[CSG] Federated Trust Fabrics
Ken Klingenstein began by giving a brief overview of the different current activities around organizations federating to be able to accept each others' authentication and authorization information for access to content.
We need to begin to think about applications running over trust fabrics, much as we have thought for years about apps running over networks.
In federating enterprises, organizations and users must retain control over which attributes about a person are released to applications - it's the only way to preserve privacy
It looks like the best of Liberty and the best of Shibboleth will converge, perhaps in SAML 2
The Swiss have a Shibboleth-based federation where they have established common policies across eighteen campuses!
Carrie Regenstein talked in more detail abou theInCommon federation, which is starting as an Internet2 activity:
Built on Shibboleth authentication and authorization technology, InCommon enables cost-effective, privacy-preserving collaboration among InCommon participants. InCommon eliminates the need for researchers, students and educators to maintain multiple, password-protected accounts.
InCommon is a formal federation of organizations focused on creating a common framework for trust in support of research and education. The primary purpose of the federation is to facilitate collaboration through the sharing of protected resources, by means of an agreed common trust fabric.
1 TrackBacks
Listed below are links to blogs that reference this entry: [CSG] Federated Trust Fabrics.
TrackBack URL for this entry: http://staff.washington.edu/oren/blog/mt-tb.cgi/6
The UW's Oren Sreebny blogged the Common Solutions Group spring meeting. Here's a couple of talks that look interesting: Bob Morgan on Authorization Infrastructure Landscape Sandy Senti - The Signet Project Federated Trust Fabrics... Read More
Leave a comment