{"id":602,"date":"2009-11-23T16:26:47","date_gmt":"2009-11-23T15:26:47","guid":{"rendered":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/2009\/11\/fam09\/"},"modified":"2009-11-24T22:51:41","modified_gmt":"2009-11-24T21:51:41","slug":"fam09","status":"publish","type":"post","link":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/2009\/11\/fam09\/","title":{"rendered":"FAM09"},"content":{"rendered":"<p>For the next couple of days I&#8217;m at FAM09 &#8211; a JISC event about Federated Access Management. <\/p>\n<p>First up Peter Tison (UCISA), and Sarah Marsh (SCONUL) on &#8220;Identity and Access as UK Priority&#8221;. Peter summarising the move towards federated access management in the UKHE sector over the last few years. JISC outlined a road map, acknowledged the need for institutional effort\/resource.<\/p>\n<p>There is still very little implementation of federated access (says Peter) &#8211; why?<\/p>\n<ul>\n<li>Lack of external resources <\/li>\n<li>Lack of internal resources <\/li>\n<li>Athens is still there &#8230; <\/li>\n<\/ul>\n<p>JISC review April 2009 &#8211; about half institutions using Shibboleth and half OpenAthens (small numbers other).<\/p>\n<p>Within the library Federated Access opens possibility of:<\/p>\n<ul>\n<li>Shared services <\/li>\n<li>Saving money by targetting subscriptions on specific user groups <\/li>\n<li>Integration with OpenID? <\/li>\n<\/ul>\n<p>Across the institution Federated Access could:<\/p>\n<ul>\n<li>Give access to internal systems and external resources <\/li>\n<li>Access to 3rd party s\/w <\/li>\n<li>Access to internal resources from off site <\/li>\n<li>Seamless access to external resources <\/li>\n<\/ul>\n<p>So &#8211; Peter says what we need now is:<\/p>\n<ul>\n<li>Clear strategic message <\/li>\n<li>A benefits\/impact analysis <\/li>\n<li>A longer road map:\n<ul>\n<li>solid identity management platform <\/li>\n<li>first step as an Athens replacement &#8211; but it is more than this <\/li>\n<li>identify the internal benefits of single sign-on <\/li>\n<li>linking to external resources <\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p>Some questions around granularity of access to resources &#8211; not necessarily good thing for library resources &#8211; however is essential for other types of resources &#8211; e.g. finance systems<\/p>\n<p><strong>Second up, International developments by Josh Howlett (Janet)<\/strong>.<\/p>\n<p>Now many different federations internationally. However, can have different policies for different data elements &#8211; e.g. fallow period for reuse of EduPerson principal name. There are now quite a few projects\/intitiatives looking at how you can work across these different federations &#8211; e.g. Kantara Initiative &#8211; cross-sector identity initiatives<\/p>\n<p>Geant &#8211; a consortium of all the European national networks. 37 participating countries. \u00a3200million euros over 4 years &#8211; big initiatives. Geant is concerned about connecting national networks &#8211; not at an institution level generally. eduGAIN is one part of Geant.<\/p>\n<p>eduGAIN goals<\/p>\n<ul>\n<li>enable interoperability between national federations by undertaking the necessary technical and policy coordination <\/li>\n<li>To build on this interoperability <\/li>\n<\/ul>\n<p>eduGAIN pilot service use cases:<\/p>\n<ul>\n<li>eduGAIN &#8211; <a href=\"http:\/\/www.edugain.org\">www.edugain.org<\/a> <\/li>\n<li>eduroam &#8211; <a href=\"http:\/\/www.eduraom.org\">www.eduraom.org<\/a> <\/li>\n<li>Clarin &#8211; <a href=\"http:\/\/www.clarin.eu\">www.clarin.eu<\/a> <\/li>\n<li>Geant <\/li>\n<\/ul>\n<p>What will it provide me with?<\/p>\n<ul>\n<li>Identity providers: obtain access to services regiestered in other federations <\/li>\n<li>Service provider: provide access to identities issued by providers registered in other federations <\/li>\n<li>Eurpoe-scale reach at a zero to modest expenditure of effort <\/li>\n<\/ul>\n<p>What should I do?<\/p>\n<ul>\n<li>ensure national federation is aware of your interestedt <\/li>\n<li>prepare for SAML 2.0 <\/li>\n<li>Be ready for October 2010 <\/li>\n<\/ul>\n<p><strong>Finally before coffee Mark Cross about commercial developments<\/strong><\/p>\n<p>Mark is from OpenID UK.<\/p>\n<p>The institution you are a member of today is only one part of your identity<\/p>\n<p>Roadmap for OpenID:<\/p>\n<ul>\n<li>OpenID v1\n<ul>\n<li>SSO &amp; Delegation <\/li>\n<\/ul>\n<\/li>\n<li>OpenID v2\n<ul>\n<li>attribute exchange <\/li>\n<li>PAPE &#8211; Provider Authentification Policy Extension <\/li>\n<\/ul>\n<\/li>\n<li>OpenID v3\n<ul>\n<li>Contract Exchange Extension Working Group <\/li>\n<li>Increased Security <\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p>Delegation!<\/p>\n<p>OpenID going forward. Recent meeting agreed to work on:<\/p>\n<ul>\n<li>Integration of OAuth Hybrid into core specifications <\/li>\n<li>Looking at supporting email as well as web address (Mark Cross felt this was a divergence from original vision of OpenID) <\/li>\n<\/ul>\n<p>Big likely implementers of OpenID in the UK &#8211; the Telegraph and the BBC<\/p>\n<p>Identity Management is important in its support of a Knowledge Society.<\/p>\n<div style=\"padding-bottom: 0px; margin: 0px; padding-left: 0px; padding-right: 0px; display: inline; float: none; padding-top: 0px\" id=\"scid:0767317B-992E-4b12-91E0-4F059A8CECA8:670dd253-c5d0-4157-a048-d9d8ffd59af5\" class=\"wlWriterEditableSmartContent\">IceRocket Tags: <a href=\"http:\/\/blogs.icerocket.com\/search?q=fam09\" rel=\"tag\">fam09<\/a><\/div>\n","protected":false},"excerpt":{"rendered":"<p>For the next couple of days I&#8217;m at FAM09 &#8211; a JISC event about Federated Access Management. First up Peter Tison (UCISA), and Sarah Marsh (SCONUL) on &#8220;Identity and Access as UK Priority&#8221;. Peter summarising the move towards federated access management in the UKHE sector over the last few years. JISC outlined a road map, [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[37],"class_list":["post-602","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-fam09"],"_links":{"self":[{"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/posts\/602","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/comments?post=602"}],"version-history":[{"count":1,"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/posts\/602\/revisions"}],"predecessor-version":[{"id":616,"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/posts\/602\/revisions\/616"}],"wp:attachment":[{"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/media?parent=602"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/categories?post=602"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.meanboyfriend.com\/overdue_ideas\/wp-json\/wp\/v2\/tags?post=602"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}