National Federation Perspectives & Insights
?Download as PPTX, PDF?
1 like?286 views
CANARIE operates Canada's national research and education network, connecting over 1,100 institutions across the country. It also operates the Canadian Access Federation (CAF), a federated identity and access management system based on Shibboleth. CANARIE's vision is for CAF to facilitate collaboration on the largest possible scale by enabling secure access to resources across organizations. International linkages between federations are also critical to enable broader collaboration.
![Non Web Signon
Common To Both:
? Underway in IETF standards body
? Require touch points at the client & server
? A (big) part of a larger environment
[1] http://datatracker.ietf.org/doc/draft-ietf-kitten-sasl-saml-ec/
[2] http://datatracker.ietf.org/doc/draft-ietf-abfab-aaa-saml/
11
www.canarie.ca](https://image.slidesharecdn.com/cafi2fmm12aspresented-121121121329-phpapp02/85/National-Federation-Perspectives-Insights-11-320.jpg)
National Federation Perspectives & Insights
- 1. National Federation Perspectives & Insights Chris Phillips | October 1st, 2012 | Internet2 Fall Member Meeting | Philadelphia www.canarie.ca
- 2. About CANARIE Operates Canada¡¯s ultra- high-bandwidth research network ? Connects one million users at 1,100 institutions, ¡°big science¡± facilities like TRIUMF, NEPTUNE, CLS, SNOLAB, and to Compute Canada HPC consortia ? 19,000km of fibre with a 40 Gbps backbone ? Funds programs that enable greater access to research data, tools and peers and to stimulate the ICT sector Operator of the Canadian Access Federation ? SAML federation based on Shibboleth ? Canadian Eduroam 802.1x wireless roaming operator ? eduGAIN participant Primary investment from Government of Canada - $480 M since 1993 Map date: 29 May 2012 www.canarie.ca 2
- 3. Current CAF Services ? ? ? www.canarie.ca 3
- 4. Vision for CAF www.canarie.ca
- 5. This is what it feels like trying to collaborate¡. www.canarie.ca 5 Image: Phil Roeder - Flickr
- 6. This is how we want it to feel. www.canarie.ca 6
- 7. How? Facilitate collaboration at the largest scale possible. www.canarie.ca
- 8. How? v Facilitate collaboration at the largest scale possible. www.canarie.ca
- 9. Benefits www.canarie.ca 9
- 10. Areas of Interest www.canarie.ca
- 11. Non Web Signon Common To Both: ? Underway in IETF standards body ? Require touch points at the client & server ? A (big) part of a larger environment [1] http://datatracker.ietf.org/doc/draft-ietf-kitten-sasl-saml-ec/ [2] http://datatracker.ietf.org/doc/draft-ietf-abfab-aaa-saml/ 11 www.canarie.ca
- 12. International Linkages are Critical www.canarie.ca 12
- 13. International Federation Landscape www.canarie.ca 13
- 14. How Federations Interconnect www.canarie.ca 14
- 15. The Big Picture: Collaboration & Interconnection CAF SP Idp SP Idp SP Idp Special Interest Trust Groups SP ? Efficient, least effort for SP/IdP SP Idp ? Local fed incubates federation aware apps Higher Assurance ? SITG can leverage common infrastructure, and overlay Local Fed Local Fed special attribute sets & specific Idp SP Idp SP policies SP SP Idp www.canarie.ca
- 16. Chris.phillips@canarie.ca www.canarie.ca
Editor's Notes
- #10: Avoid the need to connect N * M ways. Collaboration outside organization no longer special case, but the default positionAmplifies Reach - Collaboration isn¡¯t aware of nation state boundaries
- #13: - CANARIE connects to 100 advanced networks in 100 countries, enabling global research collaborations
- #16: One service is good, but many using the same ¡®infrastructure¡¯ is better:Generally coordinating with with same point of contactsBuild both for traversal up and downwards