11

Click here to load reader

CILogon 2.0 at REFEDS 30

  • Upload
    jbasney

  • View
    599

  • Download
    0

Embed Size (px)

Citation preview

Page 1: CILogon 2.0 at REFEDS 30

Jim BasneyScott Koranda

CILogon 2.0

This material is based upon work supported by the National Science Foundation under grant numbers 0850557, 0943633, 1053575, 1440609, and 1547268 and by the Department of Energy under award number DE-SC0008597. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the United States Government or any agency thereof.

Page 2: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

Project Goals

❏ CILogon-COmanage Integration❏ VO collaboration management❏ International Interfederation (eduGAIN)❏ Supporting Campus Cyberinfrastructure

(LDAP and SSH Key Management)❏ Levels of Assurance and Multi-factor

Authentication❏ Web Single Sign-On Gateway (IdPoLR,

SAML AA, SAML-OIDC, ORCID)

Page 3: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

Team Members

❏ Jim Basney❏ Terry Fleury❏ Jeff Gaynor❏ Venkat Yekkirala

❏ Heather Flanagan❏ Scott Koranda❏ Benn Oshrin❏ Arlen Johnson

Page 4: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

Science Partners

❏ NANOGrav Physics Frontiers Center

❏ Laser Interferometer Gravitational-Wave Observatory (LIGO)

❏ Data Observation Network for Earth (DataONE)

Page 5: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

Cyberinfrastructure Partners

Page 6: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

SAML SP

OIDC Provider

X.509 CA HSM

OIDC SP

MFA (OATH)

LDAP

COmanage

Identities

MFA Tokens

SSH Keys

Groups

Attributes

SAML AA

User Registry Interface

eduGAIN IdP

Google IdP

Science App

OAuth SP

ORCID IdP

Science App

Science App

Science App

InCommon IdP

Page 7: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

NCSA

NICS

Cloud

COmanage

DBLDAPServer

CILogon Web App X.509 CA

X.509 CA

DB

X.509 CA

HSM

HSM

HSM

CILogon Web App

DB

CILogon Web App

DB

SAML AA

Page 8: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

SAML to OpenID Connect Gateway

❏ Supporting only e-Science clients❏ Client review & approval by CILogon staff❏ Compatible with R&S? New entity category?

❏ User consent based on requested scopes❏ openid, profile, email❏ org.cilogon.userinfo (eppn, affiliation)❏ edu.uiuc.ncsa.myproxy.getcert

(to allow X.509 certificate issuance)❏ VO attributes

Page 9: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

Page 10: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

OpenID Connect Claims

❏ Including eduPerson attributes in OIDC ID Token claims❏ Standard OIDC claims: name and email❏ eduPersonScopedAffiliation❏ Use IANA JSON Web Token Claims

registry?

Page 11: CILogon 2.0 at REFEDS 30

CILogon www.cilogon.org

Thanks!

[email protected]@sphericalcowgroup.com


The RCauth.eu CILogon-like service in the EGI AAI › ~davidg › presentations › RCauth-CI... · 2017-02-08 · •Ability to serve a large pan-European user base without national

The RCauth.eu CILogon-like service in the EGI AAI › ~davidg › presentations › RCauth-CI... · 2017-02-08 · •Ability to serve a large pan-European user base without national

Documents
What will the Sir/i trust framework change for FIM4R? · h"ps://aarc-project.eu Authen4caon and Authorisaon for Research and Collaboraon Hannah Short REFEDS, Vienna What will the

What will the Sir/i trust framework change for FIM4R? · h"ps://aarc-project.eu Authen4caon and Authorisaon for Research and Collaboraon Hannah Short REFEDS, Vienna What will the

Documents
CILogon 2 - conference.eresearch.edu.auconference.eresearch.edu.au/wp-content/uploads/2018/10/1150-Scot… · CILogon 2.0 An Integrated Identity and Access Management Platform for

CILogon 2 - conference.eresearch.edu.auconference.eresearch.edu.au/wp-content/uploads/2018/10/1150-Scot… · CILogon 2.0 An Integrated Identity and Access Management Platform for

Documents
ALCUNI FATTORI CRITICI DEL MARKETING MANAGER · 2018-10-21 · profile 2.0 project 2.0 publish 2.0 r&d 2.0 rate 2.0 recommend 2.0 recruiting 2.0 religion 2.0 remind 2.0 reputation

ALCUNI FATTORI CRITICI DEL MARKETING MANAGER · 2018-10-21 · profile 2.0 project 2.0 publish 2.0 r&d 2.0 rate 2.0 recommend 2.0 recruiting 2.0 religion 2.0 remind 2.0 reputation

Documents
BigData Express: Toward Predictable, Schedulable, and High ...grp-workshop-2019.ucsd.edu/presentations/4_WU-GRP-2019-BigData… · –CILogon-based security (certificate version)

BigData Express: Toward Predictable, Schedulable, and High ...grp-workshop-2019.ucsd.edu/presentations/4_WU-GRP-2019-BigData… · –CILogon-based security (certificate version)

Documents
CILogon · 2017. 11. 21. · Middleware And Grid Interagency Coordination (MAGIC) at SC13 Jim Basney jbasney@ncsa.illinois.edu CILogon This material is based upon work supported by

CILogon · 2017. 11. 21. · Middleware And Grid Interagency Coordination (MAGIC) at SC13 Jim Basney [email protected] CILogon This material is based upon work supported by

Documents
2.0 World: Classroom 2.0, Library 2.0, Research 2.0

2.0 World: Classroom 2.0, Library 2.0, Research 2.0

Documents
Discovery refeds 11

Discovery refeds 11

Technology
46814 TCP T2 SS...T2 Full SpringLamp, 3500K T2 Full SpringLamp, 4100K T2 Full SpringLamp, 5000K 1.5 1.5 1.5 1.5 1.5 1.5 1.5 1.5 1.5 1.5 2.0 2.0 2.0 2.0 2.0 2.0 2.0 2.0 2.0 2.0 550

46814 TCP T2 SS...T2 Full SpringLamp, 3500K T2 Full SpringLamp, 4100K T2 Full SpringLamp, 5000K 1.5 1.5 1.5 1.5 1.5 1.5 1.5 1.5 1.5 1.5 2.0 2.0 2.0 2.0 2.0 2.0 2.0 2.0 2.0 2.0 550

Documents
CILogon 2.0 at 2016 Internet2 Global Summit

CILogon 2.0 at 2016 Internet2 Global Summit

Technology
Networks ∙ Services ∙ People Nicole Harris, GÉANT GN4 Project Update “SA5”, or Identity Stuff REFEDS @ Internet2 Technology Exchange 2015

Networks ∙ Services ∙ People Nicole Harris, GÉANT GN4 Project Update “SA5”, or Identity Stuff REFEDS @ Internet2 Technology Exchange 2015

Documents
CILogon €¦ · CILogon CILogon 2.0 Project 3 year NSF CICI award January 2016 - December 2018 Provide an integrated open source Identity and Access Management (IdAM) platform for

CILogon €¦ · CILogon CILogon 2.0 Project 3 year NSF CICI award January 2016 - December 2018 Provide an integrated open source Identity and Access Management (IdAM) platform for

Documents
REFEDS MET, PEER and MDUI Presentation

REFEDS MET, PEER and MDUI Presentation

Technology
Supporting VOs @SWITCH Are we ready? REFEDS, Oct 2013 Ann Harding ann.harding@switch.ch

Supporting VOs @SWITCH Are we ready? REFEDS, Oct 2013 Ann Harding [email protected]

Documents
Web 2.0, Enterprise 2.0, BI 2.0…

Web 2.0, Enterprise 2.0, BI 2.0…

Documents
OSG All-Hands Meeting 2016 · • Based on CI Connect Platform 10 •Globus Platform [CILogon + InCommon + X509] •Identity Management. •Groups, Projects. •Login Host •Auto

OSG All-Hands Meeting 2016 · • Based on CI Connect Platform 10 •Globus Platform [CILogon + InCommon + X509] •Identity Management. •Groups, Projects. •Login Host •Auto

Documents
CILogon and InCommon: Technical Update

CILogon and InCommon: Technical Update

Technology
One Year of REFEDS Licia Florio, TERENA Internet2 Meeting, Raleigh 2 Oct, 2011

One Year of REFEDS Licia Florio, TERENA Internet2 Meeting, Raleigh 2 Oct, 2011

Documents
AARC Assurance Profiles - Kantara Initiative · FIM4R Paper Security for Collaborating Infrastructures (SCI) REFEDS Working Group AARC Sirtfi v1.0 Published First Round Deployment

AARC Assurance Profiles - Kantara Initiative · FIM4R Paper Security for Collaborating Infrastructures (SCI) REFEDS Working Group AARC Sirtfi v1.0 Published First Round Deployment

Documents
REFEDS Overview

REFEDS Overview

Technology
XLIFF Version 2 - OASIS · • urn:oasis:names:tc:xliff:glossary:2.0 • urn:oasis:names:tc:xliff:fs:2.0 • urn:oasis:names:tc:xliff:metadata:2.0 • urn:oasis:names:tc:xliff:resourcedata:2.0

XLIFF Version 2 - OASIS · • urn:oasis:names:tc:xliff:glossary:2.0 • urn:oasis:names:tc:xliff:fs:2.0 • urn:oasis:names:tc:xliff:metadata:2.0 • urn:oasis:names:tc:xliff:resourcedata:2.0

Documents
November 2016 CILogon 2 - nitrd.gov€¦ · CILogon CILogon 2.0 3 year NSF CICI project January 2016 - December 2018 Provide an integrated open source Identity and Access Management

November 2016 CILogon 2 - nitrd.gov€¦ · CILogon CILogon 2.0 3 year NSF CICI project January 2016 - December 2018 Provide an integrated open source Identity and Access Management

Documents
CILogon 2 - eResearch Australasia Online Conference · 2018. 10. 29. · CILogon 2.0 An Integrated Identity and Access Management Platform for Science Scott Koranda skoranda@sphericalcowgroup.com

CILogon 2 - eResearch Australasia Online Conference · 2018. 10. 29. · CILogon 2.0 An Integrated Identity and Access Management Platform for Science Scott Koranda [email protected]

Documents
Web 2.0 Library 2.0 Librarian 2.0

Web 2.0 Library 2.0 Librarian 2.0

Documents
09 CILogon InCommon Update Basney - GlobusWorld€¦ · University of Virginia University of Washington University of Wisconsin-Madison University of Wisconsin-Milwaukee Utah State

09 CILogon InCommon Update Basney - GlobusWorld€¦ · University of Virginia University of Washington University of Wisconsin-Madison University of Wisconsin-Milwaukee Utah State

Documents
Democracia 2.0 Partidos políticos 2.0 Instituciones republicanas 2.0 Administración gubernamental 2.0 Periodismo 2.0 Medios 2.0 Ciudadanos 2.0

Democracia 2.0 Partidos políticos 2.0 Instituciones republicanas 2.0 Administración gubernamental 2.0 Periodismo 2.0 Medios 2.0 Ciudadanos 2.0

Documents
CILogon and InCommon: Technical Update Jim Basney This material is based upon work supported by the National Science Foundation under grant numbers 0943633

CILogon and InCommon: Technical Update Jim Basney This material is based upon work supported by the National Science Foundation under grant numbers 0943633

Documents
OVERVIEW & UPDATE - Open Identity Exchange · GSMA EFF EEMA IdentityNorth WEF UMA BankID TDL TSCP IDecosystem.org TDL FICAM FIDO OpenID Japan DIAC WAYF REFEDS ABA Task Force on Identity

OVERVIEW & UPDATE - Open Identity Exchange · GSMA EFF EEMA IdentityNorth WEF UMA BankID TDL TSCP IDecosystem.org TDL FICAM FIDO OpenID Japan DIAC WAYF REFEDS ABA Task Force on Identity

Documents
CILogon 2.0 MAGIC SC16

CILogon 2.0 MAGIC SC16

Technology
REFEDS MET, PEER and MDUI

REFEDS MET, PEER and MDUI

Technology