IETF 78 Maastricht 27 July 2010 Josh Howlett, JANET(UK)

IETF 78

Maastricht

27 July 2010

Josh Howlett, JANET(UK)

Background Rapid development of trust and identity infrastructure

and services Campus:

LDAP & IdM, 802.1X, EAP, RADIUS, X.509, SAML, Kerberos… National:

JANET Certificate Service (X.509) JANET Roaming Service (AAA / EAP / 802.1X) (eduroam) UK Access Management Federation (SAML).

International: eduroam eduGAIN Grid

Increasingly complex technical landscape. Increasingly demanding user requirements.

Project Moonshot in a slide• Phase 1-3 (Jan Mar 2010)

• Independent technical Feasibility Analysis.• EAP GSS and other initial drafts (IETF & OASIS).• Bar BoF @ IETF 77.

• Phase 4 (April May 2010)• Draft of project plan.• Request BoF @ IETF 78.

• Phase 5 (June July 2010)• Detailed project plan.• Prepare for BoF @ IETF 78.

• Phase 6 (August 2010 August 2011)• http://www.project-moonshot.org/plan

Technology choices

• SAML provides authorisation and attributes.

• GSS-API mechanism for application integration.

• EAP authentication encapsulated in GSS-API to gain existing credential support.

• RADIUS transport provides federation.

Supplicant

EAP lowerLayer(e.g.,

802.11i)

EAP lowerLayer(e.g.,

802.11i)

EAP server

Peer Authenticator EAP server

Network access

EAP method

EAP MSK

Supplicant

AAA AAA

EAP server

Client Server EAP server

GSS-API

Clientapplication

GSS-API

Serverapplication

Moonshot: non-Web SSOEA

EAP MSK

Supplicant

AAA AAA

EAP server

Client Server EAP server

GSS-API

Clientapplication

GSS-API

Serverapplication

Moonshot: non-Web SSO

• draft-howlett-radiussaml-attr• sstc-saml-binding-aaa-draft

• draft-howlett-eap-gss• draft-hartman-gss-eap-naming

• IETF architecture document •sstc-saml-eapgss-sso-draft

Project Moonshot Goals• Standardised technical architecture.

• Production-quality open-source implementation.

• Packaged and shipped with Debian Linux.

• A test-bed for interoperability testing.

• High quality documentation.

• An active community of users and developers.

Discuss!

IETF 78 Maastricht 27 July 2010 Josh Howlett, JANET(UK)

Documents

1 IETF Status at IETF 76 Russ Housley, IETF Chair

Cashore e Howlett (2007)

IETF Status at IETF 76

IETF Status at IETF 70

IETF 112 - IETF LLC Briefing

1 IETF Status at IETF 82 Russ Housley IETF Chair

CCAMP WG, IETF 78th, Maastricht, Netherlands draft-agraz-ccamp-wson-impairment-ospf-00.txt Fernando Agraz (agraz@tsc.upc.edu) Yabin Ye (yabin.ye@huawei.com)

PPSP Protocol Considerations and Tracker Protocol draft-gu-ppsp-tracker-protocol-01 Y. J. Gu, David A. Bryan, Y. Zhang, H. Liao IETF-78 Maastricht, PPSP

IETF 78 Maastricht, Netherlands July 2010 · 2013-04-23 · Tutorial Session Participation Document Lifecycle Sunday, July 25, 2010 – 3:00 – 4:50 Room: 2.1 Colorado 7/25/10 IETF

IETF Report€¦ · About This Presentation This presentation is an official IETF report – This report covers TWO IETFs, IETF 100 and IETF 101 – This is not an in-depth IETF report

draft-ietf-isms-dtls-tm Wes Hardaker ietf@hardakers

1 IETF Status at IETF 78 Russ Housley, IETF Chair

Dimetic 2011 - Maastricht Floortje Alkemadedimetic.dime-eu.org/dimetic_files/lecturesAlkemade.pdf · Dimetic 2011 - Maastricht Floortje Alkemade Dimetic 2011 - Maastricht. Lectures

1 OPSAWG Agenda Items 7,8, 9 Juergen Quittek, John Parello, Benoit Claise 78th IETF Meeting, Maastricht, 2010 7. Energy Management Framework / Architecture

Howlett Clarke

Display ad, Kevin Howlett

Maastricht University Green Office: Student-driven change at Maastricht University

BY: TYLER HOWLETT twh875@mun.ca Team Development

Maastricht Business

Maastricht 2004