Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.



Published on

  • Be the first to comment

  • Be the first to like this


  1. 1. SHIBBOLETH Shyama c Digital library Trainee IIITM-K
  2. 2. Contents <ul><li>Introduction </li></ul><ul><li>Purposes </li></ul><ul><li>Membership </li></ul><ul><li>Major Features </li></ul><ul><li>Benefit </li></ul><ul><li>Software </li></ul>
  3. 3. Introduction <ul><li>The Shibboleth® System is a standards based, open source software package for web single sign-on across or within organizational boundaries. </li></ul>
  4. 4. Purposes <ul><li>Accessing digital library resources from off-campus </li></ul><ul><ul><li>Proxy servers, shared passwords </li></ul></ul><ul><ul><ul><li>Permits access directly to content without campus proxy server </li></ul></ul></ul><ul><ul><ul><li>Requires campus authentication, though identity is not passed to library </li></ul></ul></ul><ul><ul><ul><li>Be used by libraries for new licensing approaches to content </li></ul></ul></ul><ul><li>Contd.. </li></ul>
  5. 5. Contd.. <ul><li>Using distance education courseware </li></ul><ul><ul><li>Additional username/passwords </li></ul></ul><ul><ul><ul><li>Use local campus authentication and have campus pass appropriate identifier passed to courseware or service </li></ul></ul></ul><ul><ul><ul><li>Requires remote resources to trust campus enrollment/authentication </li></ul></ul></ul><ul><li>Contd.. </li></ul>
  6. 6. Contd.. <ul><li>Accessing a research web site at another university </li></ul><ul><ul><li>Group class accounts or new remote individual accounts </li></ul></ul><ul><ul><ul><li>Enables use of local campus account </li></ul></ul></ul><ul><ul><ul><li>Permits role-based access </li></ul></ul></ul><ul><ul><ul><li>Requires active privacy management by user </li></ul></ul></ul>
  7. 7. Membership <ul><li>There are four types of membership : </li></ul><ul><ul><li>Regular membership </li></ul></ul><ul><ul><li>Affiliate membership </li></ul></ul><ul><ul><li>Corporate membership </li></ul></ul><ul><ul><li>R&E Network membership. </li></ul></ul><ul><li>There are three types Corporate membership </li></ul><ul><ul><li>Corporate Partner </li></ul></ul><ul><ul><li>Corporate Sponsor </li></ul></ul><ul><ul><li>Corporate Member. </li></ul></ul><ul><li>Contd.. </li></ul>
  8. 8. Contd.. <ul><li>Two categories of Affiliate membership . </li></ul><ul><ul><li>Affiliate members </li></ul></ul><ul><ul><li>Afilliate members with Collaboration Site Status. </li></ul></ul>
  9. 9. Major Features <ul><li>Interoperability </li></ul><ul><li>Manageability </li></ul><ul><li>Functionality </li></ul>
  10. 10. Interoperability <ul><li>Improved interoperability with commercial and open source federation solutions. </li></ul><ul><li>Support for SAML 2.0 and SAML </li></ul><ul><li>New default behavior eliminates callbacks and extra firewall/SSL configuration for SAML 2.0 deployments. </li></ul>
  11. 11. Manageability <ul><li>Improved support for managing metadata, including real-time download and caching, and generation of provider metadata from configuration. </li></ul><ul><li>Flexible new attribute release and acceptance policy engines with shared syntax. </li></ul><ul><li>Improved backend support in the IdP for persistent opaque identifiers to facilitate privacy-preserving access to services. </li></ul><ul><li>The IdP can reload almost all configuration files within a running system. </li></ul><ul><li>The IdP now maintains separate Access and Audit logs. </li></ul>
  12. 12. Functionality <ul><li>Encryption of user data between providers, even without callbacks. </li></ul><ul><li>Extensive clustering support for both the IdP and the SP. </li></ul>
  13. 13. Benefit <ul><li>Shibboleth enables access control for web-based applications </li></ul><ul><li>provides web single sign-on functionality for services hosted by your site, other sites, or both. </li></ul><ul><li>simplifies account and access management related to offering protected web-based resources. </li></ul><ul><li>optionally enables the preservation of privacy according to institutional policy and individual preferences. </li></ul><ul><li>Contd.. </li></ul>
  14. 14. Contd.. <ul><li>provides a site with tools to manage authorization to access remote resources </li></ul>
  15. 15. Software <ul><li>Shibboleth Single Sign-on and Federating software consists of two major packages: </li></ul><ul><li>identity provider software is used by the organization with the individuals accessing the resource, and </li></ul><ul><li>service provider software is used by the organization supplying the service. </li></ul>
  16. 16. Thank You