kalmar2 nordunet2009
DESCRIPTION
Launching Kalmar2, where academic users may log in to services across Nordic bordersTRANSCRIPT
- 1. Kalmar2 The Union is Greater than the Sum of its Parts
- Ingrid Melve, UNINETT CTO NORDUnet2009 September 16 2009, Copenhagen
2. Kalmar Union no 1
- Union of Denmark, Sweden, Norway and parts of Finland (1397 - 1530)
3. The great ruler Queen Margrete the first 4. No wars between us since 1721 5. Kalmar2 offers
- single login with your university user/password
6. use of web resources available in other Nordic countries 7. Nordic integration of authentication systems for education and research 8. students access to services in other countries 9. staff and researchers access to services abroad 10. enhanced services for eScience,education and research 11. What is Kalmar2 collaboration
- Memorandum of Understanding signed by all national research networks and federations
12. Technical requirements
- MUST support SAML2
13. Alignment of attributes Operational issues
- Aggregate metadata and exchange
14. Support same protocol flavor saml2int.org 15. What is special about Kalmar2?
- First large scale international cross-federation for the academic community
16. First cross-federation with support for multiple federation architectures: centralized (Feide), hybrid (WAYF), proxy (Iceland via WAYF) and full distributed mesh (SWAMID, Haka) 17. First public international cross-federation policy 18. First international multi-vendorinterconnections 19. It works! 20. Kalmar2 is for web resources
- eLearning
- Learning Management Services
21. Collaboration services eScience
- Grids
22. Portals 23. Collaboration services Outsourced services
- Web cloud, other cloud
- Library and other information resources
- Databases
24. Citation servers Commercial services
- Student discounts
25. How to Kalmarize a service
- You have a web something, would like to grant access across borders
- Information: what attributes do I need? (anonymous or email, name, unique identifier)
26. Technical: install SAML2.0 software (Shibboleth, simpleSAMLphp or other), upload metadata 27. Administrative: talk to your national federation ... and the users get access from any university in the Nordic area 28. Technical issues
- Web SSO profile
29. Single Log Out 30. Metadata management 31. Signing keys for all involved parties 32. Provide background information about
- Attribute schemas
33. Campus Identity Management policy Support multiple federation architectures
- Multi vendor solution
34. Tested interoperability 35. Current Kalmar2 services
- Foodle (planning meetings, simple polls)
36. OpenWiki (wiki with group support) 37. University of Turku Moodle (e-learning) 38. Feide RnD blog 39. Secure mail (Feide) 40. Attribute release test service (Haka) 41. SWAMID login test service 42. Translation portal for software (Feide) 43. 44. Kalmar2 services (2009)
- Other web sites that plan Kalmar2-integration
- Online dictionarieswww.ordbogen.com
45. NIAS Asia Portal, Nordic Institute for Asian Studies 46. Scientific writing toolwww.scribo.dk 47. Helsinki University LMS: moodle.helsinki.fi 48. Grid in 5 min: Short Lived Certificate Service, federation login granting GRID certificates 49. Kalmar2
- Easy access to Nordic services from any other participating party
50. Based on existing infrastructure
- Use passwords across borders
51. Reuse federation infrastructure How to use (end user perspective)
- Go to service
52. Get directed to your university 53. Log in with your local username/password 54. Access is granted, you are happy 55. 56. 57. 58. 59. Why Kalmar2
- Strengthen Nordic collaboration, based on existing infrastructure
60. User friendly and privacy preserving 61. Nordic infrastructure for eScience 62. Sharing resources 63. We are blazing the path! 64. User friendly, with privacy
- Tested and tried user friendly login
- 6 years operational practice
65. extensive user interface testing Building on existing infrastructure
- Federations and local Identity Management
Existing username/password
- Local username from your home university
66. Best practice for Identity Management 67. Nordic infrastructure for eScience
- Shared resources
- GRID infrastructure
68. e-learning 69. portals Nordic institutes and Nordic Master Studies
- Cross-border access
eScience across borders
- Collaboration
70. Sharing resources
- Federation infrastructures
- SWAMID, WAYF, Haka, Feide
Preparing the ground for cloud computing
- Same infrastructure support for outsourced and local services
71. Security domains and identity domains overlap Making most of our resources
- Nordic area is a clever little playerin the scientific field
72. Why not global interconnects?
- Europe may follow Kalmar2
- eduGAIN or eduID
High requirements for local identity management
- We are used to talking together
73. We know we can agree on policy We are blazing the path
- Not all federations have our experience
74. Not all federations arewilling to interconnect 75. Building critical infrastructure
- www.kalmar2.org
76. Questions and remarks
- [email_address]
77. [email_address] Thank you to Nordforsk who supported Kalmar2 78. Next steps
- You go back home and kalmarize your resources
79. We share resources