Project Shibboleth: Implementing Federated Identity Management

Similar documents
2017 EDITORIAL CALENDAR

Digital Marketing. Opportunities to reach Corporate Event Planners & Booking Agents

SCP-CDL Acq SFX Workflow for CDL licensed ejournals

RECOMMENDED CITATION: Pew Research Center, October, 2015, On Immigration Policy, Wider Partisan Divide Over Border Fence Than Path to Legal Status

FOR RELEASE AUGUST 4, 2017

Citing Our Electronic Databases in MLA Baxter Library Common Elements in all Database Citations:

Sunday - 6th Grade Weekly Schedule '14-'15 Date Sessions to Cover for the Week Special Notes Sept. 14 Session 1

Welcome to All Things Project and Portfolio Management Part 2

Apr 13 Partisan Dem Dem Ind Ind Gop Gop

Update on EAST Policies

OFFICE OF THE ASSOCIATE CIRCUIT JUDGES Thirteenth Judicial Circuit Court Boone County Courthouse 705 E. Walnut St. Columbia, MO 65201

NUMBERS, FACTS AND TRENDS SHAPING THE WORLD FOR RELEASE AUGUST 25, 2014 FOR FURTHER INFORMATION ON THIS REPORT:

Tariff 9900: OHD Percentage Based Fuel Cost Adjustment Historical Schedule ( )

Pol 392: Democratic Theory

5 USC NB: This unofficial compilation of the U.S. Code is current as of Jan. 4, 2012 (see

Introduction to American Government POLS 1101, Fall 2016 MW 1:25-2:15, Instr. Plaza S306

Delivering Articles Using OpenURL. Ann Apps MIMAS, The University of Manchester

Overview. Strategic Imperatives. Our Organization. Finance and Budget. Path to Victory

1 PEW RESEARCH CENTER

Results of L Année philologique online OpenURL Quality Investigation

OFFICE OF THE ASSOCIATE CIRCUIT JUDGES Thirteenth Judicial Circuit Court Boone County Courthouse 705 E. Walnut St. Columbia, MO 65201

Political Environment and Congressional Breakdown Charts. November 7, 2017

Before They Were States. Finding and Using Territorial Records by Jack Butler

American Psychological Association (APA) PsycINFO /ClinPSYC License (Vendor Access)

Using Technology to Improve Jury Service 39

RECOMMENDED CITATION: Pew Research Center, May, 2015, Negative Views of New Congress Cross Party Lines

RECOMMENDED CITATION: Pew Research Center, February, 2017, In Trump Era, What Partisans Want From Their Congressional Leaders

SCHOOL of LAW. Website Redesign Town Hall

RECOMMENDED CITATION: Pew Research Center, May, 2017, Public Trust in Government Remains Near Historic Lows as Partisan Attitudes Shift

1 PEW RESEARCH CENTER

PEW RESEARCH CENTER FOR THE PEOPLE & THE PRESS/WASHINGTON POST MAY OSAMA BIN LADEN SURVEY FINAL TOPLINE May 2, 2011 N=654

FOR RELEASE: TUESDAY, FEBRUARY 17 AT 12:30 PM

CRS Report for Congress

E-gate case study: The German EasyPASS Project

Government Digital Payments. Connected 2016

PEW RESEARCH CENTER FOR THE PEOPLE & THE PRESS JUNE 2013 POLITICAL SURVEY FINAL TOPLINE June 12-16, 2013 N=1,512

Political Environment and Congressional Breakdown Charts. December 12, 2017

CRS Report for Congress

RECOMMENDED CITATION: Pew Research Center, May, 2015, Republicans Early Views of GOP Field More Positive than in 2012, 2008 Campaigns

FOR RELEASE October 1, 2018

RECOMMENDED CITATION: Pew Research Center, May, 2015, Free Trade Agreements Seen as Good for U.S., But Concerns Persist

August 8, 2018 POTUS RADIO. Clifford Young. President, Ipsos Public Affairs Ipsos 1

RECOMMENDED CITATION: Pew Research Center, February, 2015, Growing Support for Campaign Against ISIS - and Possible Use of U.S.

FOR RELEASE NOVEMBER 07, 2017

RECOMMENDED CITATION: Pew Research Center, February, 2015, Democrats Have More Positive Image, But GOP Runs Even or Ahead on Key Issues

Frequently Asked Questions for Participating Members and Organizations

1 PEW RESEARCH CENTER

Frequently Asked Questions for Participating Members and Organizations

Case 3:15-cv BTM-BLM Document 6 Filed 02/16/16 Page 1 of 7

Kevin Kolben Assistant Professor Rutgers Business School

AREAS OF SPECIALIZATION Political sociology, methods & statistics, gender, and mass communications

UNITED STATES DISTRICT COURT SOUTHERN DISTRICT OF CALIFORNIA. Plaintiff, Defendant.

28 USC 152. NB: This unofficial compilation of the U.S. Code is current as of Jan. 4, 2012 (see

Cairns Airport financial year passenger totals.

UNITED STATES DISTRICT COURT FOR THE EASTERN DISTRICT OF WISCONSIN

Walter P. Reuther Library Wayne State University Detroit, MI

Case 1:04-cv RJL-RWR Document 81-2 Filed 07/14/2006 Page 1 of 286 UNITED STATES DISTRICT COURT FOR THE DISTRICT OF COLUMBIA

Campaign Finance E-Filing Systems by State WHAT IS REQUIRED? WHO MUST E-FILE? Candidates (Annually, Monthly, Weekly, Daily).

Most opponents reject hearings no matter whom Obama nominates

The Library of Congress CIP Program: How It Works, What s New, and How to Get Involved

CRRA Catholic Newspapers Program (CNP)

CRS Report for Congress

BOSTON UNIVERSITY. CHINA: FROM REVOLUTION TO REFORM CAS IR 370/PO 369 Semester I 2008/2009 Mon., Weds., Fri.: 10:00-11:00 CAS 116

Historical unit prices - Super - Australian Shares

Paper 10 Tel: Entered: February 9, 2016 UNITED STATES PATENT AND TRADEMARK OFFICE

FOR RELEASE DECEMBER 14, 2017

Opposition to Syrian Airstrikes Surges

FOR RELEASE MAY 10, 2018

Growing share of public says there is too little focus on race issues

PEW RESEARCH CENTER FOR THE PEOPLE & THE PRESS MAY 1999 NEWS INTEREST INDEX FINAL TOPLINE May 12-16, 1999 N=1,179

QUALITY. MANAGEMENT SYSTEMS 2015/2016 SABS Training Academy

THE UAW-AMC DEPARTMENT COLLECTION. Papers, (Predominantly ) 5 1/4 linear feet

LMIS Meeting Minutes. September 15, 2015

ASK ALL: Q.1 Do you use any of the following social networking sites? [RANDOMIZE A-D FOLLOWED BY E-K, KEEP L LAST] Yes No No answer

SYLLABUS Immigration Law (5389) University of Houston Law Center Professor: Geoffrey Hoffman Fall 2018 Aug. 20-Nov. 26

2000 H Street, NW (202)

Academic Women's Association fonds

INDIANA NETWORK FOR HIGHER EDUCATION MINISTRIES RECORDS,

GAO HOMELAND SECURITY. Key US-VISIT Components at Varying Stages of Completion, but Integrated and Reliable Schedule Needed

AMERICAN GOVERNMENT & POLITICS POL Fall 2015 MWF 11:30-12:20 p.m. 103 GRISSOM HALL

Most are skeptical Trump will act to block future Russian meddling

PEW RESEARCH CENTER. FOR RELEASE January 16, 2019 FOR MEDIA OR OTHER INQUIRIES:

NEWS RELEASE. Political Sites Gain, But Major News Sites Still Dominant MODEST INCREASE IN INTERNET USE FOR CAMPAIGN 2002

Digital research data in the Sigma2 prospective

PUAD 540 PUBLIC POLICY PROCESS Founders Hall 477 Fall 2017

The Five Colleges of Ohio Committee Guidelines and Charges. 4 April 2007

Case 1:10-cv Document 1 Filed 02/09/10 Page 1 of 5 IN THE UNITED STATES DISTRICT COURT FOR THE NORTHERN DISTRICT OF ILLINOIS

Scytl Secure Electronic Voting

PEW RESEARCH CENTER FOR THE PEOPLE AND THE PRESS NEWS SAVVY PROJECT FINAL TOPLINE February 1-13, 2007 N= 1502

WH&LA 2016 TARGETED MARKETING

1 PEW RESEARCH CENTER

2000 H Street, NW (202)

Political Environment and Congressional Breakdown Charts. August 23, 2017

the Poor and the Middle Class

Do you consider FEIN's to be public or private information? Do you consider phone numbers to be private information?

Maine Shared Collections Strategy's Interim Performance Report Year 3

Thursday, May 4, :00 AM AP Government Exam

Supreme Court Approval Rating Drops to 25-Year Low

PEW RESEARCH CENTER FOR THE PEOPLE & THE PRESS JULY 2000 NEWS INTEREST INDEX FINAL TOPLINE July 19-23, 2000 N=1,204

New LIFESTYLE Edition

Transcription:

Project Shibboleth: Implementing Federated Identity Management Keith Hazelton University of Wisconsin-Madison Internet2 MACE member With thanks to Michael Gettes of Duke University (gettes@duke.edu)

Shibboleth A word which was made the criterion by which to distinguish the Ephraimites from the Gileadites. The Ephraimites, not being able to pronounce sh, called the word sibboleth. See --Judges xii. Hence, the criterion, test, or watchword of a party; a party cry or pet phrase. - Webster's Revised Unabridged Dictionary (1913): http://shibboleth.internet2.edu Tokyo University, Sept. 26, 2003 1

Establishing a User Context Tokyo University, Sept. 26, 2003 2

Getting Attributes and Determining Access Tokyo University, Sept. 26, 2003 3

I don t know you. Please authenticate yourself OK, I redirect your request now to the Handle Service of your home org. Shibboleth AA Process 5 WAYF 4 Please tell me where you come from 3 2 I don t know you. Not even which home org you are from. I redirect your request to the WAYF Users Home Org User DB OK, I know you now. I redirect your request to the target, together with a handle HS AA 6 Credentials 7 Attributes Let s pass over the attributes the user has allowed me to release Handle Resource Owner Tokyo University, Sept. 26, 2003 4 9 1 8 Handle 10 I don t know the attributes of this user. Let s ask the Attribute Authority SHIRE Handle SHAR Attributes Resource Manager Resource OK, based on the attributes, I grant access to the resource

Shibboleth Architecture Tokyo University, Sept. 26, 2003 5

Milestones Project formation - Feb 2000 Stone Soup Process - began late summer 2000 with bi-weekly calls to develop scenario, requirements and architecture. Linkages to SAML established Dec 2000 Architecture and protocol completion - Aug 2001 Design - Oct 2001 Alpha-1 release April 24, 2002 OpenSAML release July 15, 2002 v0.7 Shibboleth released Nov 25, 2002 v1.0 July 2003 v1.1 August 2003 Tokyo University, Sept. 26, 2003 6

Course Management (e-learning) Early Adopters WebCT Webassign Blackboard (Demonstrated April, 2003) OKI Tokyo University, Sept. 26, 2003 7

The Library Pilots Explore and evaluate the utility of the Shibboleth model using attributes to control access to licensed resources Identify problems and issues with this approach How well do existing licenses map to attributes? Library walk-in customers Identify and address Shib deployment issues for campuses AND for vendors Explore new possibilities, including role-based access controls Completed in August, 2003. Virtually all participants moving on to deploy production systems Tokyo University, Sept. 26, 2003 8

Campus Participants Carnegie Mellon Columbia Dartmouth Georgetown London School of Economics New York Unv. Ohio State Penn State U. Colorado U. Michigan U. Washington U. Wisconsin - Madison UCOP (U. California System) U.Texas Health Science Center at Houston Others coming on Tokyo University, Sept. 26, 2003 9

Vendor Participants EBSCO ~ Elsevier OCLC Sfx (Ex libris) JSTOR McGraw Hill ebooks Innovative (III) Consortial efforts: WRLC, Athens, Tokyo University, Sept. 26, 2003 10

Shibboleth Deployment Issues Access Issues Kiosks and walk-ins logins for on-campus use Licensing issues reconciling license structures with directory structures system and consortial issues mitigating disintermediation Functional issues handling Shibbed and non-shibbed resources roll-out strategies entitlements vs attributes what attributes to pass how to structure the attribute name space Tokyo University, Sept. 26, 2003 11

Next steps Convergence with other efforts (PAPI, Permis, A-Select, etc) Shibboleth used as a WebISO solution, the N-Tier problem What is a Federation? How do we define it? Sub-Fed, Fed Clusters, Super Federations Shibboleth the architecture vs Shibboleth the web service Shibboleth the technology vs InCommon the trust model Federated Digital Rights Management Federated P2P Privacy Management Systems see http://www.ischool.washington.edu/shibbui/index.html Personal Information Managers see http://www.brown.edu/cgi-bin/httool.epl Tokyo University, Sept. 26, 2003 12

Personal Resource Manager Tokyo University, Sept. 26, 2003 13

Privacy Management Systems Tokyo University, Sept. 26, 2003 14

Swiss Education and Research Network Shibboleth Demo http://www.switch.ch/aai/demo/ http://bbcommerce.blackboard.com/we bapps/portal/frameset.jsp Tokyo University, Sept. 26, 2003 15

Lionshare: Academic P2P and Shibboleth http://p2p.libraries.psu.edu/ Tokyo University, Sept. 26, 2003 16

Shibboleth Documentation http://shibboleth.internet2.edu/ #Documentation Shib source cvs (web interface) http://marsalis.internet2.edu/cgibin/viewcvs.cgi/#dirlist Tokyo University, Sept. 26, 2003 17

2024 © lawsdocbox.com Privacy Policy | Terms of Service | Feedback