internet2 member meeting

Federation & eGovernmentFall 2008 Internet2 Member Meeting

Tuesday, Oct. 14, 8:45 am to 10 am

Napoleon Ballroom B/C

New Orleans, Louisiana

Jim Angus angusj@mail.nih.govwww.linkedin.com/in/JimAngus

Issues of IdentityWhat does it mean?

Issues of Identity

easy authorized access to applications

across diverse & distributed communities of interest

scalable across heterogeneous, distributed environments

What does it mean?

Issues of IdentityWhat does it really mean?

http://www.ugotrade.com/wordpress/wp-content/uploads/2008/03/ebenmoglen.jpg

http://farm1.static.flickr.com/142/371679946_0c869cda5c.jpg

Issues of IdentityWhere are we now?

Issues of Identity

easy authorized access to applications

across diverse & distributed communities of interest

scalable across heterogeneous, distributed environments

What does it mean?

Why Federation?

Why Federation?eGovernment Goal:Initiatives are Operational and Yield Benefits

cost reduction

response time

burden reduction

improved citizen service

etc.

www.whitehouse.gov/omb/egov/2003egov_strat.pdf

Why Federation?electronic Research Administration

eRA is in use by over 100,000 individual researchers and about 9,500 research institutions worldwide

eRA is in use by over 100,000 individual researchers and about 9,500 research institutions worldwide

User accounts are currently providedand maintained by the NIH

eRA is in use by over 100,000 individual researchers and about 9,500 research institutions worldwide

User accounts are currently providedand maintained by the NIH

eRA is in use by over 100,000 individual researchers and about 9,500 research institutions worldwide

I forgot my password.

eRA is in use by over 100,000 individual researchers and about 9,500 research institutions worldwide

My password is expired.

eRA is in use by over 100,000 individual researchers and about 9,500 research institutions worldwide

I forgot my userid.

http://www.enigmagraphics.com/illusthelpdesk.shtml

Pete MortonActing Program Manager, eRA

Pete MortonActing Program Manager, eRA

My “visionary goal” is to use federated access to first make the government a single entity that

a citizen can log into...

Pete MortonActing Program Manager, eRA

My “visionary goal” is to use federated access to first make the government a single entity that

a citizen can log into...

...and then select and use the services of choice... without

having to re-logon.

Pete MortonActing Program Manager, eRA

If you think about it, accomplishing this will also put pressure on the government ...

Pete MortonActing Program Manager, eRA

If you think about it, accomplishing this will also put pressure on the government ...

...to have similar looks and feels regardless of the agency.

Pete MortonActing Program Manager, eRA

If you think about it, accomplishing this will also put pressure on the government ...

...to have similar looks and feels regardless of the agency.

This is a good thing.

Federation - the presentNIH Network for Public Information Officers

NIH Network for Public Information Officers

the first federated application at the NIH

the first external Sharepoint application at the NIH

Building for the future... same audience as eRA

Building a community of PIOs in a secure environment

Using Sharepoint 2007 for ease of development

Let’s take a look...

Let’s take a look...

user enters URL & system “notes” the URL

HOME Wiki PIO-Net VIP

user enters URL & system “notes” the URL

HOME Wiki PIO-Net VIP

user selects the kind of login & system“notes” the organization

user enters URL & system “notes” the URL

HOME Wiki PIO-Net VIP

research organization NIH

user selects the kind of login & system“notes” the organization

user enters URL & system “notes” the URL

system redirects to appropriate login screen for authentication

HOME Wiki PIO-Net VIP

research organization NIH

user selects the kind of login & system“notes” the organization

user enters URL & system “notes” the URL

system redirects to appropriate login screen for authentication

HOME Wiki PIO-Net VIP

research organization NIH

user selects the kind of login & system“notes” the organization

organization login NIH login

user enters URL & system “notes” the URL

system redirects to appropriate login screen for authentication

HOME Wiki PIO-Net VIP

research organization NIH

user selects the kind of login & system“notes” the organization

user enters URL & system “notes” the URL

application grants access with specific permissions

organization login NIH login

system redirects to appropriate login screen for authentication

HOME Wiki PIO-Net VIP

research organization NIH

user selects the kind of login & system“notes” the organization

user enters URL & system “notes” the URL

PIO-Net

application grants access with specific permissions

organization login NIH login

HOME Wiki PIO-Net VIP

research organization NIH

PIO-Net

organization login NIH login

HOME Wiki PIO-Net VIP

research organization NIH

PIO-Net

organization login NIH login

federation NIHEXT

HOME Wiki PIO-Net VIP

research organization NIH

PIO-Net

organization login NIH login

Where are you from?

user enters URLocpl.od.nih.gov

user enters URLocpl.od.nih.gov

user enters URLocpl.od.nih.gov

redirects tologin screen

user choosesaccount type

user choosesaccount type

user chooses account type

federation loginor

NIH account

if NIHthen NIH login

If user chooses “research orgs”

If user chooses “research orgs”

If user chooses “research orgs”

select org from list

If user chooses “research orgs”

select org from list

external users may be

federatedOR

NIH external

federated usersare directed to their own

login screen

after loginusers are redirected to

the NIH PIO-Net

PIO-Net

PIO-Net

PIO-Net

PIO-Net

PIO-Net

PIO-Net

PIO-Net

HOME

Wiki

Federating Sharepoint

load balancing (Big IP)

federation gateway (WAYF, Shibboleth)

security policy/firewall (Site Minder)

Microsoft Sharepoint 2007 (Bill Gates)

The Process...

http://localrhythms.files.wordpress.com/2008/06/man-pulling-hair-out-2.jpg

http://jclcitservices.files.wordpress.com/2007/12/hair-out-714605.jpg

http://www.castlelane.co.uk/images/home.jpg

http://www.irishjobs.ie/work_wise/images/articleimages/pulling_out_hair.jpghttp://freekick.files.wordpress.com/2007/07/pulling-out-hair.jpg

The Result...

http://69.13.97.211/t-shirt-designs/prodimages/smiley%20face.jpg