1 / 20

Programme

Programme. TERENA Overview of the middleware initiatives in the European Higher Education What is eduroam: the technology and how to set up eduroam eduroam-in-a-box: a tool to ease eduroam deployment eduroam federation. Eduroam MiniCAMP April 5, 2007

avery
Download Presentation

Programme

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Programme • TERENA • Overview of the middleware initiatives in the European Higher Education • What is eduroam: the technology and how to set up eduroam • eduroam-in-a-box: a tool to ease eduroam deployment • eduroam federation

  2. Eduroam MiniCAMP April 5, 2007 Licia Florio, Paul Dekkers, Rok Papež TERENA, SURFnet, ARNESlicia@terena.orgwww.terena.org Overview of Middleware Developments in Europe

  3. Outline • What is TERENA • European landscape in higher education • TERENA’s role • Why Federated Identity • Federation concepts • A quick look at the future

  4. TERENA Organisation • A not-for-profit association of EuropeanNational Research & Education Networks (since 1986) • NRENs • Secretariat located in Amsterdam (The Netherlands) • 33 National Members • 2 International Members: • CERN, ESA • 10 Associate Members • including DANTE, NORDUnet, equipment vendors and telecoms operators

  5. TERENA Mission • Collaborate • Innovate • Share knowledge • TERENA does not run a network!

  6. TERENA Mission • Represent common interests and opinions of membership • Make political and industrial contacts • Lobby European Union and national governments • Liaise with other continents (e.g. APAN, Internet2, CLARA) • Knowledge Transfer • Conferences TNC: Copenhagen 21 to 24 May 2007 • Vendor demonstrations, new technologies, NREN showcase • Workshops & Seminars • eduroam Minicamp and others • Developing informational, best-practice and training material. • TERENA activities are open to everyone • TERENA community is wider than the TERENA membership • Activities span over different field • See htttp://www.terena.org/activities

  7. TERENA Support to Middleware Deployment • TERENA provides support for the middleware activities: • Via Task Forces (open to anybody) • TF-Mobility • TF-EMC2 • Via services like • Server Certificate Service (SCS) • Schema HArmonisation Committee (SCHAC) • TERENA Academic CA Repository (TACAR) • Workshops • EuroCAMP (Apirl 16-17, Helsinki) • NREN-Grids (June, date and location tbc)

  8. Services: SCS • What is it about? • SCS= Server Certificate Service • To issue server certificates - popup free - unlimited number - Very low price (price is not per certificate) • Already 1400 certificates issued • For whom? • For the National Research and Education Network community in Europe • How did we get there? • Example of Terena interaction with industry for benefit of research networks

  9. What is TACAR • TACAR: TERENA ACAdemic Repository • Offers a way for building a PKI-based web of trust within the European academic community • And beyond • >25 root CA certificates (root of trust for IGTF) • Conceived as a collection of trust-anchors • Based on the principle: • Keep it simple • TACAR is open to: • All NRENs; • National Academic PKI’s in the TERENA member countries; • Non-profit research projects (Grid CA’s)

  10. EuroCAMP • Workshops to promote the use of middleware technologies in the Campuses • Three EuroCAMP workshops took place already • Topics covered: IdM systems and Federations mainly • Very successful • Since June 06 MiniCAMPs • Organised as part of GEANT2/NA4 project • Focused on eduroam • So far three events have been organised

  11. Services: • TF-EMC2 • Harmonise schemas in the field of high education • Complements eduPerson schema from Internet2 • Mainly concerned for inter-institutional data exchange • Needed for interoperability • Which data • What format of data

  12. What is Identity Management • From a global perspective: • Identity Management • Giving each user an electronic identity • Set of technologies and policies to control users access to resources • Can be anything • SQL database • passwd file • LDAP/AD • More needs, more complexities • Kerberos • Web based SSO

  13. The Needs For Federated Identity • Increasing dynamics in the education system • Students can access courses outside their organisation • On-line courses are more common • Users want to access the same services no matter where they are • Grid: example of access to distributed resources • Centralized login • More institutions dealing with the same users means: • Multiple registration of users • Overhead to manage guest users • Increased possibility of error in managing the users’ records • Sharing of user identity • Institutional borders • International borders • User logs in with the same credentials on the same page for every resource

  14. Federations • Enable the sharing of educational resources • Network • Wireless and/or not • Applications • Online learning systems • Require agreement on: • Legal Framework and Policies • Trust • Technology • Security • Common Language • Interoperability

  15. Example of Not Federated Access Learning Material Network Institution Y Account @Inst Y Resources @TERENA User from Inst X Resources @TERENA Resources @Inst X Account @ InstX Institution X

  16. Example of Federated Access Federated Access User Inst X Resources @TERENA Resources @TERENA Resources… Learning Material Network Institution Y Institution X Others

  17. The Building Blocks of Federations webmail Identity Provider Service Provider Service Provider publisher

  18. Federated Access to (Web) Applications • Federations are being developed at national level by the NRENs • Different (open source) solutions are used • Shibboleth: UK, Finland, Switzerland • PAPI: Spain • A-Select: the Netherlands • Sun Federation Manager based upon Liberty Alliance specification: Norway • All these solutions are now inter-operable • eduGain • They all recognize Security Assertion Markup Language (SAML) as “the standard” to transfer information (assertions) among each other

  19. Federated Network Access • Eduroam tests started in TF-Mobility • Excellent example of a confederation

  20. Conclusions • Federations are the future • Campuses/universities need to be involved • Deploying IdMs is the first step to make life easier • The campuses need to talk to their NRENs • There will not be one unique multipurpose federation • Different federations to fit different communities • TERENA wants to promote cooperation and help the campuses to deploy middleware

More Related