Shib and InCommon Topics First principles Shib 2.0 Migration - - PowerPoint PPT Presentation

shib and incommon
SMART_READER_LITE
LIVE PREVIEW

Shib and InCommon Topics First principles Shib 2.0 Migration - - PowerPoint PPT Presentation

Oct 11, 2022 441 likes •563 views

Shib and InCommon Topics First principles Shib 2.0 Migration strategies InCommon Future of Shib Presenters Name 2000 First Principles We serve the R&E enterprise and scholar Externalize authentication

slide-1
SLIDE 1

Shib and InCommon

slide-2
SLIDE 2

Presenter’s Name

Topics

  • First principles
  • Shib 2.0
  • Migration strategies
  • InCommon
  • Future of Shib
slide-3
SLIDE 3

Presenter’s Name

2000 First Principles

  • We serve the R&E enterprise and scholar
  • Externalize authentication from the

application

  • While at it, try to use rich external attributes

within the application for privacy and security.

slide-4
SLIDE 4

Presenter’s Name

2008 First Principles

  • We serve the R&E enterprise and scholar
  • Externalize authentication from the

application; internalize the risk-assessment.

  • While at it, try to use rich external attributes

within the application for privacy, security, secrecy, scaling, ease of use, efficiency, etc.

slide-5
SLIDE 5

Presenter’s Name

Shibboleth 2.0

  • RC1 now out the door, and being heavily tested.

Final release soon.

  • Product of the core Shib team, now spread

across the US, Switzerland and the UK.

  • “Shib 2.0 will interoperate with other SAML 2.0

products better than they interoperate with each

  • ther.”
  • OpenSAML 2.0 already heavily used by

Verisign, Tata, etc.

slide-6
SLIDE 6

Presenter’s Name

Shib and OpenId

  • We are discussing Shib 2.0+ containing an OpenId

provider

  • Shib 2.0++ will contain more clever and useful

integration of federated and ad hoc identity management

  • The OpenId platform within Shib will have a warning

reminding applications to use caution in their consumption of external identities.

slide-7
SLIDE 7

Presenter’s Name

Missing pieces

  • End-user attribute release management
  • InfoCard?
  • Kludges
  • Dynamic metadata (not dynamic trust)
  • N-tier tokens
  • Java SP
  • Quick start package
slide-8
SLIDE 8

Presenter’s Name

InCommon

  • Approximately 75 members and growing steadily
  • On third generation of Steering Committee
  • Growing steadily but strangely
  • National Institute of Health
  • Student service providers
  • Energy Labs
  • Odd overlaps with state federations, etc.
  • Fine print continues to be challenging
slide-9
SLIDE 9

Presenter’s Name

InCommon Next Steps

  • Pending new members
  • MS (+Mr Bill !), Google, student service companies, medical

consortia

  • Libraries, finally
  • InCommon Silver
  • LOA-2,
  • Not hard but lots of thought upfront
  • Rich new set of applications from NIH
  • Leveraged federations
  • Local, state, etc., single-purpose and multi-purpose
  • Dynamic metadata
slide-10
SLIDE 10

Presenter’s Name

The Future of Shib

  • 2.0 is a relative plateau
  • Service industries springing up
  • Shib is important enough that it needs

some independence from Internet2

slide-11
SLIDE 11

Presenter’s Name

Setting the direction

  • Options:
  • Apache, Kuali/Rice, Mellon, Red Hat,

independent foundation, source forge, EDUCAUSE

  • Others?
  • Who decides?
  • Who executes?