SlideShare a Scribd company logo

GEOSS AIP History with Authentication and SSO

Download as PPT, PDF
EDINA, University of Edinburgh
EDINA, University of Edinburgh
1 of 7
GEOSS AIP History with Authentication and SSO Prepared by Steven F. Browdy for COBWEB Meeting
Introduction • Authentication and SSO first raised in AIP-3 effort: – March – December, 2010 – Included in the Data Sharing Guidelines Working Group activities – Considered research and secondary focus • Authentication and SSO not addressed in AIP-4 effort: – AIP-4 reserved for a special development effort leading to the 2011 GEO Plenary meeting • Authentication and SSO addressed in AIP-5 effort: – May – December, 2012 – Included in the Data Sharing Working Group activities – Considered a priority by the GEO Infrastructure Implementation Board
AIP-3 Effort • Suggested by work in the GEO Data Sharing Task Force (DSTF) with the Data Sharing Implementation Guidelines • Avoid GEOSS Common Infrastructure (GCI) impact as much as possible • Avoid heavy impact on data providers • Focused on open standards – Researched OpenID – Researched Shibboleth
AIP-3 Effort • Possible strategies considered – Federated solution between data providers – Centralized solution using a GCI component – Both strategies have some impact on the data providers – Needs to work in a programmatic way, as well as interactively with a user • Recommendation – Implement a central GCI component utilizing remote OpenID identity servers – Design appropriate service interfaces to support the interactions between the central GCI component, the GEOSS users, and the GEOSS data providers – Continue to work with DSTF for guidance
AIP-5 Effort • User Authentication is a 2012 IIB priority • Goal is to operationalize authentication and SSO in 2013 – Test recommendations during AIP-6 – Engage data providers – Disseminate process for the greater GEOSS architecture • AIP-5 research (continued from AIP-3) – OpenID and SAML2 to be used for authentication and SSO – The idea of a “GEOSS User” is being considered to support data use metrics within GEOSS – Use cases developed
AIP-5 Effort • Use cases – Registration for Authentication via OpenID – Registration as OpenID user for Authentication via SAML2 – Organizational user for Authentication via SAML2 – Identification as "GEOSS User" During Registration – OpenID-Protected Data Access via OpenID Authentication – SAML2-Protected Data Access via OpenID Authentication – OpenID-Protected Data Access via SAML2 Authentication – SAML2-Protected Data Access via SAML2 Authentication – Registering and Modifying a New Identity or Service Provider
AIP-5 Effort • Recommendations – Federated solution (lightest impact on GCI) – Data provider support for a set of “trusted” OpenID identity servers to be used with SAML2 user management systems • USA has such a list • Discussions planned for INSPIRE list – Authentication is the current primary goal • Access control is a future interest – User interaction is the current primary goal • Programmatic authentication is a future interest

Recommended

GOKb Focus Group (Charleston 2012)
GOKb Focus Group (Charleston 2012)GOKb Focus Group (Charleston 2012)
GOKb Focus Group (Charleston 2012)GOKb Project
 
Marionetas
MarionetasMarionetas
MarionetasMartina y Aiora
 
Yardlines--Black History Month
Yardlines--Black History MonthYardlines--Black History Month
Yardlines--Black History MonthNorfolk Naval Shipyard
 
Bm tahun3
Bm tahun3Bm tahun3
Bm tahun3Norihan Ibrahim
 
Martina y Ana
Martina y AnaMartina y Ana
Martina y AnaMartina y Aiora
 
Biblioteca Central
Biblioteca CentralBiblioteca Central
Biblioteca CentralMartina y Aiora
 
Kims Test Ppt
Kims Test PptKims Test Ppt
Kims Test Pptmollbergmnstate.edu
 
Mais da India
Mais da IndiaMais da India
Mais da Indiajandira feijó
 

Recommended

GOKb Focus Group (Charleston 2012)
GOKb Focus Group (Charleston 2012)GOKb Focus Group (Charleston 2012)
GOKb Focus Group (Charleston 2012)GOKb Project
 
Marionetas
MarionetasMarionetas
MarionetasMartina y Aiora
 
Yardlines--Black History Month
Yardlines--Black History MonthYardlines--Black History Month
Yardlines--Black History MonthNorfolk Naval Shipyard
 
Bm tahun3
Bm tahun3Bm tahun3
Bm tahun3Norihan Ibrahim
 
Martina y Ana
Martina y AnaMartina y Ana
Martina y AnaMartina y Aiora
 
Biblioteca Central
Biblioteca CentralBiblioteca Central
Biblioteca CentralMartina y Aiora
 
Kims Test Ppt
Kims Test PptKims Test Ppt
Kims Test Pptmollbergmnstate.edu
 
Mais da India
Mais da IndiaMais da India
Mais da Indiajandira feijó
 
Open Audit
Open AuditOpen Audit
Open Auditncspa
 
Quizzology 1.0 set-1
Quizzology 1.0 set-1Quizzology 1.0 set-1
Quizzology 1.0 set-1AEC_Quiz_Club
 
UNIMAS X-Tive Application Ionic Multi-Cross Platform Development
UNIMAS X-Tive Application Ionic Multi-Cross Platform DevelopmentUNIMAS X-Tive Application Ionic Multi-Cross Platform Development
UNIMAS X-Tive Application Ionic Multi-Cross Platform DevelopmentHazril Hafiz
 
Navidad II
Navidad IINavidad II
Navidad IIMartina y Aiora
 
Belajar cara belajar a
Belajar cara belajar aBelajar cara belajar a
Belajar cara belajar aAbdul Ghani
 
Takwim peperiksaan 2017
Takwim peperiksaan 2017Takwim peperiksaan 2017
Takwim peperiksaan 2017ciklaili. com
 
LANGKAH PENELITIAN GEOGRAFI
LANGKAH PENELITIAN GEOGRAFILANGKAH PENELITIAN GEOGRAFI
LANGKAH PENELITIAN GEOGRAFINesha Mutiara
 
Jadual Waktu PT3 2016
Jadual Waktu PT3 2016Jadual Waktu PT3 2016
Jadual Waktu PT3 2016ciklaili. com
 
Manual POO
Manual POOManual POO
Manual POOMarco Bau
 
Presentacion C++
Presentacion C++Presentacion C++
Presentacion C++Marco Bau
 
Connected development data
Connected development dataConnected development data
Connected development dataRob Worthington
 
Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365Deb Walther
 
ORCID - UK PIDs for Open Access - progress update
ORCID - UK PIDs for Open Access - progress updateORCID - UK PIDs for Open Access - progress update
ORCID - UK PIDs for Open Access - progress updateJisc
 
COBWEB, AIP-6, and Access Management Federations
COBWEB, AIP-6, and Access Management FederationsCOBWEB, AIP-6, and Access Management Federations
COBWEB, AIP-6, and Access Management FederationsEDINA, University of Edinburgh
 
HCF 2016: Jake Sanderson
HCF 2016: Jake SandersonHCF 2016: Jake Sanderson
HCF 2016: Jake SandersonChemicals Forum Association
 
System and Infrastructure Lifecycle Management.pptx
System and Infrastructure Lifecycle Management.pptxSystem and Infrastructure Lifecycle Management.pptx
System and Infrastructure Lifecycle Management.pptxPangeranSilalahi
 
Palms v
Palms vPalms v
Palms vbdemchak
 
Hicss 2012 presentation
Hicss 2012 presentationHicss 2012 presentation
Hicss 2012 presentationbdemchak
 
The challenges of implementing generic web and mobile apps for managing and m...
The challenges of implementing generic web and mobile apps for managing and m...The challenges of implementing generic web and mobile apps for managing and m...
The challenges of implementing generic web and mobile apps for managing and m...Rob Worthington
 
Building a data driven search application with LucidWorks SiLK
Building a data driven search application with LucidWorks SiLKBuilding a data driven search application with LucidWorks SiLK
Building a data driven search application with LucidWorks SiLKLucidworks (Archived)
 
Research Data Shared Service Webinar #1
Research Data Shared Service Webinar #1Research Data Shared Service Webinar #1
Research Data Shared Service Webinar #1Jisc RDM
 
Module 6 rev
Module 6 revModule 6 rev
Module 6 revcomesa15
 

More Related Content

Viewers also liked

Open Audit
Open AuditOpen Audit
Open Auditncspa
 
Quizzology 1.0 set-1
Quizzology 1.0 set-1Quizzology 1.0 set-1
Quizzology 1.0 set-1AEC_Quiz_Club
 
UNIMAS X-Tive Application Ionic Multi-Cross Platform Development
UNIMAS X-Tive Application Ionic Multi-Cross Platform DevelopmentUNIMAS X-Tive Application Ionic Multi-Cross Platform Development
UNIMAS X-Tive Application Ionic Multi-Cross Platform DevelopmentHazril Hafiz
 
Belajar cara belajar a
Belajar cara belajar aBelajar cara belajar a
Belajar cara belajar aAbdul Ghani
 
Takwim peperiksaan 2017
Takwim peperiksaan 2017Takwim peperiksaan 2017
Takwim peperiksaan 2017ciklaili. com
 
LANGKAH PENELITIAN GEOGRAFI
LANGKAH PENELITIAN GEOGRAFILANGKAH PENELITIAN GEOGRAFI
LANGKAH PENELITIAN GEOGRAFINesha Mutiara
 
Jadual Waktu PT3 2016
Jadual Waktu PT3 2016Jadual Waktu PT3 2016
Jadual Waktu PT3 2016ciklaili. com
 
Presentacion C++
Presentacion C++Presentacion C++
Presentacion C++Marco Bau
 

Viewers also liked (10)

Open Audit
Open AuditOpen Audit
Open Audit
 
Quizzology 1.0 set-1
Quizzology 1.0 set-1Quizzology 1.0 set-1
Quizzology 1.0 set-1
 
UNIMAS X-Tive Application Ionic Multi-Cross Platform Development
UNIMAS X-Tive Application Ionic Multi-Cross Platform DevelopmentUNIMAS X-Tive Application Ionic Multi-Cross Platform Development
UNIMAS X-Tive Application Ionic Multi-Cross Platform Development
 
Navidad II
Navidad IINavidad II
Navidad II
 
Belajar cara belajar a
Belajar cara belajar aBelajar cara belajar a
Belajar cara belajar a
 
Takwim peperiksaan 2017
Takwim peperiksaan 2017Takwim peperiksaan 2017
Takwim peperiksaan 2017
 
LANGKAH PENELITIAN GEOGRAFI
LANGKAH PENELITIAN GEOGRAFILANGKAH PENELITIAN GEOGRAFI
LANGKAH PENELITIAN GEOGRAFI
 
Jadual Waktu PT3 2016
Jadual Waktu PT3 2016Jadual Waktu PT3 2016
Jadual Waktu PT3 2016
 
Manual POO
Manual POOManual POO
Manual POO
 
Presentacion C++
Presentacion C++Presentacion C++
Presentacion C++
 

Similar to GEOSS AIP History with Authentication and SSO

Connected development data
Connected development dataConnected development data
Connected development dataRob Worthington
 
Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365Deb Walther
 
ORCID - UK PIDs for Open Access - progress update
ORCID - UK PIDs for Open Access - progress updateORCID - UK PIDs for Open Access - progress update
ORCID - UK PIDs for Open Access - progress updateJisc
 
System and Infrastructure Lifecycle Management.pptx
System and Infrastructure Lifecycle Management.pptxSystem and Infrastructure Lifecycle Management.pptx
System and Infrastructure Lifecycle Management.pptxPangeranSilalahi
 
Hicss 2012 presentation
Hicss 2012 presentationHicss 2012 presentation
Hicss 2012 presentationbdemchak
 
The challenges of implementing generic web and mobile apps for managing and m...
The challenges of implementing generic web and mobile apps for managing and m...The challenges of implementing generic web and mobile apps for managing and m...
The challenges of implementing generic web and mobile apps for managing and m...Rob Worthington
 
Building a data driven search application with LucidWorks SiLK
Building a data driven search application with LucidWorks SiLKBuilding a data driven search application with LucidWorks SiLK
Building a data driven search application with LucidWorks SiLKLucidworks (Archived)
 
Research Data Shared Service Webinar #1
Research Data Shared Service Webinar #1Research Data Shared Service Webinar #1
Research Data Shared Service Webinar #1Jisc RDM
 
Module 6 rev
Module 6 revModule 6 rev
Module 6 revcomesa15
 
Item i ia e. glo-sis development - yusuf yigini, fenny van egmond
Item i ia e. glo-sis development - yusuf yigini, fenny van egmondItem i ia e. glo-sis development - yusuf yigini, fenny van egmond
Item i ia e. glo-sis development - yusuf yigini, fenny van egmondSoils FAO-GSP
 
Introducing INSPIRE - July 2013
Introducing INSPIRE - July 2013Introducing INSPIRE - July 2013
Introducing INSPIRE - July 2013Andrew Newman
 
Cordaid opening up - caroline kroon
Cordaid opening up - caroline kroonCordaid opening up - caroline kroon
Cordaid opening up - caroline kroonJasper Middendorp
 
Cordaid Opening Up - Caroline Kroon
Cordaid Opening Up - Caroline KroonCordaid Opening Up - Caroline Kroon
Cordaid Opening Up - Caroline Kroonopenforchange
 
Cordaid opening up caroline kroon
Cordaid opening up caroline kroonCordaid opening up caroline kroon
Cordaid opening up caroline kroonJasper Middendorp
 
ITEM 1. Progress - GloSIS Implementation, GloSIS Vision - Yusuf Yigini
ITEM 1. Progress - GloSIS Implementation, GloSIS Vision - Yusuf YiginiITEM 1. Progress - GloSIS Implementation, GloSIS Vision - Yusuf Yigini
ITEM 1. Progress - GloSIS Implementation, GloSIS Vision - Yusuf YiginiFAO
 
Open Access Progress and Promise in the CGIAR Consortium
Open Access Progress and Promise in the CGIAR ConsortiumOpen Access Progress and Promise in the CGIAR Consortium
Open Access Progress and Promise in the CGIAR ConsortiumCIARD Movement
 
Privacy Impact Assessment Management System (PIAMS)
Privacy Impact Assessment Management System (PIAMS) Privacy Impact Assessment Management System (PIAMS)
Privacy Impact Assessment Management System (PIAMS) The Canton Group
 

Similar to GEOSS AIP History with Authentication and SSO (20)

Connected development data
Connected development dataConnected development data
Connected development data
 
Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365
 
ORCID - UK PIDs for Open Access - progress update
ORCID - UK PIDs for Open Access - progress updateORCID - UK PIDs for Open Access - progress update
ORCID - UK PIDs for Open Access - progress update
 
COBWEB, AIP-6, and Access Management Federations
COBWEB, AIP-6, and Access Management FederationsCOBWEB, AIP-6, and Access Management Federations
COBWEB, AIP-6, and Access Management Federations
 
HCF 2016: Jake Sanderson
HCF 2016: Jake SandersonHCF 2016: Jake Sanderson
HCF 2016: Jake Sanderson
 
System and Infrastructure Lifecycle Management.pptx
System and Infrastructure Lifecycle Management.pptxSystem and Infrastructure Lifecycle Management.pptx
System and Infrastructure Lifecycle Management.pptx
 
Palms v
Palms vPalms v
Palms v
 
Hicss 2012 presentation
Hicss 2012 presentationHicss 2012 presentation
Hicss 2012 presentation
 
The challenges of implementing generic web and mobile apps for managing and m...
The challenges of implementing generic web and mobile apps for managing and m...The challenges of implementing generic web and mobile apps for managing and m...
The challenges of implementing generic web and mobile apps for managing and m...
 
Building a data driven search application with LucidWorks SiLK
Building a data driven search application with LucidWorks SiLKBuilding a data driven search application with LucidWorks SiLK
Building a data driven search application with LucidWorks SiLK
 
Research Data Shared Service Webinar #1
Research Data Shared Service Webinar #1Research Data Shared Service Webinar #1
Research Data Shared Service Webinar #1
 
Module 6 rev
Module 6 revModule 6 rev
Module 6 rev
 
Item i ia e. glo-sis development - yusuf yigini, fenny van egmond
Item i ia e. glo-sis development - yusuf yigini, fenny van egmondItem i ia e. glo-sis development - yusuf yigini, fenny van egmond
Item i ia e. glo-sis development - yusuf yigini, fenny van egmond
 
Introducing INSPIRE - July 2013
Introducing INSPIRE - July 2013Introducing INSPIRE - July 2013
Introducing INSPIRE - July 2013
 
Cordaid opening up - caroline kroon
Cordaid opening up - caroline kroonCordaid opening up - caroline kroon
Cordaid opening up - caroline kroon
 
Cordaid Opening Up - Caroline Kroon
Cordaid Opening Up - Caroline KroonCordaid Opening Up - Caroline Kroon
Cordaid Opening Up - Caroline Kroon
 
Cordaid opening up caroline kroon
Cordaid opening up caroline kroonCordaid opening up caroline kroon
Cordaid opening up caroline kroon
 
ITEM 1. Progress - GloSIS Implementation, GloSIS Vision - Yusuf Yigini
ITEM 1. Progress - GloSIS Implementation, GloSIS Vision - Yusuf YiginiITEM 1. Progress - GloSIS Implementation, GloSIS Vision - Yusuf Yigini
ITEM 1. Progress - GloSIS Implementation, GloSIS Vision - Yusuf Yigini
 
Open Access Progress and Promise in the CGIAR Consortium
Open Access Progress and Promise in the CGIAR ConsortiumOpen Access Progress and Promise in the CGIAR Consortium
Open Access Progress and Promise in the CGIAR Consortium
 
Privacy Impact Assessment Management System (PIAMS)
Privacy Impact Assessment Management System (PIAMS) Privacy Impact Assessment Management System (PIAMS)
Privacy Impact Assessment Management System (PIAMS)
 

More from EDINA, University of Edinburgh

We have the technology... We have the data... What next?
We have the technology... We have the data... What next?We have the technology... We have the data... What next?
We have the technology... We have the data... What next?EDINA, University of Edinburgh
 
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...EDINA, University of Edinburgh
 
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...EDINA, University of Edinburgh
 
Managing your Digital Footprint : Taking control of the metadata and tracks a...
Managing your Digital Footprint : Taking control of the metadata and tracks a...Managing your Digital Footprint : Taking control of the metadata and tracks a...
Managing your Digital Footprint : Taking control of the metadata and tracks a...EDINA, University of Edinburgh
 
Social media and blogging to develop and communicate research in the arts and...
Social media and blogging to develop and communicate research in the arts and...Social media and blogging to develop and communicate research in the arts and...
Social media and blogging to develop and communicate research in the arts and...EDINA, University of Edinburgh
 
Enhancing your research impact through social media - Nicola Osborne
Enhancing your research impact through social media - Nicola OsborneEnhancing your research impact through social media - Nicola Osborne
Enhancing your research impact through social media - Nicola OsborneEDINA, University of Edinburgh
 
Social Media in Marketing in Support of Your Personal Brand - Nicola Osborne
Social Media in Marketing in Support of Your Personal Brand - Nicola OsborneSocial Media in Marketing in Support of Your Personal Brand - Nicola Osborne
Social Media in Marketing in Support of Your Personal Brand - Nicola OsborneEDINA, University of Edinburgh
 
Best Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
Best Practice for Social Media in Teaching & Learning Contexts - Nicola OsborneBest Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
Best Practice for Social Media in Teaching & Learning Contexts - Nicola OsborneEDINA, University of Edinburgh
 
Introduction to Edinburgh University Data Library and national data services
Introduction to Edinburgh University Data Library and national data servicesIntroduction to Edinburgh University Data Library and national data services
Introduction to Edinburgh University Data Library and national data servicesEDINA, University of Edinburgh
 
Digimap for Schools: Introduction to an ICT based cross curricular resource f...
Digimap for Schools: Introduction to an ICT based cross curricular resource f...Digimap for Schools: Introduction to an ICT based cross curricular resource f...
Digimap for Schools: Introduction to an ICT based cross curricular resource f...EDINA, University of Edinburgh
 

More from EDINA, University of Edinburgh (20)

The Making of the English Landscape:
The Making of the English Landscape: The Making of the English Landscape:
The Making of the English Landscape:
 
Spatial Data, Spatial Humanities
Spatial Data, Spatial HumanitiesSpatial Data, Spatial Humanities
Spatial Data, Spatial Humanities
 
Land Cover Map 2015
Land Cover Map 2015Land Cover Map 2015
Land Cover Map 2015
 
We have the technology... We have the data... What next?
We have the technology... We have the data... What next?We have the technology... We have the data... What next?
We have the technology... We have the data... What next?
 
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
 
GeoForum EDINA report 2017
GeoForum EDINA report 2017GeoForum EDINA report 2017
GeoForum EDINA report 2017
 
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
 
Moray housemarch2017
Moray housemarch2017Moray housemarch2017
Moray housemarch2017
 
Uniof stirlingmarch2017secondary
Uniof stirlingmarch2017secondaryUniof stirlingmarch2017secondary
Uniof stirlingmarch2017secondary
 
Uniof glasgow jan2017_secondary
Uniof glasgow jan2017_secondaryUniof glasgow jan2017_secondary
Uniof glasgow jan2017_secondary
 
Managing your Digital Footprint : Taking control of the metadata and tracks a...
Managing your Digital Footprint : Taking control of the metadata and tracks a...Managing your Digital Footprint : Taking control of the metadata and tracks a...
Managing your Digital Footprint : Taking control of the metadata and tracks a...
 
Social media and blogging to develop and communicate research in the arts and...
Social media and blogging to develop and communicate research in the arts and...Social media and blogging to develop and communicate research in the arts and...
Social media and blogging to develop and communicate research in the arts and...
 
Enhancing your research impact through social media - Nicola Osborne
Enhancing your research impact through social media - Nicola OsborneEnhancing your research impact through social media - Nicola Osborne
Enhancing your research impact through social media - Nicola Osborne
 
Social Media in Marketing in Support of Your Personal Brand - Nicola Osborne
Social Media in Marketing in Support of Your Personal Brand - Nicola OsborneSocial Media in Marketing in Support of Your Personal Brand - Nicola Osborne
Social Media in Marketing in Support of Your Personal Brand - Nicola Osborne
 
Best Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
Best Practice for Social Media in Teaching & Learning Contexts - Nicola OsborneBest Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
Best Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
 
SCURL and SUNCAT serials holdings comparison service
SCURL and SUNCAT serials holdings comparison serviceSCURL and SUNCAT serials holdings comparison service
SCURL and SUNCAT serials holdings comparison service
 
Big data in Digimap
Big data in DigimapBig data in Digimap
Big data in Digimap
 
Introduction to Edinburgh University Data Library and national data services
Introduction to Edinburgh University Data Library and national data servicesIntroduction to Edinburgh University Data Library and national data services
Introduction to Edinburgh University Data Library and national data services
 
Digimap for Schools: Introduction to an ICT based cross curricular resource f...
Digimap for Schools: Introduction to an ICT based cross curricular resource f...Digimap for Schools: Introduction to an ICT based cross curricular resource f...
Digimap for Schools: Introduction to an ICT based cross curricular resource f...
 
Digimap Update - Geoforum 2016 - Guy McGarva
Digimap Update - Geoforum 2016 - Guy McGarvaDigimap Update - Geoforum 2016 - Guy McGarva
Digimap Update - Geoforum 2016 - Guy McGarva
 

GEOSS AIP History with Authentication and SSO

  • 1. GEOSS AIP History with Authentication and SSO Prepared by Steven F. Browdy for COBWEB Meeting
  • 2. Introduction • Authentication and SSO first raised in AIP-3 effort: – March – December, 2010 – Included in the Data Sharing Guidelines Working Group activities – Considered research and secondary focus • Authentication and SSO not addressed in AIP-4 effort: – AIP-4 reserved for a special development effort leading to the 2011 GEO Plenary meeting • Authentication and SSO addressed in AIP-5 effort: – May – December, 2012 – Included in the Data Sharing Working Group activities – Considered a priority by the GEO Infrastructure Implementation Board
  • 3. AIP-3 Effort • Suggested by work in the GEO Data Sharing Task Force (DSTF) with the Data Sharing Implementation Guidelines • Avoid GEOSS Common Infrastructure (GCI) impact as much as possible • Avoid heavy impact on data providers • Focused on open standards – Researched OpenID – Researched Shibboleth
  • 4. AIP-3 Effort • Possible strategies considered – Federated solution between data providers – Centralized solution using a GCI component – Both strategies have some impact on the data providers – Needs to work in a programmatic way, as well as interactively with a user • Recommendation – Implement a central GCI component utilizing remote OpenID identity servers – Design appropriate service interfaces to support the interactions between the central GCI component, the GEOSS users, and the GEOSS data providers – Continue to work with DSTF for guidance
  • 5. AIP-5 Effort • User Authentication is a 2012 IIB priority • Goal is to operationalize authentication and SSO in 2013 – Test recommendations during AIP-6 – Engage data providers – Disseminate process for the greater GEOSS architecture • AIP-5 research (continued from AIP-3) – OpenID and SAML2 to be used for authentication and SSO – The idea of a “GEOSS User” is being considered to support data use metrics within GEOSS – Use cases developed
  • 6. AIP-5 Effort • Use cases – Registration for Authentication via OpenID – Registration as OpenID user for Authentication via SAML2 – Organizational user for Authentication via SAML2 – Identification as "GEOSS User" During Registration – OpenID-Protected Data Access via OpenID Authentication – SAML2-Protected Data Access via OpenID Authentication – OpenID-Protected Data Access via SAML2 Authentication – SAML2-Protected Data Access via SAML2 Authentication – Registering and Modifying a New Identity or Service Provider
  • 7. AIP-5 Effort • Recommendations – Federated solution (lightest impact on GCI) – Data provider support for a set of “trusted” OpenID identity servers to be used with SAML2 user management systems • USA has such a list • Discussions planned for INSPIRE list – Authentication is the current primary goal • Access control is a future interest – User interaction is the current primary goal • Programmatic authentication is a future interest