Upload File

17 th tf-emc2. lyon, february 2011 on the many ways to identity exchange d i g i t a l i d e n t i t...

  • Home
  • Documents
  • 17 th TF-EMC2. Lyon, February 2011 On the Many Ways to Identity Exchange D i g i t a l i d e n t i t i e s a r e m o r e v a l u a b l e a s t h e y a
8
17 th TF-EMC2. Lyon, February 2011 Diego R. Lopez, RedIRIS

Post on 18-Dec-2015

216 views

Category:

Documents


2 download

Report

Tags:

TRANSCRIPT

Page 1: 17 th TF-EMC2. Lyon, February 2011 On the Many Ways to Identity Exchange D i g i t a l i d e n t i t i e s a r e m o r e v a l u a b l e a s t h e y a

17th TF-EMC2. Lyon, February 2011

On the Many Ways to Identity Exchange

Digital identities are more valuable

as they are more widely assertable

Diego R. Lopez, RedIRIS

Page 2: 17 th TF-EMC2. Lyon, February 2011 On the Many Ways to Identity Exchange D i g i t a l i d e n t i t i e s a r e m o r e v a l u a b l e a s t h e y a

17th TF-EMC2. Lyon, February 2011

The Open Fronts

• Life beyond SAML OpenID and “Identity 2.0” OAuth and JWT

• Seeking for meeting points eIRG STORK eduGAIN, PEER, MDX, … AAI convergence and STS efforts

• Sort of Proxying Inner access: TERENA SPP Outer access: Proposal to REFEDS

Page 3: 17 th TF-EMC2. Lyon, February 2011 On the Many Ways to Identity Exchange D i g i t a l i d e n t i t i e s a r e m o r e v a l u a b l e a s t h e y a

17th TF-EMC2. Lyon, February 2011

The twodotosphere

• MACE’s WG on OpenID https://spaces.internet2.edu/display/OpenID/Home Guidance, toward some degree of standardization Examine the demand for, and applicability of,

SAML/OpenID gateways

• Integrating identities both ways Logins4Life Social authsources social2saml.org SIR-enabled Facebook groups Social discovery services

Page 4: 17 th TF-EMC2. Lyon, February 2011 On the Many Ways to Identity Exchange D i g i t a l i d e n t i t i e s a r e m o r e v a l u a b l e a s t h e y a

17th TF-EMC2. Lyon, February 2011

Tokens and token formats

• OAuth2 consolidating Several rather mature I-Ds making their way up in IETF And proposals based on it

• UMA, inside Kantara• REST token-based access, inside GN3

• JWT: JSON Web Token Intended for space constrained environments

• HTTP Authorization headers• URI query parameters

Simpler to code and parse

• OAuth2 AP: http://www.rediris.es/oauth2/• JWT: Proof-of-concept for SIR-REST integration

Page 5: 17 th TF-EMC2. Lyon, February 2011 On the Many Ways to Identity Exchange D i g i t a l i d e n t i t i e s a r e m o r e v a l u a b l e a s t h e y a

17th TF-EMC2. Lyon, February 2011

Higher Convergence

• STORK progressing Proposal for making EC services STORK-aware Seeking for new use cases in academic space Lever for integration with governmental infrastructures

• eIRG on AAIs Convergence in academic space a key issue Federations as the main enablers Integration with the wider Internet A long way to go, policy-wise Acknowledgement to TERENA and REFEDS role

Page 6: 17 th TF-EMC2. Lyon, February 2011 On the Many Ways to Identity Exchange D i g i t a l i d e n t i t i e s a r e m o r e v a l u a b l e a s t h e y a

17th TF-EMC2. Lyon, February 2011

Lower Convergence

• Metadata aggregators PEER (not) vs. eduGAIN

• Several services integrating federations and Grid PKIs Watch Chris’ talk on this

• Convergence at the WS level: STS SURFNet experiments and CLARIN interest EMI-EGI initiative GEMBus STS (soon to be demonstrated) EUGridPMA to explore policy aspects

Page 7: 17 th TF-EMC2. Lyon, February 2011 On the Many Ways to Identity Exchange D i g i t a l i d e n t i t i e s a r e m o r e v a l u a b l e a s t h e y a

17th TF-EMC2. Lyon, February 2011

The Identity Swiss Knives

• Proxying is a wide concept that can address solutions to a wide variety of issues

• Simplify management See Dick’s talk

• Increase federation usage The most usual application

• Boost privacy Only provide an IP to access resources

• Enhance user experience Resolvers and deep-linking

• Expanding applicability WS-based interfaces and non-Web clients

Page 8: 17 th TF-EMC2. Lyon, February 2011 On the Many Ways to Identity Exchange D i g i t a l i d e n t i t i e s a r e m o r e v a l u a b l e a s t h e y a

17th TF-EMC2. Lyon, February 2011

A Proposal for REFEDS Funding

• The goals Remote federated proxy administration Centralized configuration of proxy meshes Non-Web clients in third party WS environments Neutral link resolution and deep linking

• The technologies EZProxy Apache2 proxy capabilities

• The players: WAYF and RedIRIS


D I S T R I C T N E W S L E T T E R

4 i Q I D T h e f t ™ D a t a s h e e t 4 i Q I D T h e f ...€¦ · 4 i Q I D T h e f t ™ D a t a s h e e t T h e l a s t f e w y e a r s h a v e s e e n a n i n c r e a s i

E xpe c t h i gh e r , mor e i n t r i c a t e t r i c k s

“T e s t I n g E I n s t e I n ’ s U n I v e r s e”

OUR OFFICE! M e t t i c ’b m J t e f t r f i i e f June/… · t IN RARITAN TOW NHRI I- t M e t t i c ’b m J t e f t r f i i e f . OUR OFFICE! ... comparison of views ... titled

E C Ty p e - E x a m i n a t i o n C e r t i f i c a t e · T h i s c e r t i f i c a t e re m a i n s t h e p ro p e r ty o f T h e B r i t i s h S t a n d a rd s In s t i t u t

T R A C A B I L I T E S T A T I O N D E C O N D I T I O …T R A C A B I L I T E S T A T I O N D E C O N D I T I O N N E M E N T F R U I T S & L E G U M E S N E X T A G A D I R - Z

I B A H R I N E 7 T H E I N T E R N E T

W e b s i t e A u t h e n t i c a t i o n C e r t i f i c a t e s...1 9 0 3 0 5 R e du c e d t h e v a l i di t y p e r i o d i n E l e c t r o n i c O f f i c e C e r t i f i c a

# W E A R E R E S I L I E N T T O O L K I T

I N T E R N E T I

F R E E T I M E A C T I V I T I E S

I N T E R N I - E S T E R N I

D E V O T E D T O T i J E . U I S T R A T I O H O f S P I ... · d e v o t e d t o t i j e . u i s t r a t i o h o f s p i r i t u a l i n t e r c o u r s e . t h s agitation of thought

C O S M E T I C I N T E R E S T Q U E S T I O N N A I R E

E l e c t r i c a l C e n t e r I d e n t i f i c a t i o

U n i t e d S t a t e S i n S t i t U t e o f P e a c e ... · Daniel Serwer and managed by Beth C. DeGrasse ... U n i t e d S t a t e S i n S t i t U t e o f P e a c e ... Williams

C O N T E N T T H E I N T E R V I E W - simef.it

T i t l e I

E C Ty p e - E x a m i n a t i o n C e r t i f i c a t e · 2016. 12. 21. · T h i s c e r t i f i c a t e re m a i n s t h e p ro p e r ty o f T h e B r i t i s h S t a n d a rd

L e c o n t e x t e i n s t i t u t i o n n e l e t a d m

I D E N T I T I E S , H I S T O R I E S T O M U S I C : M

I N S T I T U T E V I S I O N I N S T I T U T E M I S S I

V T T T I E D O T T E I T A

“T e s t I n g E I n s t e I n ’ s U n I v e r s e”

D E D I C A T E D T O S E R V I C E C O M M I T T E D T O

^ h t u / e e t o d e c ' í i i i p / i t i e i é n d e

Anc i e nt G r e e c e : T he r i s e of c i t y -s t a t

D I S C U S S I O N P A P E R 1051 ADDITIVE LOCATION-SCALE … · 2012. 2. 25. · i n s t i t u t d e s t a t i s t i q u e b i o s t a t i s t i q u e e t s c i e n c e s a c t

F i v e T h r e e T w o S i x T h r e e E i g h t

V T T T I E D O T T E I T A - VTT research

I N V E S T M E N T R E A L E S T A T E S P E C I A L I S T S...I N V E S T M E N T R E A L E S T A T E S P E C I A L I S T S _____ All information obtained from Domain Commercial,

E n t i t l e m e n t A P I S p e c i f i c a t i o n...E n t i t l e m e n t A P I S p e c i f i c a t i o n P u b l i s h e r s V e r s i o n 1.0 (Oct 2019) A u d i e n c e Publishers,

T h e t r u t h - w h e n i s i t O K t o l i e

C R E A T I V E E N T E R T A I N M E N T S E R V I C E S1 C R E A T I V E E N T E R T A I N M E N T S E R V I C E S A SPARK ALLIANCE MARKETING COMPANY Devery Holmes, [email protected]