• Save
eduGain -  Brook Schofield, TERENA
Upcoming SlideShare
Loading in...5
×
 

eduGain - Brook Schofield, TERENA

on

  • 647 views

The UK Access Management Federation has been successful in supporting the collaboration, access and sharing of services between UK organisations for many years now. To access (or offer) a range ...

The UK Access Management Federation has been successful in supporting the collaboration, access and sharing of services between UK organisations for many years now. To access (or offer) a range services outside the UK or allow the participation of institutions in other countries has required the creation of bilateral agreements or joining multiple federations. This is a solution which doesn't scale and increases the administrative burden of IdPs, SPs and the Federation!

eduGAIN, launched in April 2011, enabling the trustworthy exchange of information between participating organisations via their home identity federation. This presentation will provide a status update on eduGAIN, examples on how institutions and services are supporting interfederation and what lessons have we learnt and need to change to truly provide a Global Authentication INfrastructure.

Statistics

Views

Total Views
647
Views on SlideShare
601
Embed Views
46

Actions

Likes
0
Downloads
0
Comments
0

5 Embeds 46

http://www.eduserv.org.uk 36
http://storify.com 7
http://stgcms.data.eduserv.org.uk 1
http://www.eduservinternet.local 1
http://eduserv.org.uk 1

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • UK Federation has been successful in supporting the collaboration, access and sharing of services between UK organisations for many years now. To access (or offer) a range services outside the UK or allow the participation of institutions in other countries has required the creation of bilateral agreements or joining multiple federations. This is a solution which doesn't scale and increases the administrative burden of IdPs, SPs and the Federation! eduGAIN, launched in April 2011, enabling the trustworthy exchange of information between participating organisations via their home identity federation. This presentation will provide a status update on eduGAIN, examples on how institutions and services are supporting interfederation and what lessons have we learnt and need to change to truly provide a Global Authentication INfrastructure.
  • Image: http://www.tshirtlaundry.com/assets/images/photos/UnderpantsGnome12_2009.jpgPage: http://www.tshirtlaundry.com/The-Underpants-Gnome_p_1441.html
  • 15 participant federations3candidate federations (FÉR, LAIFE, RCTSaai)2 remaining pilot participants (PIONEER, ULAKAAI)8 European federations not participating (Edugate, UKFederation, WAYF, ArnesAAI, ACOnet, /CONFIA/, TAAT) CONFIA + TAAT aren’t candidates – not on the list.8other federations not participating (AAF, Tuakiri, InCommon, GakuNin, CARSI, OMAN KID, INFED, COFRE)18 GN3 Partners without a federation (BG BY CY IL LT LU MD ME MK MT RO RU SK UA)5 more GN3+ Partners without a federation (AL AM AZ GR XK) GN3 Countries:BREN (.bgBelgaria)BASNET (.by Belarus)CyNET (.cy Cyprus)RHnet (.is Iceland)IUCC (.il Israel)LITNET (.lt Lithuania)RESTENA (.lu Luxembourg)RENAM (.md Moldova)MARNet (.mk Macedonia)Uni Malta (.mt Malta)MREN (.me Montenegro)PSNC (.plPoland)RoEduNet (.ro Romania)JSCC (.ru Russia)AMRES (.rs Serbia)SANET (.sk Slovakia)ULAKBIM (.tr Turkey)URAN (.ua Ukraine) GN3+ Federations:ANA (.al ALBANIA)ASNET-AM / NAS RA (.am Armenia)AzRENA (.az Azerbaijan)GRENA (.gr Georgia)KosNET (.xk Kosovo)

eduGain -  Brook Schofield, TERENA eduGain - Brook Schofield, TERENA Presentation Transcript

  • eduGAIN: State of the ∪ Brook Schofield eduGAIN Task Leader, GN3 Project schofield@terena.org 6 November 2012 FAM12, Birmingham, UK Innovation through participation
  • About me… Brook Schofield mailto:schofield@terena.org skype://brookschofield tel:+31651553991 http://terena.org/~schofield linkedin.com/in/brookschofield Australian living in The Netherlands. Grew up on the island state of Tasmania. Task Leader in the GN3 Project for eduGAIN. Innovation through participation
  • IdP IdP SP SP MDS SP SPWhatYour Federation is eduGAIN? 2 Other Federation 3 Downstream eduGAIN Metadata Federation C SP SP eduGAIN SP SP IdP Declaration IdP SP Federation B Constitution Good MDS SP Practice IdP Web SSO SP IdP Metadata IdP SP Federation A Terms of Use Attributes Service Provider Identity Provider educational Global Authentication Infrastructure (for interfederation) Two parts: eduGAIN Policy Framework Upstream Federation MDS (Metadata Distribution Service) Metadata3 1 1 http://eduGAIN.org/ for more information connect •B Innovation through • collaborate communicate participation 3 A IdP IdP SP SP MDS SP SP
  • Project Expectations Pilot in April 2011 Battle Test MDS – It’s just an aggregator! Have people review & sign up to the Policy Production in July 2011 Officially low expectations “We’re the only game in town” Federations MUST want us! GN3 would finish in March 2013 Success!!! Innovation through participation
  • Naïve Roadmap…http://www.tshirtlaundry.com/The-Underpants-Gnome_p_1441.html Innovation through participation
  • eduGAIN status (in numbers)15 participant federations3 joining federations6 European federations not participating AT, DK, EE, IE, TR, SI, UK8 federations not participating AU, CL, CN, IN, JP, NZ, OM, US18 GN3 Partners without a federation (23 GN3+) Innovation through participation
  • eduGAIN status Innovation through participation
  • What are we doing? “Brook’s Service Catalogue”  REFEDS MET http://terena.org/~schofield/servicecatalogue/ WARNING! Browser-site database in use! Then (August 2011) 24 entities; Now 97 entities (64 IdPs) Building Federation Capacity & “Federation-as-a-Service” Goal of getting to 100% adoption In progress now – Infrastructure + Policy training GÉANT Code of Conduct Data protection confuses people Innovation through participation
  • How much sharing do we do?600050004000 Number of Entities3000 SAML2 Entities SPs IdPs20001000 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 Innovation through participation
  • How much sharing do we do? Logarithmic Graph8192409620481024 512 256 128 Number of Entities SAML2 Entities 64 SPs 32 IdPs 16 8 4 2 1 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 Innovation through participation
  • How much sharing do we do? Logarithmic Graph + eduGAIN8192409620481024 512 256 128 Number of Entities SAML2 Entities 64 SPs 32 IdPs 16 8 4 2 1 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 Innovation through participation
  • How much sharing do we do? Extra Federations9080706050 SPs40 IdPs3020100 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 Innovation through participation
  • How much sharing do we do? Extra Federations + eduGAIN9080706050 SPs40 IdPs3020100 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 Innovation through participation
  • Who doesn’t have a federation… 18 GN3 5 GN3+ 23 new feds Innovation through participation
  • GÉANT Code of Conduct Easy • Least PrivilegeComplex • Bilateral ContractScales • GÉANT Code of ConductTrouble • Ignore/break the law Innovation through participation
  • Where is UK Access ManagementFederation? When will the UK join eduGAIN? It’s nothing personal We’re working on it We aren’t a monopoly eduGAIN made some mistakes (policy revision) There’s more value now… Innovation through participation
  • linkedin.com/in/brookschofield facebook.com/brook.schofield skype://brookschofield schofield@terena.org @BrookSchofield +31651553991Slide 18