1 / 19

Authentication and Authorisation ...

Authentication and Authorisation. … Why they matter Andrew Cox, LITC http://www.sbu.ac.uk/litc/candleathens/. Presentation overview. Benefits of improved authentication/ authorisation Why its difficult Criteria for evaluating solutions Possible solutions. Why they matter. Easy access

knoton
Download Presentation

Authentication and Authorisation ...

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Authentication and Authorisation ... … Why they matter Andrew Cox, LITC http://www.sbu.ac.uk/litc/candleathens/

  2. Presentation overview • Benefits of improved authentication/ authorisation • Why its difficult • Criteria for evaluating solutions • Possible solutions

  3. Why they matter • Easy access • Easier administration • Extension of access • Personalisation and Knowledge Management • Usage statistics and performance indicators • Better licences • Security

  4. Simplifying access • One less obstacle • Integration of services • Save the users’ time • Encourage them to use all the resources available.

  5. Simpler administration • The issuing and revoking passwords, resetting passwords is time consuming • Save librarians time

  6. Extending access • Users in the library • Users in their offices • Users off campus • Users at home • Increase usage • Provide a better service

  7. Personalisation and Knowledge Management • Delivering MyLibrary

  8. Personalisation and Knowledge Management • Delivering MyLibrary

  9. Personalisation and Knowledge Management • Connecting people with similar interests • Building up profiles • Encourage users to use all the resources available • Improve the service

  10. Usage statistics and performance indicators • To know who is using what (at the individual level - or groups) • To know how well we are doing (eg in growing resource usage, or getting value for money) • Better management of resources • Proving the value of our services

  11. Better licences • From the ability to guarantee restrictions of usage to targeted groups • Save money

  12. Security • For secure payments or transactions with budgetary implications • For personal information • Any sort of legally binding communication • Do more work online

  13. Why is it difficult? • Library populations very big, diverse • Multiple systems of authentication, eg on the Web • General lack of standards • Mix of need for strong and weak authentication

  14. Evaluating solutions • Simple for the user • Easy to administer • Acceptable to publisher • Universal • Private • Extensible • Reliable • Cost effective

  15. Some solutions • Today’s case studies • Personal utilities, eg built into browsers • National initiatives such as Athens • Certificates in a PKI • Proxy packages

  16. Ultra*Access

  17. Some issues • Library services should be free - so authentication isnt critical - right? • Is there an issue for public libraries, archives and museums? • Strong authentication is not necessary or practical. • Development can be left to those outside the library sector.

  18. Some (more) issues • Are we happy with simple general licences for a whole institution? • Are the privacy issues entirely solved by legal protection • Separating authentication and authorisation

  19. Yet (more) issues • Out of different forms of biometric authentication, smartcards, LDAP/X.500 directories, XML …. Which look like good bets for solutions. • What human and organisational issues do these technologies raise? • Are we looking for a universal solution or solutions to particular problems

More Related