1 / 15

US of A and A Activities

US of A and A Activities. Ken Klingenstein, Director Internet2 Middleware Initiative. Outline. Shibboleth/openSAML National Science Foundation Middleware and Grids PKI in US Trust Models Other – portals, learning management systems, email clients, etc…. Talk two.

gdean
Download Presentation

US of A and A Activities

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. US of A and A Activities Ken Klingenstein, Director Internet2 Middleware Initiative

  2. Outline • Shibboleth/openSAML • National Science Foundation Middleware and Grids • PKI in US • Trust Models • Other – portals, learning management systems, email clients, etc…

  3. Talk two • International Issues and Opportunities • CIMI (Museum Intelligence) • Grids • Trust Models – Shib and PKI • Registries – • for object classes • for virtual organizations • Regular meeting schedule for next year

  4. Shibboleth/OpenSAML update • Code • status and dates • Pilots • libraries, WebCT, early deployment issues, OpenSAML contributions, PKI integration • Longer-term plans • Convergence with PAPI et al, Digital Rights Management, Personal Information Managers, Privacy Management Tools • What Can Go Wrong • IPR, Support, Federation

  5. Code status • v0.7 released November 2002 (note switch to numbering) • v0.7 much easier to install than alpha’s. No Java. • Release issues – platform dependencies, fragile Apache components, binaries vs source, etc… • OpenSAML also released at 0.7 • v0.7 to v0.8 • new features – ARP’s redone, added robustness • timeframes – march 1, 2003 general release • V0.8 to 1.0 – bug fixes and packaging only; spring I2 MM

  6. v0.8 details • Origin: • Standalone handle service • New ARP processing engine • New ways of encoding ARPs, possibly in XACML • Will be incompatible with v0.7 ARP database • Target: • Configurable attribute requestor, leading to user controllable • SHAR backend server as a db, allowing for robustness • Extensible attribute decision mechanisms • Performance tuning

  7. Pilots and short term plans • The library pilots • origins – about 12-15 campuses • targets – EBSCO, Elsevier, OCLC, SFX, JSTOR, Edina, ProQuest • WebCT, and WebAssign • Early deployment issues – kiosks, IP address as an attribute, data center strength code • OpenSAML contributions processing • Next deploy communities – intercampus research groups

  8. WebCT integration • Demo temporarily at (not firewall friendly…) • Provides normative integration approach for gluing bunch of apps together – middleware in a box… • Was relatively easy compared to other CMS (Blackboard) • Raises code base issues…

  9. Longer-term issues • Convergence with PAPI, et al… • calls to start soon, centering around plug-ins to the attribute authority, I think… • Shibboleth the architecture vs Shibboleth the web service • Federated Digital Rights Management • Federated P2P • Privacy Management Systems – see • Personal Information Managers - see

  10. What Can Go Wrong… • Intellectual Property issues consume it… • Support Issues overwhelm… • Federations prove mythical

  11. National Science Foundation Middleware Initiative and Grids • Release 2 out in November – grid patches, early Shib code, LDAP analyzer; Release 3 next April • Integration with Grids – KX.509 CP/CPS, revocation, *.509 tools, OGSI, EDG code base, GGF rant • Inclusion in Release 3 • Why • How • “What side” and what integration

  12. PKI in US • Little campus activities, though those underway continue… • Federal BCA (openSSL) • Higher Ed BCA • Email clients, browsers, directory issues • CREN • Shib PKI Issues

  13. Trust models • InCommon • self-posting account policy • self-posting privacy policy • self-audit • intended to escalate • origin/target issues • Federating Organization Organization

  14. Miscellaneous • Chandler • OKI • uPortal • Liberty • WS-Sec and OASIS standardization…

More Related