207 © SWITCH AI Introductory Tutorial Patrik Schnellmann, schnellmann@switch.ch Thomas Lenggenhager, lenggenhager@switch.ch 207 © SWITCH 2AI Resource Workshop - 13.06.207, Lausane AI is the Key! Authentication and Authorization Infrastructure AAI = AuthN & AuthZ 207 © SWITCH 3AI Resource Workshop - 13.06.207, Lausane University A Library B University C Without AI Student Admin Web Portal e-Learning Literature DB e-Learning Research DB Authorization User Administration Authentication Resource •Tedious user registration at al resources •Unreliable and outdated user data at resources •Diferent login proceses •Many diferent paswords •Many resources not protected due to difficulties •Often IP-based authorization •Costly implementation of inter-institutional aces e-Journals Credentials 207 © SWITCH 4AI Resource Workshop - 13.06.207, Lausane University A Library B University C AI With AI Student Admin Web Portal e-Learning Literature DB e-Learning Research DB Authorization User Administration Authentication Resource Credentials •No user registration and user data maintenance at resource neded •Single login proces forthe users •Many new resources available for the users •Enlarged user comunities for resources •Authorization independent of location •Efficient implementation of inter-institutional aces e-Journals 207 © SWITCH 5AI Resource Workshop - 13.06.207, Lausane Shiboleth •Open Source •Developed by Internet2 •Federated approach •Privacy •National deployments in the CH, FI, FR, UK and US •Currently for web resources only •Based on SAML •Liberty Alliance also based on SAML •Growing interest from content providers, e-journal publishers htp:/shiboleth.internet2.edu 207 © SWITCH 6AI Resource Workshop - 13.06.207, Lausane What is a Federation? Resource Service Provider Existing trust & comon rules Federation Home Organization Identity Provider 207 © SWITCH 7AI Resource Workshop - 13.06.207, Lausane Federated Identity Management •Existing digital identity can be used •also outside the own home organization •for authentication •and authorization •Service Providers trust the Identity Management at the users Home Organization 207 © SWITCH 8AI Resource Workshop - 13.06.207, Lausane Demo: Try it yourself •http://www.switch.ch/aai/demo/ ! click on «demo resource» use Home Organization:AAI Test Home Organization use Username:demouser use Password:demo •with a personal AAI account, use this URL: https:/ai-viewer.switch.ch/ai/ and choose your Home Organization 207 © SWITCH 9AI Resource Workshop - 13.06.207, Lausane Demo 207 © SWITCH 10AI Resource Workshop - 13.06.207,...
Website: www.switch.ch | Filesize: 1926kb
No of Page(s): 16
Download AAI Introductory Tutorial.pdf
No comments:
Post a Comment