Your SlideShare is downloading. ×

Knock Knock - Who's There?

4,580

Published on

A presentation given at the SSP conference in June 2007. …

A presentation given at the SSP conference in June 2007.

The talk provides a basic introduction to the "identity problem", federated authentication and the two main systems of relevance to academic publishers and librarians: OpenID and Shibboleth

Published in: Technology, Education
0 Comments
3 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
4,580
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
100
Comments
0
Likes
3
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide
  • Transcript

    • 1. Knock, Knock – Who’s There? Towards Federated Authentication Leigh Dodds Chief Technology Officer, Ingenta Society for Scholarly Publishing San Francisco, June 2007
    • 2. The Identity Problem
    • 3. Too many passwords … Flickr & YouTube & FaceBook & MySpace & LiveJournal & LinkedIn…
    • 4. Identity Silos
    • 5. Vendor Lock-In E.g. Microsoft Passport
    • 6. Single Sign-On can solve these problems Single Sign-On = Federated Authentication
    • 7. Knock, Knock
    • 8. Who’s There?
    • 9. Dude..It’s Me…
    • 10. Who Says?
    • 11. Er…Ask That Guy…
    • 12.  
    • 13. Hey, do you know this guy?
    • 14. Dude, that’s Leigh
    • 15. Respect Mah Authoritah!
    • 16. Oh, OK. Thanks
    • 17. Hi, Leigh…
    • 18. There’s More Than One Way to Implement This
    • 19. User Service Provider Identity Provider
    • 20. Where Things Differ…
      • How do we know who the user’s Identity Provider is?
      • How do the Service Providers and Identity Providers talk to one another?
      • What information does the Identity Provider expose about the User?
      • Can we trust the Identity Provider?
      • How does the Identity Provider authenticate the user?
    • 21.  
    • 22.  
    • 23. OpenId
      • User-centric
      • Simple to implement
      • Growing number of open source toolkits
      • Rapid adoption in web community
      • Does not address trust issue
    • 24. Shibboleth
      • Library-centric
      • Complex to implement
      • Open source software plus commercial options
      • Growing adoption in library and publishing communities
      • Introduces element of trust
    • 25. Conclusions & Further Reading http://del.icio.us/ldodds/tag/ssp-2007-06

    ×