Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Esmeralda Camara Presentation / CloudViews.Org - Cloud Computing Conference 2009


Published on

Published in: Technology, Business
  • Be the first to comment

Esmeralda Camara Presentation / CloudViews.Org - Cloud Computing Conference 2009

  1. 1. RCTSaai Federation Esmeralda Câmara May 29th 2009
  2. 2. Summary <ul><li>RCTS - What is it ? </li></ul><ul><li>AAI - Why do we need it ? </li></ul><ul><li>AAI - How it works </li></ul><ul><li>AAI - Components </li></ul><ul><li>Federation made AAI possible </li></ul><ul><li>RCTSaai Federation </li></ul><ul><ul><li>History </li></ul></ul><ul><ul><li>Current Status </li></ul></ul><ul><ul><li>Roadmap </li></ul></ul>
  3. 3. RCTS – What is it? <ul><li>RCTS – Portuguese Research and Education Network managed by FCCN </li></ul><ul><li>FCCN - Foundation for National Scientific Computing </li></ul>
  4. 4. AAI - Why do we need it ? <ul><li>AAI – Authentication and Authorization Infrastructure </li></ul><ul><li>Why do we need AAI ? </li></ul>Solution to the problem of inter-organizational authentication and authorization Implementation of an AAI
  5. 5. AAI - How it works <ul><li>Step 1 - Authentication </li></ul><ul><ul><li>User always authenticate with their home organization </li></ul></ul><ul><li>Step 2 - Access Request of an authenticated user </li></ul><ul><li>Step 3 - Authorization Attribute Delivery </li></ul>
  6. 6. AAI - Components <ul><li>IdP - Identity Provider </li></ul><ul><li>Authenticates a user and sends the users attributes for the Service Provider </li></ul><ul><li>SP - Service Provider </li></ul><ul><li>Protects the resource and makes </li></ul><ul><li>the access control decision based </li></ul><ul><li>on the user’s attributes received </li></ul><ul><li>from the Identity Provider </li></ul><ul><li>WAYF – Where Are You From ? </li></ul><ul><li>Identify a user’s home institution and redirect the user to the home institution’s authentication system </li></ul>
  7. 7. Federation made AAI possible Federated access management is made possible by institutions and service providers agreeing to trust the information that they pass to each other and establishing rules and policies to make sure that this trust can be managed. <ul><li>RCTSaai is the Portuguese Federation for higher education coordinated and operated by FCCN </li></ul><ul><ul><li>» Germany (DFN-AAI) </li></ul></ul><ul><ul><li>» Greece (HEAL-Link) </li></ul></ul><ul><ul><li>» Luxembourg (Restena) </li></ul></ul><ul><ul><li>» New Zealand (AAF) </li></ul></ul><ul><ul><li>» Norway (FEIDE) </li></ul></ul><ul><ul><li>» Spain (RedIRIS) </li></ul></ul><ul><ul><li>» Sweden (SWAMID) </li></ul></ul><ul><ul><li>» Switzerland (SWITCHaai) </li></ul></ul><ul><ul><li>» The Netherlands (SURFnet) </li></ul></ul><ul><ul><li>» United Kingdom (UK Access Fed.) </li></ul></ul><ul><ul><li>» United States (InCommon) </li></ul></ul><ul><li>National Federations </li></ul>
  8. 8. RCTSaai <ul><li>RCTSaai Federation - How did we started ? </li></ul>
  9. 9. RCTSaai - History <ul><li>Proof of Concept </li></ul><ul><li>Documentation </li></ul><ul><li>Know How </li></ul><ul><li>FCCN and higher education institution were involved </li></ul><ul><li>Successful integration with Shibboleth (Internet2) and SimpleSamlPHP (UNINETT) </li></ul><ul><li>Moodle - Pilot Test federated service </li></ul><ul><li>( already have support for Shibboleth implemented) </li></ul>
  10. 10. RCTSaai - Status <ul><li>Technical Services </li></ul><ul><ul><li>Identity Provider Deployment </li></ul></ul><ul><ul><li>Wizard installation tools </li></ul></ul><ul><ul><li>Discovery mechanism (WAYF) </li></ul></ul><ul><ul><li>Official Federation Metadata </li></ul></ul><ul><ul><li>Test Infrastructure </li></ul></ul><ul><li>Support Services </li></ul><ul><ul><li>Writing Installation and Deployment Guides </li></ul></ul><ul><ul><li>Standard Definitions (Attribute Specification) </li></ul></ul><ul><ul><li>Training and consulting (Workshop) </li></ul></ul><ul><li>RCTSaai Federated Services </li></ul><ul><ul><li>Arara (SoftPhone) </li></ul></ul><ul><ul><li>Colibri (Web Conference) </li></ul></ul><ul><ul><li>Moodle </li></ul></ul><ul><li>Installed Identity Providers </li></ul>
  11. 11. RCTSaai - Roadmap <ul><li>All identity providers installed </li></ul><ul><li>Policy </li></ul><ul><li>Monitoring and management tools online </li></ul><ul><li>Integrate available federated services with all installed Identity Providers </li></ul><ul><li>RCTSaai Federated Services </li></ul><ul><ul><li> </li></ul></ul><ul><ul><li>B-on Digital Library Service </li></ul></ul><ul><li>Edugain Confederation </li></ul><ul><li>edugain goal is to develop a pilot </li></ul><ul><li>confederation of national aais with the </li></ul><ul><li>common language being SAML. </li></ul><ul><li>Installed Identity Providers </li></ul>
  12. 12. Esmeralda Câmara [email_address] FCCN