SlideShare a Scribd company logo

Federated identity and open id connect why higher ed needs ox

Download as PPTX, PDF
G
Gluu
1 of 3
Access to premium content is now one of the greatest value-adds universities can offer students, faculty and staff. Through the use of federated identity with open standards like SAML, universities can enable their university-issued credentials to provide access to valuable third-party content, like email and course material. However, the majority of U.S. universities either have no federation implementation, or a very limited deployment. To compound this problem, due to the complexity of configuration, very few websites support SAML the leading federation standard on the Internet today. In the time that SAML adoption has not happened, Google and other consumer IDPs have become indispensable to people for mobile and web access management. SAML came out before the invention of the iPhone. Since then, the infrastructure of the web has shifted to accommodate advances in technology, and developer feedback is clear: they don’t want to integrate SAML in their applications. T
There are many indicators that something is wrong with SAML adoption. Moderate success is not good enough. An infrastructure service like authentication needs to have ubiquitous adoption in order to make a significant impact. For example, the Internet wouldn’t work as well if we had to support IPX and Banyan Vines at the same time. While Shibboleth IDP is currently the most popular open source SAML software in use by higher education, Shib 3 is not the answer…the way forward is OX! Shib 3 only gets you improved SAML. OX enables the institution to support next-gen OAuth2 authn / authz and federation. The recently finalized OAuth 2.0 profile for authentication, OpenID Connect, fills the need for a simple yet flexible and secure identity protocol, and also lets organizations leverage their existing OAuth 2.0 investments
Gluu has a very simple migration plan from Shibboleth 2: using our Login Handler, a person is able to get both a SAML and OpenID Connect session. Despite a head start of years, MSFT will probably very soon have more SAML IDPs than Shibboleth, and MSFT are on track to deliver their OpenID Connect server before Shibboleth. However, proprietary software and its expensive licenses are not as appealing to budget- conscious universities as it is to large enterprises. OX provides a competitive value proposition, while maintaining a flexible open source license. Before we convert the last 90% of universities to the wrong protocol (SAML) and proprietary software, maybe it’s time to at least have a conversation if that’s the right thing to do. Article resource:-https//thegluuserver.wordpress.com/2014/06/18/federated-identity- and-openid-connect-why-higher-ed-needs-ox/

Recommended

Real Story Group 2011 Content Technology Predictions
Real Story Group 2011 Content Technology PredictionsReal Story Group 2011 Content Technology Predictions
Real Story Group 2011 Content Technology PredictionsReal Story Group
 
Why Take Computer Qualifications Training
Why Take Computer Qualifications TrainingWhy Take Computer Qualifications Training
Why Take Computer Qualifications Trainingwinsylee2020
 
Socializing Learning: Integrating Enterprise Learning with Social Business So...
Socializing Learning: Integrating Enterprise Learning with Social Business So...Socializing Learning: Integrating Enterprise Learning with Social Business So...
Socializing Learning: Integrating Enterprise Learning with Social Business So...Gary Pearl SPHR
 
How web development is changing in 2020
How web development is changing in 2020How web development is changing in 2020
How web development is changing in 2020VsevolodUlyanovich
 
Federated Identity, Accessing World-Wide Services with your Campus Id
Federated Identity, Accessing World-Wide Services with your Campus IdFederated Identity, Accessing World-Wide Services with your Campus Id
Federated Identity, Accessing World-Wide Services with your Campus IdEDUTIC
 
CIS13: More NSTIC Pilots: Scalable Privacy and Multi-factor Authentication an...
CIS13: More NSTIC Pilots: Scalable Privacy and Multi-factor Authentication an...CIS13: More NSTIC Pilots: Scalable Privacy and Multi-factor Authentication an...
CIS13: More NSTIC Pilots: Scalable Privacy and Multi-factor Authentication an...CloudIDSummit
 
FIDO® for Government & Enterprise - Presentation
FIDO® for Government & Enterprise - PresentationFIDO® for Government & Enterprise - Presentation
FIDO® for Government & Enterprise - PresentationFIDO Alliance
 
Federated Identity Architectures Integrating With The Cloud
Federated Identity Architectures Integrating With The CloudFederated Identity Architectures Integrating With The Cloud
Federated Identity Architectures Integrating With The Cloudrsnarayanan
 

Recommended

Real Story Group 2011 Content Technology Predictions
Real Story Group 2011 Content Technology PredictionsReal Story Group 2011 Content Technology Predictions
Real Story Group 2011 Content Technology PredictionsReal Story Group
 
Why Take Computer Qualifications Training
Why Take Computer Qualifications TrainingWhy Take Computer Qualifications Training
Why Take Computer Qualifications Trainingwinsylee2020
 
Socializing Learning: Integrating Enterprise Learning with Social Business So...
Socializing Learning: Integrating Enterprise Learning with Social Business So...Socializing Learning: Integrating Enterprise Learning with Social Business So...
Socializing Learning: Integrating Enterprise Learning with Social Business So...Gary Pearl SPHR
 
How web development is changing in 2020
How web development is changing in 2020How web development is changing in 2020
How web development is changing in 2020VsevolodUlyanovich
 
Federated Identity, Accessing World-Wide Services with your Campus Id
Federated Identity, Accessing World-Wide Services with your Campus IdFederated Identity, Accessing World-Wide Services with your Campus Id
Federated Identity, Accessing World-Wide Services with your Campus IdEDUTIC
 
CIS13: More NSTIC Pilots: Scalable Privacy and Multi-factor Authentication an...
CIS13: More NSTIC Pilots: Scalable Privacy and Multi-factor Authentication an...CIS13: More NSTIC Pilots: Scalable Privacy and Multi-factor Authentication an...
CIS13: More NSTIC Pilots: Scalable Privacy and Multi-factor Authentication an...CloudIDSummit
 
FIDO® for Government & Enterprise - Presentation
FIDO® for Government & Enterprise - PresentationFIDO® for Government & Enterprise - Presentation
FIDO® for Government & Enterprise - PresentationFIDO Alliance
 
Federated Identity Architectures Integrating With The Cloud
Federated Identity Architectures Integrating With The CloudFederated Identity Architectures Integrating With The Cloud
Federated Identity Architectures Integrating With The Cloudrsnarayanan
 
Martin Huth presents Cloud Computing
Martin Huth presents Cloud ComputingMartin Huth presents Cloud Computing
Martin Huth presents Cloud ComputingMartin Huth
 
America's failing banks feature
America's failing banks featureAmerica's failing banks feature
America's failing banks featureHazween Hassan
 
Dancing coils
Dancing coilsDancing coils
Dancing coilskiran dave
 
Printed latex balloons
Printed latex balloonsPrinted latex balloons
Printed latex balloonsjadescott_ubag
 
FIDO U2F & UAF Tutorial
FIDO U2F & UAF TutorialFIDO U2F & UAF Tutorial
FIDO U2F & UAF TutorialFIDO Alliance
 
Intro Presentation
Intro PresentationIntro Presentation
Intro PresentationSherberry
 
Implementasi aplikasi e office
Implementasi aplikasi e office Implementasi aplikasi e office
Implementasi aplikasi e office dhondoang
 
Av access complications
Av access complicationsAv access complications
Av access complicationskiran dave
 
Communicate with Brazil
Communicate with BrazilCommunicate with Brazil
Communicate with BrazilIvana Elvas
 
AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...
AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...
AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...akom360
 
Ping pong game
Ping pong gamePing pong game
Ping pong gameCarlos Pedraza
 
Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10
Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10
Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10Gerardo Lazaro
 
Kto sprzedaje faktury przed datą wymagalności?
Kto sprzedaje faktury przed datą wymagalności?Kto sprzedaje faktury przed datą wymagalności?
Kto sprzedaje faktury przed datą wymagalności?EGB Investments S.A.
 
RPI - Patentes 2245 "Vervs Consultoria"
RPI - Patentes 2245 "Vervs Consultoria" RPI - Patentes 2245 "Vervs Consultoria"
RPI - Patentes 2245 "Vervs Consultoria" Paulo Batalhão
 
Bimba 09 12 2012 dia da bíblia
Bimba 09 12 2012 dia da bíbliaBimba 09 12 2012 dia da bíblia
Bimba 09 12 2012 dia da bíbliaDebora Teixeira
 
La SituacióN De Desamparo (Ii)
La SituacióN De Desamparo (Ii)La SituacióN De Desamparo (Ii)
La SituacióN De Desamparo (Ii)Clara Isabel Fernández Rodicio
 
Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)
Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)
Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)cmspg
 
Jose Ramon Juarez Lopes
Jose Ramon Juarez LopesJose Ramon Juarez Lopes
Jose Ramon Juarez LopesClara Isabel Fernández Rodicio
 
Technology & Information Technology trends 2012
Technology & Information Technology trends 2012Technology & Information Technology trends 2012
Technology & Information Technology trends 2012Mozammel Rony
 
Challenges of Learning Management Systems and Current Trends
Challenges of Learning Management Systems and Current TrendsChallenges of Learning Management Systems and Current Trends
Challenges of Learning Management Systems and Current TrendsIJAEMSJORNAL
 
Improve identity management with open id
Improve identity management with open idImprove identity management with open id
Improve identity management with open idPing Identity
 
IRJET- Virtual Community Using Cloud Technology “Unitalk”
IRJET- Virtual Community Using Cloud Technology “Unitalk”IRJET- Virtual Community Using Cloud Technology “Unitalk”
IRJET- Virtual Community Using Cloud Technology “Unitalk”IRJET Journal
 

More Related Content

Viewers also liked

Martin Huth presents Cloud Computing
Martin Huth presents Cloud ComputingMartin Huth presents Cloud Computing
Martin Huth presents Cloud ComputingMartin Huth
 
America's failing banks feature
America's failing banks featureAmerica's failing banks feature
America's failing banks featureHazween Hassan
 
Printed latex balloons
Printed latex balloonsPrinted latex balloons
Printed latex balloonsjadescott_ubag
 
FIDO U2F & UAF Tutorial
FIDO U2F & UAF TutorialFIDO U2F & UAF Tutorial
FIDO U2F & UAF TutorialFIDO Alliance
 
Intro Presentation
Intro PresentationIntro Presentation
Intro PresentationSherberry
 
Implementasi aplikasi e office
Implementasi aplikasi e office Implementasi aplikasi e office
Implementasi aplikasi e office dhondoang
 
Av access complications
Av access complicationsAv access complications
Av access complicationskiran dave
 
Communicate with Brazil
Communicate with BrazilCommunicate with Brazil
Communicate with BrazilIvana Elvas
 
AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...
AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...
AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...akom360
 
Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10
Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10
Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10Gerardo Lazaro
 
Kto sprzedaje faktury przed datą wymagalności?
Kto sprzedaje faktury przed datą wymagalności?Kto sprzedaje faktury przed datą wymagalności?
Kto sprzedaje faktury przed datą wymagalności?EGB Investments S.A.
 
RPI - Patentes 2245 "Vervs Consultoria"
RPI - Patentes 2245 "Vervs Consultoria" RPI - Patentes 2245 "Vervs Consultoria"
RPI - Patentes 2245 "Vervs Consultoria" Paulo Batalhão
 
Bimba 09 12 2012 dia da bíblia
Bimba 09 12 2012 dia da bíbliaBimba 09 12 2012 dia da bíblia
Bimba 09 12 2012 dia da bíbliaDebora Teixeira
 
Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)
Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)
Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)cmspg
 

Viewers also liked (18)

Martin Huth presents Cloud Computing
Martin Huth presents Cloud ComputingMartin Huth presents Cloud Computing
Martin Huth presents Cloud Computing
 
America's failing banks feature
America's failing banks featureAmerica's failing banks feature
America's failing banks feature
 
Dancing coils
Dancing coilsDancing coils
Dancing coils
 
Printed latex balloons
Printed latex balloonsPrinted latex balloons
Printed latex balloons
 
FIDO U2F & UAF Tutorial
FIDO U2F & UAF TutorialFIDO U2F & UAF Tutorial
FIDO U2F & UAF Tutorial
 
Intro Presentation
Intro PresentationIntro Presentation
Intro Presentation
 
Implementasi aplikasi e office
Implementasi aplikasi e office Implementasi aplikasi e office
Implementasi aplikasi e office
 
Av access complications
Av access complicationsAv access complications
Av access complications
 
Communicate with Brazil
Communicate with BrazilCommunicate with Brazil
Communicate with Brazil
 
AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...
AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...
AllFacebook Marketing Conference 2014 in München: Implikationen aus den Faceb...
 
Ping pong game
Ping pong gamePing pong game
Ping pong game
 
Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10
Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10
Plan Curric - Clase 1 - Concepcion de la Planificacion - Oct 10
 
Kto sprzedaje faktury przed datą wymagalności?
Kto sprzedaje faktury przed datą wymagalności?Kto sprzedaje faktury przed datą wymagalności?
Kto sprzedaje faktury przed datą wymagalności?
 
RPI - Patentes 2245 "Vervs Consultoria"
RPI - Patentes 2245 "Vervs Consultoria" RPI - Patentes 2245 "Vervs Consultoria"
RPI - Patentes 2245 "Vervs Consultoria"
 
Bimba 09 12 2012 dia da bíblia
Bimba 09 12 2012 dia da bíbliaBimba 09 12 2012 dia da bíblia
Bimba 09 12 2012 dia da bíblia
 
La SituacióN De Desamparo (Ii)
La SituacióN De Desamparo (Ii)La SituacióN De Desamparo (Ii)
La SituacióN De Desamparo (Ii)
 
Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)
Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)
Ata da 14ª reunião ordinária do conselho municipal de saúde (22 07-2014)
 
Jose Ramon Juarez Lopes
Jose Ramon Juarez LopesJose Ramon Juarez Lopes
Jose Ramon Juarez Lopes
 

Similar to Federated identity and open id connect why higher ed needs ox

Technology & Information Technology trends 2012
Technology & Information Technology trends 2012Technology & Information Technology trends 2012
Technology & Information Technology trends 2012Mozammel Rony
 
Challenges of Learning Management Systems and Current Trends
Challenges of Learning Management Systems and Current TrendsChallenges of Learning Management Systems and Current Trends
Challenges of Learning Management Systems and Current TrendsIJAEMSJORNAL
 
Improve identity management with open id
Improve identity management with open idImprove identity management with open id
Improve identity management with open idPing Identity
 
IRJET- Virtual Community Using Cloud Technology “Unitalk”
IRJET- Virtual Community Using Cloud Technology “Unitalk”IRJET- Virtual Community Using Cloud Technology “Unitalk”
IRJET- Virtual Community Using Cloud Technology “Unitalk”IRJET Journal
 
IRJET- Voice based Email Application for Blind People
IRJET- Voice based Email Application for Blind PeopleIRJET- Voice based Email Application for Blind People
IRJET- Voice based Email Application for Blind PeopleIRJET Journal
 
2010 Content Technology Predictions
2010 Content Technology Predictions2010 Content Technology Predictions
2010 Content Technology PredictionsReal Story Group
 
How do you think the use of cloud computing can affect individuals, a.pdf
How do you think the use of cloud computing can affect individuals, a.pdfHow do you think the use of cloud computing can affect individuals, a.pdf
How do you think the use of cloud computing can affect individuals, a.pdfPRATIKSINHA7304
 
Periodical Exam Group 3
Periodical Exam Group 3Periodical Exam Group 3
Periodical Exam Group 3menchie set
 
Periodical Exam Group 3
Periodical Exam Group 3Periodical Exam Group 3
Periodical Exam Group 3guest227118
 
Periodical Exam Group 3
Periodical Exam Group 3Periodical Exam Group 3
Periodical Exam Group 3RObell Mora
 
First o auth 2.0 and saml identity federation platform to be shown by gluu
First o auth 2.0 and saml identity federation platform to be shown by gluuFirst o auth 2.0 and saml identity federation platform to be shown by gluu
First o auth 2.0 and saml identity federation platform to be shown by gluuGluu
 
ISDC 2013_Referat_Moshe Rappoport_IBM GTO 2013
ISDC 2013_Referat_Moshe Rappoport_IBM GTO 2013ISDC 2013_Referat_Moshe Rappoport_IBM GTO 2013
ISDC 2013_Referat_Moshe Rappoport_IBM GTO 2013IBM Switzerland
 
Cost Benefits of Cloud vs. In-house IT for Higher Education
Cost Benefits of Cloud vs. In-house IT for Higher EducationCost Benefits of Cloud vs. In-house IT for Higher Education
Cost Benefits of Cloud vs. In-house IT for Higher EducationCSCJournals
 
Blockchain Goes to School
Blockchain Goes to SchoolBlockchain Goes to School
Blockchain Goes to SchoolGreg Kimpton
 
Android app for hostel outpass form
Android app for hostel outpass formAndroid app for hostel outpass form
Android app for hostel outpass formIJARIIT
 

Similar to Federated identity and open id connect why higher ed needs ox (20)

Technology & Information Technology trends 2012
Technology & Information Technology trends 2012Technology & Information Technology trends 2012
Technology & Information Technology trends 2012
 
Challenges of Learning Management Systems and Current Trends
Challenges of Learning Management Systems and Current TrendsChallenges of Learning Management Systems and Current Trends
Challenges of Learning Management Systems and Current Trends
 
Improve identity management with open id
Improve identity management with open idImprove identity management with open id
Improve identity management with open id
 
IRJET- Virtual Community Using Cloud Technology “Unitalk”
IRJET- Virtual Community Using Cloud Technology “Unitalk”IRJET- Virtual Community Using Cloud Technology “Unitalk”
IRJET- Virtual Community Using Cloud Technology “Unitalk”
 
IRJET- Voice based Email Application for Blind People
IRJET- Voice based Email Application for Blind PeopleIRJET- Voice based Email Application for Blind People
IRJET- Voice based Email Application for Blind People
 
2010 Content Technology Predictions
2010 Content Technology Predictions2010 Content Technology Predictions
2010 Content Technology Predictions
 
Miniprojectreport
MiniprojectreportMiniprojectreport
Miniprojectreport
 
How do you think the use of cloud computing can affect individuals, a.pdf
How do you think the use of cloud computing can affect individuals, a.pdfHow do you think the use of cloud computing can affect individuals, a.pdf
How do you think the use of cloud computing can affect individuals, a.pdf
 
Periodical Exam Group 3
Periodical Exam Group 3Periodical Exam Group 3
Periodical Exam Group 3
 
Periodical Exam Group 3
Periodical Exam Group 3Periodical Exam Group 3
Periodical Exam Group 3
 
Periodical Exam Group 3
Periodical Exam Group 3Periodical Exam Group 3
Periodical Exam Group 3
 
Periodical Exam Group 3
Periodical Exam Group 3Periodical Exam Group 3
Periodical Exam Group 3
 
Market Trends Report
Market Trends ReportMarket Trends Report
Market Trends Report
 
First o auth 2.0 and saml identity federation platform to be shown by gluu
First o auth 2.0 and saml identity federation platform to be shown by gluuFirst o auth 2.0 and saml identity federation platform to be shown by gluu
First o auth 2.0 and saml identity federation platform to be shown by gluu
 
ISDC 2013_Referat_Moshe Rappoport_IBM GTO 2013
ISDC 2013_Referat_Moshe Rappoport_IBM GTO 2013ISDC 2013_Referat_Moshe Rappoport_IBM GTO 2013
ISDC 2013_Referat_Moshe Rappoport_IBM GTO 2013
 
Cost Benefits of Cloud vs. In-house IT for Higher Education
Cost Benefits of Cloud vs. In-house IT for Higher EducationCost Benefits of Cloud vs. In-house IT for Higher Education
Cost Benefits of Cloud vs. In-house IT for Higher Education
 
Blockchain Goes to School
Blockchain Goes to SchoolBlockchain Goes to School
Blockchain Goes to School
 
Android app for hostel outpass form
Android app for hostel outpass formAndroid app for hostel outpass form
Android app for hostel outpass form
 
Web2.0-IFF
Web2.0-IFFWeb2.0-IFF
Web2.0-IFF
 
Web2.0-IFF
Web2.0-IFFWeb2.0-IFF
Web2.0-IFF
 

More from Gluu

Gluu server for educational institutions
Gluu server for educational institutionsGluu server for educational institutions
Gluu server for educational institutionsGluu
 
Pr from our recent nstic pilot award
Pr from our recent nstic pilot awardPr from our recent nstic pilot award
Pr from our recent nstic pilot awardGluu
 
The currency of identifiers
The currency of identifiersThe currency of identifiers
The currency of identifiersGluu
 
Gluu founder and ceo, mike schwartz, to host open id connect 1.0 session at r...
Gluu founder and ceo, mike schwartz, to host open id connect 1.0 session at r...Gluu founder and ceo, mike schwartz, to host open id connect 1.0 session at r...
Gluu founder and ceo, mike schwartz, to host open id connect 1.0 session at r...Gluu
 
Gluu sxsw 2015 interactive picks
Gluu sxsw 2015 interactive picksGluu sxsw 2015 interactive picks
Gluu sxsw 2015 interactive picksGluu
 
17 recommended requirements for an identity and access management poc
17 recommended requirements for an identity and access management poc17 recommended requirements for an identity and access management poc
17 recommended requirements for an identity and access management pocGluu
 
Top 10 applications for multi factor authentication in higher education
Top 10 applications for multi factor authentication in higher educationTop 10 applications for multi factor authentication in higher education
Top 10 applications for multi factor authentication in higher educationGluu
 
How & why gluu’s open source authorization and authentication platform was ch...
How & why gluu’s open source authorization and authentication platform was ch...How & why gluu’s open source authorization and authentication platform was ch...
How & why gluu’s open source authorization and authentication platform was ch...Gluu
 
East hackathon api’s for art
East hackathon api’s for artEast hackathon api’s for art
East hackathon api’s for artGluu
 
Gluu’s vision
Gluu’s visionGluu’s vision
Gluu’s visionGluu
 
Gluu and canonical to demonstrate instant application security using ubuntu j...
Gluu and canonical to demonstrate instant application security using ubuntu j...Gluu and canonical to demonstrate instant application security using ubuntu j...
Gluu and canonical to demonstrate instant application security using ubuntu j...Gluu
 
Currency of identifiers ii
Currency of identifiers iiCurrency of identifiers ii
Currency of identifiers iiGluu
 
Shibboleth identity provider (idp) what it is, and why you should consider a ...
Shibboleth identity provider (idp) what it is, and why you should consider a ...Shibboleth identity provider (idp) what it is, and why you should consider a ...
Shibboleth identity provider (idp) what it is, and why you should consider a ...Gluu
 
Web access management using o auth2 and saml – wam 2.0
Web access management using o auth2 and saml – wam 2.0Web access management using o auth2 and saml – wam 2.0
Web access management using o auth2 and saml – wam 2.0Gluu
 
Packt publishing book proposal api and mobile access management
Packt publishing book proposal api and mobile access managementPackt publishing book proposal api and mobile access management
Packt publishing book proposal api and mobile access managementGluu
 
Gluu oscon submission
Gluu oscon submissionGluu oscon submission
Gluu oscon submissionGluu
 
Go west young federation
Go west young federationGo west young federation
Go west young federationGluu
 
 Use case for asimba as saml proxy
 Use case for asimba as saml proxy Use case for asimba as saml proxy
 Use case for asimba as saml proxyGluu
 
Postcard from identity next 2013
Postcard from identity next 2013Postcard from identity next 2013
Postcard from identity next 2013Gluu
 

More from Gluu (19)

Gluu server for educational institutions
Gluu server for educational institutionsGluu server for educational institutions
Gluu server for educational institutions
 
Pr from our recent nstic pilot award
Pr from our recent nstic pilot awardPr from our recent nstic pilot award
Pr from our recent nstic pilot award
 
The currency of identifiers
The currency of identifiersThe currency of identifiers
The currency of identifiers
 
Gluu founder and ceo, mike schwartz, to host open id connect 1.0 session at r...
Gluu founder and ceo, mike schwartz, to host open id connect 1.0 session at r...Gluu founder and ceo, mike schwartz, to host open id connect 1.0 session at r...
Gluu founder and ceo, mike schwartz, to host open id connect 1.0 session at r...
 
Gluu sxsw 2015 interactive picks
Gluu sxsw 2015 interactive picksGluu sxsw 2015 interactive picks
Gluu sxsw 2015 interactive picks
 
17 recommended requirements for an identity and access management poc
17 recommended requirements for an identity and access management poc17 recommended requirements for an identity and access management poc
17 recommended requirements for an identity and access management poc
 
Top 10 applications for multi factor authentication in higher education
Top 10 applications for multi factor authentication in higher educationTop 10 applications for multi factor authentication in higher education
Top 10 applications for multi factor authentication in higher education
 
How & why gluu’s open source authorization and authentication platform was ch...
How & why gluu’s open source authorization and authentication platform was ch...How & why gluu’s open source authorization and authentication platform was ch...
How & why gluu’s open source authorization and authentication platform was ch...
 
East hackathon api’s for art
East hackathon api’s for artEast hackathon api’s for art
East hackathon api’s for art
 
Gluu’s vision
Gluu’s visionGluu’s vision
Gluu’s vision
 
Gluu and canonical to demonstrate instant application security using ubuntu j...
Gluu and canonical to demonstrate instant application security using ubuntu j...Gluu and canonical to demonstrate instant application security using ubuntu j...
Gluu and canonical to demonstrate instant application security using ubuntu j...
 
Currency of identifiers ii
Currency of identifiers iiCurrency of identifiers ii
Currency of identifiers ii
 
Shibboleth identity provider (idp) what it is, and why you should consider a ...
Shibboleth identity provider (idp) what it is, and why you should consider a ...Shibboleth identity provider (idp) what it is, and why you should consider a ...
Shibboleth identity provider (idp) what it is, and why you should consider a ...
 
Web access management using o auth2 and saml – wam 2.0
Web access management using o auth2 and saml – wam 2.0Web access management using o auth2 and saml – wam 2.0
Web access management using o auth2 and saml – wam 2.0
 
Packt publishing book proposal api and mobile access management
Packt publishing book proposal api and mobile access managementPackt publishing book proposal api and mobile access management
Packt publishing book proposal api and mobile access management
 
Gluu oscon submission
Gluu oscon submissionGluu oscon submission
Gluu oscon submission
 
Go west young federation
Go west young federationGo west young federation
Go west young federation
 
 Use case for asimba as saml proxy
 Use case for asimba as saml proxy Use case for asimba as saml proxy
 Use case for asimba as saml proxy
 
Postcard from identity next 2013
Postcard from identity next 2013Postcard from identity next 2013
Postcard from identity next 2013
 

Federated identity and open id connect why higher ed needs ox

  • 1. Access to premium content is now one of the greatest value-adds universities can offer students, faculty and staff. Through the use of federated identity with open standards like SAML, universities can enable their university-issued credentials to provide access to valuable third-party content, like email and course material. However, the majority of U.S. universities either have no federation implementation, or a very limited deployment. To compound this problem, due to the complexity of configuration, very few websites support SAML the leading federation standard on the Internet today. In the time that SAML adoption has not happened, Google and other consumer IDPs have become indispensable to people for mobile and web access management. SAML came out before the invention of the iPhone. Since then, the infrastructure of the web has shifted to accommodate advances in technology, and developer feedback is clear: they don’t want to integrate SAML in their applications. T
  • 2. There are many indicators that something is wrong with SAML adoption. Moderate success is not good enough. An infrastructure service like authentication needs to have ubiquitous adoption in order to make a significant impact. For example, the Internet wouldn’t work as well if we had to support IPX and Banyan Vines at the same time. While Shibboleth IDP is currently the most popular open source SAML software in use by higher education, Shib 3 is not the answer…the way forward is OX! Shib 3 only gets you improved SAML. OX enables the institution to support next-gen OAuth2 authn / authz and federation. The recently finalized OAuth 2.0 profile for authentication, OpenID Connect, fills the need for a simple yet flexible and secure identity protocol, and also lets organizations leverage their existing OAuth 2.0 investments
  • 3. Gluu has a very simple migration plan from Shibboleth 2: using our Login Handler, a person is able to get both a SAML and OpenID Connect session. Despite a head start of years, MSFT will probably very soon have more SAML IDPs than Shibboleth, and MSFT are on track to deliver their OpenID Connect server before Shibboleth. However, proprietary software and its expensive licenses are not as appealing to budget- conscious universities as it is to large enterprises. OX provides a competitive value proposition, while maintaining a flexible open source license. Before we convert the last 90% of universities to the wrong protocol (SAML) and proprietary software, maybe it’s time to at least have a conversation if that’s the right thing to do. Article resource:-https//thegluuserver.wordpress.com/2014/06/18/federated-identity- and-openid-connect-why-higher-ed-needs-ox/