Your current filters are…
by Chris Hyzer and Bill Thompson
Grouper, a project of the Internet2 Middleware Initiative, is a critical component of an open source identity and access architecture. Built by and for higher education, Grouper's access management and provisioning capabilities are uniquely suited to address the complexity and flexibility required by the modern institution. This session will be an introduction to Grouper. We will complement a discussion of Groupers concepts, features, capabilities, and usage scenarios with hands-on activities. Come learn what Grouper can do for your campus!
CIFER (Community Identity Framework for Education and Research) is an ambitious initiative sponsored by Kuali and Internet2 to create and promote a comprehensive, community-based approach to identity and access management (IAM) in higher education. This session provides an overview of CIFER to date. Work has been proceeding in parallel tracks with teams made up of technical and functional experts drawn from Kuali, Internet2 and higher education institutions across North America. Work in progress will be featured from the Identity Registries Team, the Provisioning and Integration Team and the Authentication and Credential Management Team. The presentation will highlight the ways in which CIFER is focused on solutions to real-world campus problems of IAM integration including the challenging tasks of authentication, authorization, provisioning and de-provisioning for cloud services.
by Benjamin Oshrin
Virtual Organizations (VOs) consists of participants from multiple real organizations, such as universities. Collaborators come together for a period of time and a specific purpose, often (but not exclusively) to perform research, leveraging tools such as wikis, mailing lists, and calendars. VOs have identity management requirements varying from fairly simple to wildly complex, usually leveraging federated or social identity.
COmanage provides a tool for the identity management needs of VOs. This session will introduce COmanage and its capabilities, including how onboarding of new collaborators can be standardized and simplified, and how COmanage can be the core of a Collaboration Management Platform.
Most universities deal with multiple systems of record for identities - HR, student systems, alumni systems, etc. Many campuses have developed home-grown identity match tools to reconcile the same identity from more than one system of record. Higher Education has yet to produce a generic, community source identity match engine that can be used at multiple institutions. Such a generic ID match engine is one goal of the CIFER project, and UC Berkeley has made considerable investment in this goal. This presentation will describe the ID Match engine, the CIFER ID Match API, integration between the ID Match Engine and Open Registry, and administrative interfaces for resolving fuzzy matches. The goal is to submit this project as an Apereo incubation project during calendar year 2013, and hopefully recruit additional campuses to support the migration of this ID Match engine to a community project.
by Mike Grady
The National Strategy for Trusted Identities in Cyberspace (NSTIC) initiative has a goal of advancing the "vision that individuals and organizations adopt secure, efficient, easy-to-use, and interoperable identity credentials to access online services in a way that promotes confidence, privacy, choice and innovation." The Internet2 Scalable Privacy Project (ScalePriv) has received funding from NSTIC to pursue several major thrusts around identity and privacy, including a focus on:
This session will provide an update on all of the activities happening within those project areas, and on the NSTIC effort in general. The presenter is helping to coordinate many of the project activities within the ScalePriv project.
by Benjamin Oshrin
The InCommon Identity Assurance Profiles (IAPs) are designed to provide a mechanism by which service providers can have more confidence in the integrity of the authentication services they rely on, especially in a federated environment. The InCommon Bronze and Silver Profiles have been approved for Federal LOA1 and LOA2 assurance.
This session will provide an overview of the IAPs, an update on recent developments, a discussion of what impacts compliance may have on your IT infrastructure, and a preview of what service providers may introduce assurance requirements in the future.
2nd–7th June 2013