Connecting People to Resources Trust Federations in the UK Nicole Harris Programme Manager
UK Education and Access Management - Past <ul><li>UK first country to have a national access management system for educati...
UK Education and Access Management – Future Requirements <ul><li>Research showed that institutions had a clear demand for ...
UK Access Management Federation - Now
UK Education and Identity Management <ul><li>Devolved authentication means that identity management must become a priority...
Trust Federations in the UK Hot Topics:  Open Access, Social Software, eLearning
Hot Topic: Open Access <ul><li>Open Access Repositories increasingly common, but ‘open’ does not mean that access control ...
Sharing Open Access Repositories Identity Provider Identity Provider Identity Provider Service Provider (Repository) Servi...
Hot Topic: Open Access <ul><li>Open Access Repositories increasingly common, but ‘open’ does not mean that access control ...
Hot Topic: Social Software
Social Software and Identity
Hot Topic: eLearning
Who does this impact?  SCH01 LIF02 UNI07 SEC08 DES11 UNI12 GAM13 LIF15 INC17 COM19 DES21 LIF22 TOO25 UNI26 GEN27 SEC29 DES...
The International Perspective <ul><li>Working to same standards and specifications means we can all work together! </li></...
Key Messages <ul><li>Access Management is not about restricting, it is about enabling access by connecting the right peopl...
Contact Details <ul><li>Nicole Harris, Programme Manager </li></ul><ul><li>[email_address] </li></ul><ul><li>07734 058308 ...
Upcoming SlideShare
Loading in …5
×

Online Educa: JISC Access and Identity Management

992 views

Published on

a presentation given at Online Educa in 2006 looking at access and identity management in the JISC environment

Published in: Business, Technology
  • Be the first to comment

  • Be the first to like this

Online Educa: JISC Access and Identity Management

  1. 1. Connecting People to Resources Trust Federations in the UK Nicole Harris Programme Manager
  2. 2. UK Education and Access Management - Past <ul><li>UK first country to have a national access management system for education – Athens. </li></ul><ul><li>Centralised system (large, replicated database) responsible for both: </li></ul><ul><ul><li>Authentication: determining that a person is who they say they are; </li></ul></ul><ul><ul><li>Authorisation: determining what that person is entitled to access. </li></ul></ul><ul><li>Used by majority of Universities and Colleges in the UK. </li></ul><ul><li>Connects these institutions to a large number of third party resources such as e-journals, databases etc. </li></ul><ul><li>Administration devolved back to institution who manage users and resources within the database via the ‘Athens Administrator’ interface. </li></ul>
  3. 3. UK Education and Access Management – Future Requirements <ul><li>Research showed that institutions had a clear demand for a more encompassing system: </li></ul><ul><ul><li>Internal (intra-institutional) applications (mostly through SSO system) </li></ul></ul><ul><ul><li>Management of access to third-party digital library-type resources (as now) </li></ul></ul><ul><ul><li>Inter-institutional use – stable, long-term resource sharing between defined groups (e.g. shared e-learning scenarios) </li></ul></ul><ul><ul><li>Inter-institutional use – ad hoc collaborations, potentially dynamic in nature (virtual organisations or VOs) </li></ul></ul><ul><li>Administration happening in two places: institutional directories and Athens Administrator interface. </li></ul><ul><li>Agreed international standards and specifications emerged (SAML, eduPerson, WS-Security). </li></ul>
  4. 4. UK Access Management Federation - Now
  5. 5. UK Education and Identity Management <ul><li>Devolved authentication means that identity management must become a priority. You must know who all of your users are. </li></ul><ul><li>Increasingly complex users groups within institutions that need to be managed: visiting professors, visiting students, access entitlements for doctors, shared courses, commercial collaborations. </li></ul><ul><li>Increasing need to manage identities across institutions: lifelong learning and ePortfolios. </li></ul><ul><li>Increasing obligation to protect your users: Data protection act. </li></ul><ul><li>Increasing requirements to protect your users: identity more and more online. </li></ul>
  6. 6. Trust Federations in the UK Hot Topics: Open Access, Social Software, eLearning
  7. 7. Hot Topic: Open Access <ul><li>Open Access Repositories increasingly common, but ‘open’ does not mean that access control is not required. Repositories often about ‘self-archiving’ rather than ‘open access’ and are restricted to institutional members. </li></ul><ul><li>ShibboLEAP project: consortia of seven London Universities who used federated access management to allow access to each others institutional repositories (D-Space and ePrints). </li></ul>
  8. 8. Sharing Open Access Repositories Identity Provider Identity Provider Identity Provider Service Provider (Repository) Service Provider (Repository) Service Provider (Repository)
  9. 9. Hot Topic: Open Access <ul><li>Open Access Repositories increasingly common, but ‘open’ does not mean that access control is not required. Repositories often about ‘self-archiving’ rather than ‘open access’ and are restricted to institutional members. </li></ul><ul><li>ShibboLEAP project: consortia of seven London Universities who used federated access management to allow access to each others institutional repositories (D-Space and ePrints). </li></ul><ul><li>Access control also means you can control who can write, read, comment, annotate etc. by giving people different permissions. It is also permits versions to be ‘locked’. This allows trust and verification of final versions. </li></ul><ul><li>Trusted, verified versions are important for the UK Research Assessment Exercise – hope that this approach will encourage assessors to accept institutional repositories as a verified resource. </li></ul>
  10. 10. Hot Topic: Social Software
  11. 11. Social Software and Identity
  12. 12. Hot Topic: eLearning
  13. 13. Who does this impact? SCH01 LIF02 UNI07 SEC08 DES11 UNI12 GAM13 LIF15 INC17 COM19 DES21 LIF22 TOO25 UNI26 GEN27 SEC29 DES30 DES32
  14. 14. The International Perspective <ul><li>Working to same standards and specifications means we can all work together! </li></ul><ul><ul><li>New opportunities for international collaboration – like the London School of Economics and Columbia University shared e-Learning resource. </li></ul></ul><ul><ul><li>New business opportunities for publishers and service providers. </li></ul></ul><ul><ul><li>Shared understand through initiatives like the e-Framework. </li></ul></ul><ul><li>Federated access management is being adopting in a wealth of countries: US, Netherlands, UK, Spain, Switzerland, Norway, Sweden, France, Germany, Australia, New Zealand, Canada. </li></ul><ul><li>Economies of scale through co-operation, partnership and communication. </li></ul><ul><li>International working groups having a strong impact: </li></ul><ul><ul><li>TERENA European Middleware Co-ordination and Communication (TF-EMC2). </li></ul></ul><ul><ul><li>‘ Shib-enable’ groups led by Internet2. </li></ul></ul><ul><ul><li>Refeds group looking at federation peering. </li></ul></ul>
  15. 15. Key Messages <ul><li>Access Management is not about restricting, it is about enabling access by connecting the right people to the right resources. </li></ul><ul><li>Federated access management opens up new opportunities that meet strategic drivers that we all face. </li></ul><ul><li>By devolving responsibility for authentication to an institution, an institution must know who all its users are. </li></ul><ul><li>By knowing who your users are, you can better protect, support and help them through their educational journey. </li></ul>
  16. 16. Contact Details <ul><li>Nicole Harris, Programme Manager </li></ul><ul><li>[email_address] </li></ul><ul><li>07734 058308 </li></ul><ul><li>www.jisc.ac.uk </li></ul>

×