Trust and Identity Infrastructure Services Above the Network Ann Harding, SWITCH/GÉANT Ubuntu. Net. Connect 2014
e-Research in the 21 st Century Source: Professor David De Roure, Professor of e-Research at University of Oxford Connect | Communicate | Collaborate 2
e-Research in the 21 st Century Distributed Data Distributed Users CC BY-NC-ND 4. 0, http: //genomicsandhealth. org/news-events/october-18 th-meeting-presentations Connect | Communicate | Collaborate 3
Are we ready? Connect | Communicate | Collaborate 4
The Flow of Trust Federation Home Organisation User Connect | Communicate | Collaborate Service Provider 5
eduroam Open your laptop and be online help@eduroam. org join@eduroam. org Connect | Communicate | Collaborate 6
eduroam Operating safe wireless access, scalably Connect | Communicate | Collaborate 7
eduroam Open your laptop and be online …anywhere? https: //wiki. terena. org/display/H 2 eduroam/Appendix+D+edur oam+along+with+commercial+hotspot+system Connect | Communicate | Collaborate 8
eduroam Open your laptop and be online …anywhere! https: //wiki. terena. org/display/ H 2 eduroam/How+to+deploy +and+promote+eduroam+for +events Connect | Communicate | Collaborate 9
Building out eduroam – the basics International National Campus • International strategy & business case • Offer Top Level Roaming Service (not essential) • 1 -2 VMs, open source radius • Supporting services – e. g. cat. eduroam. org • National strategy & business case • National roaming infrastructure • 1 -2 VMs, free software • Support and training • Cookbooks available https: //wiki. terena. org/display/H 2 e duroam/How+to+deploy+eduroa m+at+national+level • WIFI deployments • Service Provider deployment • User management • Identity Provider deployment • Cookbooks available https: //wiki. terena. org/display/H 2 e duroam/How+to+deploy+eduroa m+on-site+or+on+campus People and Skills Connect | Communicate | Collaborate 10
edu. GAIN Trust Across Borders edu. GAIN Members Joining edu. GAIN Other federations Connect | Communicate | Collaborate 11
edu. GAIN – a global interfederation service MDS fetches, aggregates and republishes metadata edu. GAIN provides policy framework to build trust Connect | Communicate | Collaborate 12
How do federations build trust? PROCESS TRUST THAT’S IT. Register Member Sign Policy Register ‘Entities’ Verify Data Publish ‘Entities’ Sign Metadata Connect | Communicate | Collaborate 13
Federated Identity Benefits The world of edu. GAIN User Friendly Reduces Work Simplifies Adding Services Provides Current Data Insulation from service atromises Minimize attack surface area Connect | Communicate | Collaborate 14
Federations The Power of Collective Trust Infrastructure to support collective service delivery E-Learning platforms Journals Cloud providers Infrastructure to maintain the privacy and integrity of users and citizens Users are not the product Infrastructure to reach out globally Bring users to global services Bring services to global users Connect | Communicate | Collaborate Federation development contact@refeds. org edu. GAIN & GÉANT edugain-ot@geant. net 15
Building out edu. GAIN/Identity Federation – the basics Strategy, People and Skills National/International Campus • Develop & operate a federation policy • http: //www. terena. org/activities/eurocamp/oct 1 2/slides/Identity%20 Federation%20 Policy%20 Te mplate%20 v 0. 4. pdf • Operate infrastructure • 1 -2 VMs, free software • GÉANT Faa. S model • Support and training • Campus & Service providers • Join edu. GAIN • https: //www. edugain. org/technical/joining_chec klist. php • Connect | Communicate | Collaborate • User management • Identity Provider deployment • Free software, shibboleth, simple. SAMLphp Support/require enabling services • Library Services • Campus services • Health • Journal providers 16
Trust and Identity Voice of one and the voice of many I am because we are. . Ubuntu is not just a philosophy – it is a way of life that defines the relationship of the individual to the community and vice versa … - Connect | Communicate | Collaborate F F Tusubira 17
Скачать презентацию Trust and Identity Infrastructure Services Above the Network
363b72a69d0dffc1e62e1378676a44f3.ppt