SlideShare uma empresa Scribd logo

CILogon 2.0 MAGIC SC16

J
jbasney

a CILogon 2.0 update presented during SC16 in the Middleware And Grid Interagency Coordination (MAGIC) session (Nov 15 2016)

Tecnologia
1 de 18
Baixar para ler offline
Jim Basney jbasney@ncsa.illinois.edu November 2016 CILogon 2.0 This material is based upon work supported by the National Science Foundation under grant numbers 0850557, 0943633, 1053575, 1440609, and 1547268 and by the Department of Energy under award number DE-SC0008597. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the United States Government or any agency thereof.
CILogon www.cilogon.org CILogon 2.0 ❏ 3 year NSF CICI project ❏ January 2016 - December 2018 ❏ Provide an integrated open source Identity and Access Management (IdAM) platform for cyberinfrastructure ❏ CILogon: federated identity management ❏ COmanage: collaborative organization management ❏ Support international collaborations
CILogon www.cilogon.org CILogon 2.0 Team ❏ Jim Basney ❏ Terry Fleury ❏ Jeff Gaynor ❏ Venkat Yekkirala ❏ Heather Flanagan ❏ Scott Koranda ❏ Benn Oshrin ❏ Arlen Johnson
CILogon www.cilogon.org CILogon OSG CA ❏ Entered production January 2016 ❏ CA policy accredited by IGTF ❏ Passed XSEDE Operations Acceptance ❏ Transitioned OSG CA to use CILogon infrastructure operated by XSEDE ❏ Sharing Hardware Security Modules between CILogon and XSEDE ❏ Integrated with OSG registration process ❏ Using new CILogon HTTPS API for issuance of certificates by OSG front-end
CILogon www.cilogon.org SAML to OpenID Connect (OIDC) Gateway ❏ Entered production January 2016 ❏ Supporting e-Science clients ❏ Review & approval by CILogon staff ❏ User consent based on requested scopes ❏ openid, profile, email ❏ org.cilogon.userinfo (eppn, affiliation) ❏ edu.uiuc.ncsa.myproxy.getcert (to allow X.509 certificate issuance) ❏ VO attributes www.cilogon.org/oidc
CILogon www.cilogon.org CILogon User Consent
CILogon www.cilogon.org ❏ In February 2016, Globus began listing InCommon IdPs directly, rather than as “alternate login” option ❏ InCommon / CILogon use doubled! Encouraging Federated Logins
CILogon www.cilogon.org CILogon-enabled Apps ❏ ATLAS Connect ❏ CMS Connect ❏ DataONE ❏ DOE KBase ❏ Duke CI Connect ❏ Fermilab ❏ Globus ❏ IU CI Gateway ❏ LIGO ❏ OOI ❏ OSC OnDemand ❏ OSG Connect ❏ SeedMe ❏ XSEDE New New
CILogon www.cilogon.org Supporting Fermilab ❏ In Summer 2016, Fermilab transitioned to using CILogon for short-lived certificates and retired the Fermilab KCA ❏ 350+ active Fermilab users in October ❏ Operating an InCommon IdP is easier than operating an IGTF CA ❏ #1 challenge: Hardware Security Modules
CILogon www.cilogon.org Enabling Global Interfederation ❏ Research & Scholarship ❏ https://spaces.internet2.edu/display/InCFede ration/Research+and+Scholarship+Category ❏ Security Contacts in metadata ❏ https://spaces.internet2.edu/display/InCFede ration/Contacts+in+Metadata ❏ Security Incident Response Trust Framework for Federated Identity ❏ https://refeds.org/sirtfi
CILogon www.cilogon.org Supporting Int'l IdPs (Sep 2016) ❏ Thanks to InCommon joining eduGAIN ❏ CILogon policy update approved in July by IGTF ❏ Requiring R&S + Sirtfi www.cilogon.org/news/expanding-idps
CILogon www.cilogon.org User-Driven Problem Resolution
CILogon www.cilogon.org Oct 2016 Problem Report anl.gov berkeley.edu fnal.gov hawaii.edu ligo.org mdanderson.org muohio.edu nih.gov njit.edu okstate.edu sdstate.edu sfsu.edu swmed.edu uah.edu uakron.edu uc.edu ucla.edu uhd.edu unr.edu upenn.edu utdallas.edu utep.edu uvm.edu vt.edu wisc.edu dur.ac.uk gla.ac.uk lancs.ac.uk leeds.ac.uk liv.ac.uk manchester.ac.uk rhul.ac.uk stfc.ac.uk sussex.ac.uk unipv.it
CILogon www.cilogon.org 1. Fermilab 2. LIGO 3. NIH 4. U of Michigan 5. Ohio State 6. Purdue 7. Google 8. UIUC 9. U Chicago 10. UCLA Most Used IdPs - Oct 2016 11. UNL 12. Indiana U 13. U Minnesota 14. U of Colorado 15. U of Cincinnati 16. ANL 17. JHU 18. Yale 19. U Florida 20. UC Berkeley R&S ECP (unique active users per IdP) ECP R&S R&S R&S R&S R&S R&S ECP Sirtfi R&S R&S R&S R&S R&S R&S R&S R&S ECP Sirtfi ECP
CILogon www.cilogon.org All IdPs used - Oct 2016 Fermi National Accelerator Laboratory LIGO Scientific Collaboration National Institutes of Health University of Michigan Ohio State University Purdue University Main Campus Google University of Illinois at Urbana-Champaign University of Chicago University of California-Los Angeles University of Nebraska-Lincoln Indiana University University of Minnesota University of Colorado at Boulder University of Cincinnati Main Campus Argonne National Laboratory Johns Hopkins Yale University University of Florida University of California, Berkeley Lawrence Berkeley National Laboratory University of Southern California Stanford University Michigan State University Cornell University Case Western Reserve University University of Wisconsin-Madison University of Utah The University of Arizona Penn State Carnegie Mellon University University of California-San Diego New York University Montana State University - Bozeman Iowa State University University of Texas at Austin Old Dominion University Northwestern University University of Wyoming University of North Carolina at Chapel Rice University Oak Ridge National Laboratory University of Rochester University of California-Santa Barbara University of Hawaii Massachusetts Institute of Technology Clemson University University of Washington Texas A & M University Princeton University University of California, Davis Tufts University Columbia University Arizona State University West Virginia University University of Notre Dame Rutgers, The State University of New Ohio University Main Campus University of Maryland College Park University of California-Irvine Duke University University of South Dakota University of Iowa Georgia Institute of Technology University of Pittsburgh The George Washington University Oklahoma State University System University of Oklahoma Colorado School of Mines Brown University Vanderbilt University University of Virginia Texas Tech University Stony Brook University Oregon State University Ohio Technology Consortium (OH-TECH) North Carolina State University Colorado State University Boston University University of Nebraska Medical Center University of California, San Francisco Boise State University University of North Carolina At Charlotte University of Illinois at Chicago University of Houston University of Dayton Marshall University Georgetown University California Institute of Technology Baylor College of Medicine University of Missouri System University of California, Riverside University of Arkansas University of Alabama, The Lehigh University Weill Cornell Medical College University of Texas Southwestern Medical Center University of New Mexico United ID Rockefeller University ICER - Mali Florida International University ESnet Woods Hole Oceanographic Institution Virginia Polytechnic Institute and State University Utah State University University of Vermont University of South Carolina University of Pennsylvania University of Nevada, Reno University of Maryland Baltimore University of California, Santa Cruz Texas State University - San Marcos San Diego State University Louisiana State University Lafayette College Kansas State University Brookhaven National Laboratory Worcester Polytechnic Institute Western Michigan University University of Wisconsin-Milwaukee University of Texas at Dallas University of Tennessee University of North Carolina at Greensboro University of Maryland Baltimore County University of Maine System University of Kansas Medical Center University of Kansas University of Houston Libraries University of Delaware University of Alaska Statewide System University of Alabama at Birmingham The Broad Institute of MIT and Stockholms universitet Southern Methodist University South Dakota State University ProtectNetwork National Center for Supercomputing Applications Internet2 Harvey Mudd College Georgia State University George Mason University CERN Cedarville University California State University, Fullerton Brandeis University Boston College Baylor University Augusta University
CILogon www.cilogon.org CILogon Monthly Usage
CILogon www.cilogon.org CILogon 2.0 - Registry Beta ❏ For early adopters of CILogon 2.0 collaboration management (COmanage) ❏ Using upcoming COmanage 1.1 release ❏ Visit www.cilogon.org to sign up Coming soon!
CILogon www.cilogon.org Thanks! jbasney@ncsa.illinois.edu help@cilogon.org

Recomendados

A sore throat or strep throat
A sore throat or strep throatA sore throat or strep throat
A sore throat or strep throatMegan Perkins
 
Sekilas tentang pajak
Sekilas tentang pajakSekilas tentang pajak
Sekilas tentang pajakKppkp Bangil
 
A sore throat or strep throat
A sore throat or strep throatA sore throat or strep throat
A sore throat or strep throatMegan Perkins
 
Applying to Graduate School
Applying to Graduate SchoolApplying to Graduate School
Applying to Graduate SchoolScott Wilson
 
Diseño presentación corporativa SENTIMOTO LTD
Diseño presentación corporativa SENTIMOTO LTDDiseño presentación corporativa SENTIMOTO LTD
Diseño presentación corporativa SENTIMOTO LTDMarcel Molina Valenzuela
 
2012 the second mouse gets the cheese
2012 the second mouse gets the cheese2012 the second mouse gets the cheese
2012 the second mouse gets the cheeseWyoDLC
 
Simulasi spt op2009
Simulasi spt op2009Simulasi spt op2009
Simulasi spt op2009Kppkp Bangil
 
Dolly powerpoint
Dolly powerpoint Dolly powerpoint
Dolly powerpoint dollygoo
 

Recomendados

A sore throat or strep throat
A sore throat or strep throatA sore throat or strep throat
A sore throat or strep throatMegan Perkins
 
Sekilas tentang pajak
Sekilas tentang pajakSekilas tentang pajak
Sekilas tentang pajakKppkp Bangil
 
A sore throat or strep throat
A sore throat or strep throatA sore throat or strep throat
A sore throat or strep throatMegan Perkins
 
Applying to Graduate School
Applying to Graduate SchoolApplying to Graduate School
Applying to Graduate SchoolScott Wilson
 
Diseño presentación corporativa SENTIMOTO LTD
Diseño presentación corporativa SENTIMOTO LTDDiseño presentación corporativa SENTIMOTO LTD
Diseño presentación corporativa SENTIMOTO LTDMarcel Molina Valenzuela
 
2012 the second mouse gets the cheese
2012 the second mouse gets the cheese2012 the second mouse gets the cheese
2012 the second mouse gets the cheeseWyoDLC
 
Simulasi spt op2009
Simulasi spt op2009Simulasi spt op2009
Simulasi spt op2009Kppkp Bangil
 
Dolly powerpoint
Dolly powerpoint Dolly powerpoint
Dolly powerpoint dollygoo
 
Ptkp
PtkpPtkp
PtkpKppkp Bangil
 
Se 29
Se 29Se 29
Se 29Kppkp Bangil
 
Qui som
Qui somQui som
Qui somIpomea Associació
 
Pitch deck powerpoint
Pitch deck powerpointPitch deck powerpoint
Pitch deck powerpointRobinson Hernandez
 
Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Kppkp Bangil
 
Sosialisasi badan
Sosialisasi badanSosialisasi badan
Sosialisasi badanKppkp Bangil
 
Ten tips to improve your Facebook presence
Ten tips to improve your Facebook presenceTen tips to improve your Facebook presence
Ten tips to improve your Facebook presenceLindsay Nyquist
 
Prabhav services inc
Prabhav services incPrabhav services inc
Prabhav services inchiren2012
 
Science
ScienceScience
Sciencebribri300
 
P ajak
P ajakP ajak
P ajakKppkp Bangil
 
On the farm
On the farmOn the farm
On the farmCristina Arocas
 
CILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global SummitCILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global Summitjbasney
 
走出技术壁垒
走出技术壁垒走出技术壁垒
走出技术壁垒heavenhuang
 
CILogon and InCommon: Technical Update
CILogon and InCommon: Technical UpdateCILogon and InCommon: Technical Update
CILogon and InCommon: Technical Updatejbasney
 
Ten ways to take your hashtags to the next level
Ten ways to take your hashtags to the next levelTen ways to take your hashtags to the next level
Ten ways to take your hashtags to the next levelLindsay Nyquist
 
Misde
MisdeMisde
MisdeWyoDLC
 
Brianna
BriannaBrianna
Briannabribri300
 
CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016jbasney
 
CILogon: An Integrated Identity and Access Management Platform for Science
CILogon: An Integrated Identity and Access Management Platform for ScienceCILogon: An Integrated Identity and Access Management Platform for Science
CILogon: An Integrated Identity and Access Management Platform for Sciencejbasney
 
CILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global SummitCILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global Summitjbasney
 
CILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meetingCILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meetingjbasney
 
CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30jbasney
 

Mais conteúdo relacionado

Destaque

Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Kppkp Bangil
 
Ten tips to improve your Facebook presence
Ten tips to improve your Facebook presenceTen tips to improve your Facebook presence
Ten tips to improve your Facebook presenceLindsay Nyquist
 
Prabhav services inc
Prabhav services incPrabhav services inc
Prabhav services inchiren2012
 
CILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global SummitCILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global Summitjbasney
 
走出技术壁垒
走出技术壁垒走出技术壁垒
走出技术壁垒heavenhuang
 
CILogon and InCommon: Technical Update
CILogon and InCommon: Technical UpdateCILogon and InCommon: Technical Update
CILogon and InCommon: Technical Updatejbasney
 
Ten ways to take your hashtags to the next level
Ten ways to take your hashtags to the next levelTen ways to take your hashtags to the next level
Ten ways to take your hashtags to the next levelLindsay Nyquist
 

Destaque (17)

Ptkp
PtkpPtkp
Ptkp
 
Se 29
Se 29Se 29
Se 29
 
Qui som
Qui somQui som
Qui som
 
Pitch deck powerpoint
Pitch deck powerpointPitch deck powerpoint
Pitch deck powerpoint
 
Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009
 
Sosialisasi badan
Sosialisasi badanSosialisasi badan
Sosialisasi badan
 
Ten tips to improve your Facebook presence
Ten tips to improve your Facebook presenceTen tips to improve your Facebook presence
Ten tips to improve your Facebook presence
 
Prabhav services inc
Prabhav services incPrabhav services inc
Prabhav services inc
 
Science
ScienceScience
Science
 
P ajak
P ajakP ajak
P ajak
 
On the farm
On the farmOn the farm
On the farm
 
CILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global SummitCILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global Summit
 
走出技术壁垒
走出技术壁垒走出技术壁垒
走出技术壁垒
 
CILogon and InCommon: Technical Update
CILogon and InCommon: Technical UpdateCILogon and InCommon: Technical Update
CILogon and InCommon: Technical Update
 
Ten ways to take your hashtags to the next level
Ten ways to take your hashtags to the next levelTen ways to take your hashtags to the next level
Ten ways to take your hashtags to the next level
 
Misde
MisdeMisde
Misde
 
Brianna
BriannaBrianna
Brianna
 

Semelhante a CILogon 2.0 MAGIC SC16

CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016jbasney
 
CILogon: An Integrated Identity and Access Management Platform for Science
CILogon: An Integrated Identity and Access Management Platform for ScienceCILogon: An Integrated Identity and Access Management Platform for Science
CILogon: An Integrated Identity and Access Management Platform for Sciencejbasney
 
CILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global SummitCILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global Summitjbasney
 
CILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meetingCILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meetingjbasney
 
CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30jbasney
 
Internal Audit Info Session January 2012
Internal Audit Info Session January 2012Internal Audit Info Session January 2012
Internal Audit Info Session January 2012Dariel Dato-on
 
Openness as a Catalyst for Education - Jared Stein
Openness as a Catalyst for Education - Jared SteinOpenness as a Catalyst for Education - Jared Stein
Openness as a Catalyst for Education - Jared SteinWCET
 
Openness as a Catalyst for Education (2009)
Openness as a Catalyst for Education (2009)Openness as a Catalyst for Education (2009)
Openness as a Catalyst for Education (2009)Jared Stein
 
Research Networking SEO state of the union 2015
Research Networking SEO state of the union 2015Research Networking SEO state of the union 2015
Research Networking SEO state of the union 2015lesliey
 
Outcomes i webinar 9 25-20
Outcomes i webinar 9 25-20Outcomes i webinar 9 25-20
Outcomes i webinar 9 25-20Charles Trafton
 
Linear Programming Approach for Solving Balanced and Unbalanced Intuitionisti...
Linear Programming Approach for Solving Balanced and Unbalanced Intuitionisti...Linear Programming Approach for Solving Balanced and Unbalanced Intuitionisti...
Linear Programming Approach for Solving Balanced and Unbalanced Intuitionisti...Navodaya Institute of Technology
 
Seo state of the union 2015
Seo state of the union 2015Seo state of the union 2015
Seo state of the union 2015Brian Turner
 
CILogon PEARC17
CILogon PEARC17CILogon PEARC17
CILogon PEARC17jbasney
 
University of Northern Colorado Transcript of Deepak (Danny) Singh
University of Northern Colorado Transcript of Deepak (Danny) SinghUniversity of Northern Colorado Transcript of Deepak (Danny) Singh
University of Northern Colorado Transcript of Deepak (Danny) SinghDanny Singh, M.B.A., MSEd
 
American Democracy Project (ADP). American Association of State Colleges and ...
American Democracy Project (ADP). American Association of State Colleges and ...American Democracy Project (ADP). American Association of State Colleges and ...
American Democracy Project (ADP). American Association of State Colleges and ...eraser Juan José Calderón
 
Dmp tool presentation
Dmp tool presentationDmp tool presentation
Dmp tool presentationSherry Lake
 
"Undergrad ecologists aren't learning data management" - ESA 2013
"Undergrad ecologists aren't learning data management" - ESA 2013"Undergrad ecologists aren't learning data management" - ESA 2013
"Undergrad ecologists aren't learning data management" - ESA 2013Carly Strasser
 

Semelhante a CILogon 2.0 MAGIC SC16 (20)

CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016
 
CILogon: An Integrated Identity and Access Management Platform for Science
CILogon: An Integrated Identity and Access Management Platform for ScienceCILogon: An Integrated Identity and Access Management Platform for Science
CILogon: An Integrated Identity and Access Management Platform for Science
 
CILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global SummitCILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global Summit
 
CILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meetingCILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meeting
 
CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30
 
Internal Audit Info Session January 2012
Internal Audit Info Session January 2012Internal Audit Info Session January 2012
Internal Audit Info Session January 2012
 
Openness as a Catalyst for Education - Jared Stein
Openness as a Catalyst for Education - Jared SteinOpenness as a Catalyst for Education - Jared Stein
Openness as a Catalyst for Education - Jared Stein
 
Openness as a Catalyst for Education (2009)
Openness as a Catalyst for Education (2009)Openness as a Catalyst for Education (2009)
Openness as a Catalyst for Education (2009)
 
Research Networking SEO state of the union 2015
Research Networking SEO state of the union 2015Research Networking SEO state of the union 2015
Research Networking SEO state of the union 2015
 
Outcomes i webinar 9 25-20
Outcomes i webinar 9 25-20Outcomes i webinar 9 25-20
Outcomes i webinar 9 25-20
 
Adult Education Program Competitive Analysis GOLD
Adult Education Program Competitive Analysis GOLDAdult Education Program Competitive Analysis GOLD
Adult Education Program Competitive Analysis GOLD
 
SEO State of the Union 2015
SEO State of the Union 2015SEO State of the Union 2015
SEO State of the Union 2015
 
Linear Programming Approach for Solving Balanced and Unbalanced Intuitionisti...
Linear Programming Approach for Solving Balanced and Unbalanced Intuitionisti...Linear Programming Approach for Solving Balanced and Unbalanced Intuitionisti...
Linear Programming Approach for Solving Balanced and Unbalanced Intuitionisti...
 
Seo state of the union 2015
Seo state of the union 2015Seo state of the union 2015
Seo state of the union 2015
 
CILogon PEARC17
CILogon PEARC17CILogon PEARC17
CILogon PEARC17
 
University of Northern Colorado Transcript of Deepak (Danny) Singh
University of Northern Colorado Transcript of Deepak (Danny) SinghUniversity of Northern Colorado Transcript of Deepak (Danny) Singh
University of Northern Colorado Transcript of Deepak (Danny) Singh
 
Institutional Uses of HathiTrust
Institutional Uses of HathiTrustInstitutional Uses of HathiTrust
Institutional Uses of HathiTrust
 
American Democracy Project (ADP). American Association of State Colleges and ...
American Democracy Project (ADP). American Association of State Colleges and ...American Democracy Project (ADP). American Association of State Colleges and ...
American Democracy Project (ADP). American Association of State Colleges and ...
 
Dmp tool presentation
Dmp tool presentationDmp tool presentation
Dmp tool presentation
 
"Undergrad ecologists aren't learning data management" - ESA 2013
"Undergrad ecologists aren't learning data management" - ESA 2013"Undergrad ecologists aren't learning data management" - ESA 2013
"Undergrad ecologists aren't learning data management" - ESA 2013
 

Mais de jbasney

Guidance and Survey Results from the Trustworthy Data Working Group
Guidance and Survey Results from the Trustworthy Data Working GroupGuidance and Survey Results from the Trustworthy Data Working Group
Guidance and Survey Results from the Trustworthy Data Working Groupjbasney
 
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)jbasney
 
CILogon & SciTokens: OIDC/OAuth Federation
CILogon & SciTokens: OIDC/OAuth FederationCILogon & SciTokens: OIDC/OAuth Federation
CILogon & SciTokens: OIDC/OAuth Federationjbasney
 
CILogon 2.0 - IAM Online Webinar Series
CILogon 2.0 - IAM Online Webinar SeriesCILogon 2.0 - IAM Online Webinar Series
CILogon 2.0 - IAM Online Webinar Seriesjbasney
 
Lightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
Lightweight Cybersecurity Risk Assessment Tools for CyberinfrastructureLightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
Lightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructurejbasney
 
11th FIM4R Workshop: US Projects Update
11th FIM4R Workshop: US Projects Update11th FIM4R Workshop: US Projects Update
11th FIM4R Workshop: US Projects Updatejbasney
 
CTSC+SWAMP: cybersecurity resources for your campus
CTSC+SWAMP: cybersecurity resources for your campusCTSC+SWAMP: cybersecurity resources for your campus
CTSC+SWAMP: cybersecurity resources for your campusjbasney
 
Trusting External Identity Providers for Global Research Collaborations
Trusting External Identity Providers for Global Research CollaborationsTrusting External Identity Providers for Global Research Collaborations
Trusting External Identity Providers for Global Research Collaborationsjbasney
 
Cybersecurity for Conservation
Cybersecurity for ConservationCybersecurity for Conservation
Cybersecurity for Conservationjbasney
 
CTSC at TNC16
CTSC at TNC16CTSC at TNC16
CTSC at TNC16jbasney
 
SAML Security Contacts
SAML Security ContactsSAML Security Contacts
SAML Security Contactsjbasney
 
FeduShare TechEx15
FeduShare TechEx15FeduShare TechEx15
FeduShare TechEx15jbasney
 

Mais de jbasney (12)

Guidance and Survey Results from the Trustworthy Data Working Group
Guidance and Survey Results from the Trustworthy Data Working GroupGuidance and Survey Results from the Trustworthy Data Working Group
Guidance and Survey Results from the Trustworthy Data Working Group
 
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
 
CILogon & SciTokens: OIDC/OAuth Federation
CILogon & SciTokens: OIDC/OAuth FederationCILogon & SciTokens: OIDC/OAuth Federation
CILogon & SciTokens: OIDC/OAuth Federation
 
CILogon 2.0 - IAM Online Webinar Series
CILogon 2.0 - IAM Online Webinar SeriesCILogon 2.0 - IAM Online Webinar Series
CILogon 2.0 - IAM Online Webinar Series
 
Lightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
Lightweight Cybersecurity Risk Assessment Tools for CyberinfrastructureLightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
Lightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
 
11th FIM4R Workshop: US Projects Update
11th FIM4R Workshop: US Projects Update11th FIM4R Workshop: US Projects Update
11th FIM4R Workshop: US Projects Update
 
CTSC+SWAMP: cybersecurity resources for your campus
CTSC+SWAMP: cybersecurity resources for your campusCTSC+SWAMP: cybersecurity resources for your campus
CTSC+SWAMP: cybersecurity resources for your campus
 
Trusting External Identity Providers for Global Research Collaborations
Trusting External Identity Providers for Global Research CollaborationsTrusting External Identity Providers for Global Research Collaborations
Trusting External Identity Providers for Global Research Collaborations
 
Cybersecurity for Conservation
Cybersecurity for ConservationCybersecurity for Conservation
Cybersecurity for Conservation
 
CTSC at TNC16
CTSC at TNC16CTSC at TNC16
CTSC at TNC16
 
SAML Security Contacts
SAML Security ContactsSAML Security Contacts
SAML Security Contacts
 
FeduShare TechEx15
FeduShare TechEx15FeduShare TechEx15
FeduShare TechEx15
 

Último

Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 

Último (20)

Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 

CILogon 2.0 MAGIC SC16

  • 1. Jim Basney jbasney@ncsa.illinois.edu November 2016 CILogon 2.0 This material is based upon work supported by the National Science Foundation under grant numbers 0850557, 0943633, 1053575, 1440609, and 1547268 and by the Department of Energy under award number DE-SC0008597. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the United States Government or any agency thereof.
  • 2. CILogon www.cilogon.org CILogon 2.0 ❏ 3 year NSF CICI project ❏ January 2016 - December 2018 ❏ Provide an integrated open source Identity and Access Management (IdAM) platform for cyberinfrastructure ❏ CILogon: federated identity management ❏ COmanage: collaborative organization management ❏ Support international collaborations
  • 3. CILogon www.cilogon.org CILogon 2.0 Team ❏ Jim Basney ❏ Terry Fleury ❏ Jeff Gaynor ❏ Venkat Yekkirala ❏ Heather Flanagan ❏ Scott Koranda ❏ Benn Oshrin ❏ Arlen Johnson
  • 4. CILogon www.cilogon.org CILogon OSG CA ❏ Entered production January 2016 ❏ CA policy accredited by IGTF ❏ Passed XSEDE Operations Acceptance ❏ Transitioned OSG CA to use CILogon infrastructure operated by XSEDE ❏ Sharing Hardware Security Modules between CILogon and XSEDE ❏ Integrated with OSG registration process ❏ Using new CILogon HTTPS API for issuance of certificates by OSG front-end
  • 5. CILogon www.cilogon.org SAML to OpenID Connect (OIDC) Gateway ❏ Entered production January 2016 ❏ Supporting e-Science clients ❏ Review & approval by CILogon staff ❏ User consent based on requested scopes ❏ openid, profile, email ❏ org.cilogon.userinfo (eppn, affiliation) ❏ edu.uiuc.ncsa.myproxy.getcert (to allow X.509 certificate issuance) ❏ VO attributes www.cilogon.org/oidc
  • 7. CILogon www.cilogon.org ❏ In February 2016, Globus began listing InCommon IdPs directly, rather than as “alternate login” option ❏ InCommon / CILogon use doubled! Encouraging Federated Logins
  • 8. CILogon www.cilogon.org CILogon-enabled Apps ❏ ATLAS Connect ❏ CMS Connect ❏ DataONE ❏ DOE KBase ❏ Duke CI Connect ❏ Fermilab ❏ Globus ❏ IU CI Gateway ❏ LIGO ❏ OOI ❏ OSC OnDemand ❏ OSG Connect ❏ SeedMe ❏ XSEDE New New
  • 9. CILogon www.cilogon.org Supporting Fermilab ❏ In Summer 2016, Fermilab transitioned to using CILogon for short-lived certificates and retired the Fermilab KCA ❏ 350+ active Fermilab users in October ❏ Operating an InCommon IdP is easier than operating an IGTF CA ❏ #1 challenge: Hardware Security Modules
  • 10. CILogon www.cilogon.org Enabling Global Interfederation ❏ Research & Scholarship ❏ https://spaces.internet2.edu/display/InCFede ration/Research+and+Scholarship+Category ❏ Security Contacts in metadata ❏ https://spaces.internet2.edu/display/InCFede ration/Contacts+in+Metadata ❏ Security Incident Response Trust Framework for Federated Identity ❏ https://refeds.org/sirtfi
  • 11. CILogon www.cilogon.org Supporting Int'l IdPs (Sep 2016) ❏ Thanks to InCommon joining eduGAIN ❏ CILogon policy update approved in July by IGTF ❏ Requiring R&S + Sirtfi www.cilogon.org/news/expanding-idps
  • 13. CILogon www.cilogon.org Oct 2016 Problem Report anl.gov berkeley.edu fnal.gov hawaii.edu ligo.org mdanderson.org muohio.edu nih.gov njit.edu okstate.edu sdstate.edu sfsu.edu swmed.edu uah.edu uakron.edu uc.edu ucla.edu uhd.edu unr.edu upenn.edu utdallas.edu utep.edu uvm.edu vt.edu wisc.edu dur.ac.uk gla.ac.uk lancs.ac.uk leeds.ac.uk liv.ac.uk manchester.ac.uk rhul.ac.uk stfc.ac.uk sussex.ac.uk unipv.it
  • 14. CILogon www.cilogon.org 1. Fermilab 2. LIGO 3. NIH 4. U of Michigan 5. Ohio State 6. Purdue 7. Google 8. UIUC 9. U Chicago 10. UCLA Most Used IdPs - Oct 2016 11. UNL 12. Indiana U 13. U Minnesota 14. U of Colorado 15. U of Cincinnati 16. ANL 17. JHU 18. Yale 19. U Florida 20. UC Berkeley R&S ECP (unique active users per IdP) ECP R&S R&S R&S R&S R&S R&S ECP Sirtfi R&S R&S R&S R&S R&S R&S R&S R&S ECP Sirtfi ECP
  • 15. CILogon www.cilogon.org All IdPs used - Oct 2016 Fermi National Accelerator Laboratory LIGO Scientific Collaboration National Institutes of Health University of Michigan Ohio State University Purdue University Main Campus Google University of Illinois at Urbana-Champaign University of Chicago University of California-Los Angeles University of Nebraska-Lincoln Indiana University University of Minnesota University of Colorado at Boulder University of Cincinnati Main Campus Argonne National Laboratory Johns Hopkins Yale University University of Florida University of California, Berkeley Lawrence Berkeley National Laboratory University of Southern California Stanford University Michigan State University Cornell University Case Western Reserve University University of Wisconsin-Madison University of Utah The University of Arizona Penn State Carnegie Mellon University University of California-San Diego New York University Montana State University - Bozeman Iowa State University University of Texas at Austin Old Dominion University Northwestern University University of Wyoming University of North Carolina at Chapel Rice University Oak Ridge National Laboratory University of Rochester University of California-Santa Barbara University of Hawaii Massachusetts Institute of Technology Clemson University University of Washington Texas A & M University Princeton University University of California, Davis Tufts University Columbia University Arizona State University West Virginia University University of Notre Dame Rutgers, The State University of New Ohio University Main Campus University of Maryland College Park University of California-Irvine Duke University University of South Dakota University of Iowa Georgia Institute of Technology University of Pittsburgh The George Washington University Oklahoma State University System University of Oklahoma Colorado School of Mines Brown University Vanderbilt University University of Virginia Texas Tech University Stony Brook University Oregon State University Ohio Technology Consortium (OH-TECH) North Carolina State University Colorado State University Boston University University of Nebraska Medical Center University of California, San Francisco Boise State University University of North Carolina At Charlotte University of Illinois at Chicago University of Houston University of Dayton Marshall University Georgetown University California Institute of Technology Baylor College of Medicine University of Missouri System University of California, Riverside University of Arkansas University of Alabama, The Lehigh University Weill Cornell Medical College University of Texas Southwestern Medical Center University of New Mexico United ID Rockefeller University ICER - Mali Florida International University ESnet Woods Hole Oceanographic Institution Virginia Polytechnic Institute and State University Utah State University University of Vermont University of South Carolina University of Pennsylvania University of Nevada, Reno University of Maryland Baltimore University of California, Santa Cruz Texas State University - San Marcos San Diego State University Louisiana State University Lafayette College Kansas State University Brookhaven National Laboratory Worcester Polytechnic Institute Western Michigan University University of Wisconsin-Milwaukee University of Texas at Dallas University of Tennessee University of North Carolina at Greensboro University of Maryland Baltimore County University of Maine System University of Kansas Medical Center University of Kansas University of Houston Libraries University of Delaware University of Alaska Statewide System University of Alabama at Birmingham The Broad Institute of MIT and Stockholms universitet Southern Methodist University South Dakota State University ProtectNetwork National Center for Supercomputing Applications Internet2 Harvey Mudd College Georgia State University George Mason University CERN Cedarville University California State University, Fullerton Brandeis University Boston College Baylor University Augusta University
  • 17. CILogon www.cilogon.org CILogon 2.0 - Registry Beta ❏ For early adopters of CILogon 2.0 collaboration management (COmanage) ❏ Using upcoming COmanage 1.1 release ❏ Visit www.cilogon.org to sign up Coming soon!