steps Convergence with other efforts (PAPI, Permis, A-Select, etc) Shibboleth used as a WebISO solution, the N-Tier problem What is a Federation? How do we define it? Sub-Fed, Fed Clusters, Super Federations Shibboleth the architecture vs Shibboleth the web service Shibboleth the technology vs Club Shib the trust model Federated Digital Rights Management Federated P2P Privacy Management Systems – see http://www.ischool.washington.edu/shibbui/index.html Personal Information Managers – see http://www.brown.edu/cgi- bin/httool.epl 16

  17. Personal Resource Manager 17

  18. Privacy Management Systems 18

  19. Overall Trust Fabric 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Trust Management in Shibboleth Trust Management in Shibboleth and InCommon and InCommon RL

Trust Management in Shibboleth Trust Management in Shibboleth and InCommon and InCommon RL

Trust Management in Shibboleth Trust Management in Shibboleth and InCommon and InCommon RL Bob Morgan University of Washington and Internet2 TERENA TF-EMC2 Florence, Italy March 2007 Trust management in SAML Trust management in SAML

566 views • 9 slides
Design and Implementation of Web Forward Proxy with Shibboleth Authentication Shibboleth

Design and Implementation of Web Forward Proxy with Shibboleth Authentication Shibboleth

Design and Implementation of Web Forward Proxy with Shibboleth Authentication Shibboleth Authentication KOMURA Takaaki Kyoto University SANO Hiroaki Kyoto University Library DEMIZU Noritoshi OCTOPATH corporation MAKIMURA Ken OCTOPATH corporation

415 views • 25 slides
Drupal Shibboleth Authentication Ray Saray Ali Karim Andrea Kapitan Server

Drupal Shibboleth Authentication Ray Saray Ali Karim Andrea Kapitan Server

Drupal Shibboleth Authentication Ray Saray Ali Karim Andrea Kapitan Server Tools AWS Docker Shibboleth Service Resources AWS Elastic Beanstalk - for deploying and scaling applications

315 views • 19 slides
GatorLink Authentication Using Shibboleth Peer 2 Peer August 6, 2010 UF INFORMATION TECHNOLOGY

GatorLink Authentication Using Shibboleth Peer 2 Peer August 6, 2010 UF INFORMATION TECHNOLOGY

GatorLink Authentication Using Shibboleth Peer 2 Peer August 6, 2010 UF INFORMATION TECHNOLOGY Shibboleth Warren Curry Associate Director and Lead, Core IT ES Alan Cook Interim Director, Student Information Systems ES Eli

627 views • 13 slides
The Shibboleth-enabled WebDAV server used in ESUP-Portail and ORI-OAI projects Raymond Bourges

The Shibboleth-enabled WebDAV server used in ESUP-Portail and ORI-OAI projects Raymond Bourges

The Shibboleth-enabled WebDAV server used in ESUP-Portail and ORI-OAI projects Raymond Bourges TERENA EuroCAMP 14 - 15 November 2007 Dubrovnik, Croatia Shibboleth-enabled WebDAV server 1) Context Demo (if it works) 2) Protocols

627 views • 40 slides
Webmail Authentication Using Shibboleth and Virtual Directory Server Stefano Zanmarchi Carlo

Webmail Authentication Using Shibboleth and Virtual Directory Server Stefano Zanmarchi Carlo

Webmail Authentication Using Shibboleth and Virtual Directory Server Stefano Zanmarchi Carlo Manfredi Simone Marzola Giorgio Paolucci University of Padova - ITALY TERENA Eurocamp Athens November 6, 2008 Introduction Our infrustructure:

729 views • 18 slides
Storage task force Shibboleth-features and challenges in PowerFolder Sync & Share 11 FEB

Storage task force Shibboleth-features and challenges in PowerFolder Sync & Share 11 FEB

Storage task force Shibboleth-features and challenges in PowerFolder Sync & Share 11 FEB 2014 Roadmap for today Introduction Use cases / Installations The challenges of Sync & Share Federated AAI Large scale

763 views • 38 slides
Shibboleth Interoperability - Short-Lived Credential Service (SLCS) Valry Tschopp, SWITCH

Shibboleth Interoperability - Short-Lived Credential Service (SLCS) Valry Tschopp, SWITCH

Enabling Grids for E-sciencE - II Shibboleth Interoperability - Short-Lived Credential Service (SLCS) Valry Tschopp, SWITCH JRA1 All Hands Meeting, Abingdon, 9 Nov 2006 www.eu-egee.org INFSO-RI-031688 Presentation Outline Enabling Grids

452 views • 12 slides
EGI-InSPIRE GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies

EGI-InSPIRE GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies

EGI-InSPIRE GridCertLib Shibboleth authentication for X.509 certificates and Grid proxies Sergio Maffioletti <sergio.maffioletti@gc3.uzh.ch> Grid Computing Competence Centre, University of Zurich http://www.gc3.uzh.ch/ GridCertLib EGI

383 views • 26 slides
SLCS and VASH Service Interoperability of Shibboleth and gLite Christoph Witzig, SWITCH

SLCS and VASH Service Interoperability of Shibboleth and gLite Christoph Witzig, SWITCH

Enabling Grids for E-sciencE SLCS and VASH Service Interoperability of Shibboleth and gLite Christoph Witzig, SWITCH (witzig@switch.ch) NREN Grid Workshop Nov 30th, 2007 - Malaga www.eu-egee.org EGEE-II INFSO-RI-031688 EGEE and gLite are

272 views • 25 slides
Identity and Access Management for Federated Resource Sharing: Shibboleth Stories

Identity and Access Management for Federated Resource Sharing: Shibboleth Stories

APAN, Tokyo, 2006 Identity and Access Management for Federated Resource Sharing: Shibboleth Stories http://arch.doit.wisc.edu/keith/apan/ apanShib-060122-01.ppt Keith Hazelton (hazelton@doit.wisc.edu) Sr. IT Architect, University of

430 views • 24 slides
Shibboleth & Grid Integration STFC and University of Oxford (and University of Manchester)

Shibboleth & Grid Integration STFC and University of Oxford (and University of Manchester)

Shibboleth & Grid Integration STFC and University of Oxford (and University of Manchester) Acknowledgements Slides by David Spence ShibGrid (University of Oxford + STFC) SARoNGS (STFC, University of Oxford, University of

652 views • 23 slides
L Project Update New Design Recommendations Overall Project Update January 15, 2019 Project

L Project Update New Design Recommendations Overall Project Update January 15, 2019 Project

L Project Update New Design Recommendations Overall Project Update January 15, 2019 Project Overview Sandy Rehabilitation, Core Capacity Improvement, Additional Projects Brooklyn Union Sq 1 Av Mid River Bedford Av Harrison Pl CBH 62

634 views • 22 slides
Introduction http://iam sect.ncl.ac.uk/ 2 Overview Morning session: History of access control

Introduction http://iam sect.ncl.ac.uk/ 2 Overview Morning session: History of access control

Shibboleth and the IAMSECT Project Introduction http://iam sect.ncl.ac.uk/ 2 Overview Morning session: History of access control Current solutions Problems with current solutions: For users For administrators The solution:

1.51k views • 101 slides
IDN Variant Issues Project (VIP) Project Update and Next

IDN Variant Issues Project (VIP) Project Update and Next

IDN Variant Issues Project (VIP) Project Update and Next Steps ccNSO mee4ng on 13 March 2012 Why this project Long-standing request from a number of IDN user

604 views • 21 slides
RAD Project Update A u g u s t 2 0 2 0 Project Update RAD Pilot Scattered site projects, 124

RAD Project Update A u g u s t 2 0 2 0 Project Update RAD Pilot Scattered site projects, 124

RAD Project Update A u g u s t 2 0 2 0 Project Update RAD Pilot Scattered site projects, 124 units at 6 properties within the City and County of Sacramento 4930 El Paraiso Ave RAD Pilot Closing Project closed on July 17 th !!!!!

475 views • 6 slides
Financial technology & Islamic Finance in North Africa 17/04/2018 Financial technology &

Financial technology & Islamic Finance in North Africa 17/04/2018 Financial technology &

Financial technology & Islamic Finance in North Africa 17/04/2018 Financial technology & Islamic Finance in North Africa p.01 Introduction WHERE IS NORTH AFRICA in (PARTICIPATIVE) FINTECH ? According to a report released by Disrupt

504 views • 17 slides
SES ESSION ON 4 - CONSOR SORTIA IA ROUND UNDTABLE LE AND ND THE E FUTURE URE OF BLOCK

SES ESSION ON 4 - CONSOR SORTIA IA ROUND UNDTABLE LE AND ND THE E FUTURE URE OF BLOCK

SES ESSION ON 4 - CONSOR SORTIA IA ROUND UNDTABLE LE AND ND THE E FUTURE URE OF BLOCK CKCHA CHAIN IN August 21, 2019 SPEAKER KERS Amy y Y. Wan Ad Adrien enne e Valen encia Garc rcia Jay Hull Nita Sanger ger Founder &

745 views • 36 slides
SECTION 5 Distribution channels www.regenesys.co.za INTRODUCTION If we think of marketing as

SECTION 5 Distribution channels www.regenesys.co.za INTRODUCTION If we think of marketing as

SECTION 5 Distribution channels www.regenesys.co.za INTRODUCTION If we think of marketing as a value creating and exchanging process, functioning within an integrated, seamless organisational unit, then: Good distribution are essential to

273 views • 8 slides
Commercial Paper and the Ratings Agencies Reintermediation? The Credit Cliff Christopher G.

Commercial Paper and the Ratings Agencies Reintermediation? The Credit Cliff Christopher G.

Commercial Paper and the Ratings Agencies Introduction Commercial Paper Commercial Paper and the Ratings Agencies Reintermediation? The Credit Cliff Christopher G. Lamoureux February 1, 2012 Commercial Paper Commercial Paper and the

403 views • 7 slides
Chapter 5: Formation of Stars and Planets ASTR/PHYS 1060: The Universe Fall 2018: Chapter 5

Chapter 5: Formation of Stars and Planets ASTR/PHYS 1060: The Universe Fall 2018: Chapter 5

Chapter 5: Formation of Stars and Planets ASTR/PHYS 1060: The Universe Fall 2018: Chapter 5 1 Stars form from the interstellar medium: gas in between stars Pillars of Creation ASTR/PHYS 1060: The Universe Fall 2018: Chapter

1.4k views • 80 slides
UL HPC School 2017[bis] PS1: Getting Started on the UL HPC platform UL High Performance

UL HPC School 2017[bis] PS1: Getting Started on the UL HPC platform UL High Performance

UL HPC School 2017[bis] PS1: Getting Started on the UL HPC platform UL High Performance Computing (HPC) Team C. Parisot University of Luxembourg (UL), Luxembourg http://hpc.uni.lu C. Parisot & UL HPC Team (University of Luxembourg) UL

1.06k views • 65 slides
Frontera: open source, large scale web crawling framework Alexander Sibiryakov, October 1, 2015

Frontera: open source, large scale web crawling framework Alexander Sibiryakov, October 1, 2015

Frontera: open source, large scale web crawling framework Alexander Sibiryakov, October 1, 2015 sibiryakov@scrapinghub.com Sziasztok rsztvev k! Born in Yekaterinburg, RU 5 years at Yandex, search quality department: social and QA

737 views • 30 slides
JUST THE MATHS SLIDES NUMBER 18.3 STATISTICS 3 (Measures of dispersion (or scatter)) by

JUST THE MATHS SLIDES NUMBER 18.3 STATISTICS 3 (Measures of dispersion (or scatter)) by

JUST THE MATHS SLIDES NUMBER 18.3 STATISTICS 3 (Measures of dispersion (or scatter)) by A.J.Hobson 18.3.1 Introduction 18.3.2 The mean deviation 18.3.3 Practical calculation of the mean deviation 18.3.4 The root mean square (or

237 views • 10 slides

More recommend