Trusted Collaboration and Identity Management Solutions for Research and Education

openid connect and r e 2019 n.w
1 / 16
Embed
Share

Explore how the OpenID Foundation is bridging the gap between different trust practices in the R&E sector and delivering trusted collaboration at scale. Learn about the benefits of collaborating with OIDF and the scope of their working group's efforts.

  • Collaboration
  • Identity Management
  • Research
  • Education
  • OIDF
rayaanacharya
artz_ysa Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. OpenID Connect and R&E 2019 Chris Phillips | Technical Architect, Canadian Access Federation | TNC 2019 | Tallinn canarie.ca | @canarie_inc

  2. Challenge: Scaling trusted collaboration regardless of technology canarie.ca | @canarie_inc 2

  3. Delivering Trusted Collaboration at Scale R&E Trust by multi-lateral practices Rich R&E data dictionary Built primarily for and by R&E canarie.ca | @canarie_inc 3

  4. Understanding the Gap R&E Non R&E Trust by multi-lateral practices Rich R&E data dictionary Built primarily for and by R&E Trust by bi-lateral practices Minimal data dictionary Built primarily for and by business canarie.ca | @canarie_inc 4

  5. Bridging the Gap >Work ongoing on many fronts >OpenID Foundation(OIDF) are overseers of OpenID Connect (OIDC) canarie.ca | @canarie_inc 5

  6. Benefits of Collaborating with OIDF >Governance aligns with R&E >Well documented & similar merit driven processes >Already formally recognized as a working group Chair: Davide Vaghetti (GARR/G ANT) Home: https://openid.net/wg/rande/ canarie.ca | @canarie_inc 6

  7. OIDC R&E Profile Context Relies on & interops with Implementers Draft: R&E Profile Relies on & interops with More depth on process: https://openid.net/wg/about canarie.ca | @canarie_inc 7

  8. Scope of OIDF Working Group >Develop profiles with specific requirements for: Security Multi-lateral trust Interoperability in the R&E sector >Specific set of claims and scopes related to R&E >Extensions to OpenID Connect entity's metadata Charter: https://github.com/daserzw/oidc-edu-wg/blob/master/charter.md canarie.ca | @canarie_inc 8

  9. Path to Success >1st class multi-lateral trust support in OIDC Ubiquitously supported by platforms Operational capabilities on premises, by vendors, & fed-ops Training offerings to ramp community knowledge >Regardless of protocol Interoperability of multi-lateral inter-federation trusts Predictable attribute exchange Parity of trustworthiness of endpoints >R&E profile must work with existing OIDC libraries >Stretch goal: User Experience Login once, user is able to access SAML or OIDC resources transparently and simultaneously canarie.ca | @canarie_inc 9

  10. What is R&E doing right now? >Collecting use cases for the OIDF R&E WG >Implementing OIDC and OAuth2 endpoints in: Shibboleth OIDC Extension Central Authentication Service (CAS) Active Directory Federation Services (AD FS) Server2016 and higher SATOSA >Working on guidance Internet2 OIDC-OAuth WG >Implementing proxying now CILogon Authentication and Authorisation for Research Collaborations (AARC) Blueprint canarie.ca | @canarie_inc 10

  11. Are Proxies enough? >No, they are not. Proxying is short term gain with long term pain Offers temporary relief while we do the core work in the spec canarie.ca | @canarie_inc 11

  12. Why? >Proxies are not simple nor are they free >Cloud will eclipse us: In person power In ubiquity of deployment Ability to tightly integrate to cloud identity stores a good thing! canarie.ca | @canarie_inc 12

  13. Do Nothing? >Only assures that: Our needs will never be met We will always have to fix things for our world view Cost and difficulty of delivering on core mission increase Diminished relevancy and ability to serve the Researcher canarie.ca | @canarie_inc 13

  14. Call to Action: Get Involved! > Where? OIDF WG list is main work area REFEDS OIDCre WG on ramp/incubation area for R&E items > Passive participation Join OIDF WG list and OIDCre and observe > Active participation Join OIDF formally and be a voter (strongly encouraged) > Further steps: Start learning more about OIDC and OAuth2 Get involved on activities or projects Experiment and implement Shib OIDC plugin in your sandbox Participate in prototyping and pilots canarie.ca | @canarie_inc 14

  15. Questions? canarie.ca | @canarie_inc 15

  16. canarie.ca |@canarie_inc

Related


Chorage Misa

Chorage Misa

b2b
Top Coffee Shop in Chandler Your New Favorite Spot

Top Coffee Shop in Chandler Your New Favorite Spot

Coffee
Are you looking for Coffee in Lake Shore? ry store in Lake Shore?

Are you looking for Coffee in Lake Shore? ry store in Lake Shore?

Cathleen
Get the Best Coffee Catering in Alexandra

Get the Best Coffee Catering in Alexandra

robert1
Get the Best Gelato in Chinatown

Get the Best Gelato in Chinatown

robert1
Best Indian Restaurant In Orlando FL

Best Indian Restaurant In Orlando FL

Elisa1
Exploring Europe on a Student Budget

Exploring Europe on a Student Budget

europe
Finland's Recovery and Resilience Plan for Europe: Overview of Key Initiatives

Finland's Recovery and Resilience Plan for Europe: Overview of Key Initiatives

ayda
Best Breakfast in Mount Austin

Best Breakfast in Mount Austin

jack4
Scalable Task Pool with Adjustable Fairness

Scalable Task Pool with Adjustable Fairness

boone
Best Brunch in North Adelaide

Best Brunch in North Adelaide

jack4
Enhancing Effectiveness and User Satisfaction through Encounter-Based Services: A Case Study in Vantaa

Enhancing Effectiveness and User Satisfaction through Encounter-Based Services: A Case Study in Vantaa

race_ler
Overview of Connect America Fund Phase II Auction

Overview of Connect America Fund Phase II Auction

jhal_552
Surface Modification of Implants Using Calcium Silicate Coating

Surface Modification of Implants Using Calcium Silicate Coating

zevi_447
Initiation Process for Classification Action Form (CAF) in Workday Workflow

Initiation Process for Classification Action Form (CAF) in Workday Workflow

hlava
Analysis of WLAN Sensing Sequence Design Using Ambiguity Function and Range-Doppler Map

Analysis of WLAN Sensing Sequence Design Using Ambiguity Function and Range-Doppler Map

kestner_a
National Maternity and Perinatal Audit (NMPA) Data Flow Summary

National Maternity and Perinatal Audit (NMPA) Data Flow Summary

araft
Rural Broadband Auctions and Funding Overview

Rural Broadband Auctions and Funding Overview

kila_564
Defense Modeling and Simulation Coordination Office Overview

Defense Modeling and Simulation Coordination Office Overview

pau_489
Parent Caf Program - Helping Parents Support Their Children

Parent Caf Program - Helping Parents Support Their Children

rux_ynn
ETHICS.Caf: Rethinking Education in the TVET Sector Amid COVID-19 Challenges

ETHICS.Caf: Rethinking Education in the TVET Sector Amid COVID-19 Challenges

eace550

More Related Content