paul caskey technology architect pcaskey@utsystem.edu june 21, 2007 the university of texas system...

Paul CaskeyTechnology Architectpcaskey@utsystem.edu

June 21, 2007

The University of Texas System

Federated Identity Management Initiative

https://idm.utsystem.edu/downloads/APAN-UTsys-June07.ppt

2https://idm.utsystem.edu/downloads/APAN-UTsys-June07.ppt

Where we are

3https://idm.utsystem.edu/downloads/APAN-UTsys-June07.ppt

Who we are

4https://idm.utsystem.edu/downloads/APAN-UTsys-June07.ppt

Who we are (cont)

• Nine academic universities

• Six health institutions

• $10 Billion Operating Budget (FY 2007)

• $1.7 Billion in research

• More than 80,000 employees

• More than 190,000 students enrolled

• Educates more than one-third of the state’s undergraduates

• Educates nearly three-fourths of the state’s health professionals

5https://idm.utsystem.edu/downloads/APAN-UTsys-June07.ppt

A Chronology of IdM in the U.T. System…

• Impetus Need to collaborate Regulations / Security Statement of Direction

“…deployment of a robust, secure, interoperable infrastructure for identity management in support of inter-institutional collaboration is a strategic goal. ”

Vision Statement“All University of Texas students, faculty, and staff are able to access both local and remote resources using their local credentials and attributes, through a seamless technology infrastructure.”

• NMI “Extending the Reach” Grant

• Shibb-fest / Pilot federation 7 IdPs initially All 16 within 2 years Started with low-risk apps

6https://idm.utsystem.edu/downloads/APAN-UTsys-June07.ppt

A Chronology of IdM in the U.T. System… (cont)

• Policies / Governance IdM Governing Board MOP FOP Charter, Member Agreement, Attributes, Fees

• Roadmap Built around 3 main areas: Policy, Technology, Governance

(https://idm.utsystem.edu/IdentityMgmtpage4.pdf)

• Production Legal agreements signed ~10 apps Working on audit plan

7https://idm.utsystem.edu/downloads/APAN-UTsys-June07.ppt

Lessons Learned

• Identity management is not an “I.T. problem”.

• Policy and governance, done right, take considerable time.

• It’s easier to sell something tangible.

• It’s important to address the need for “federated support”.

8https://idm.utsystem.edu/downloads/APAN-UTsys-June07.ppt

The Future?

• New Apps / Shared Services! Grid access Medical Forensics Benefits ERP?

• Apps starting to consume more attributes AuthZ User convenience

• What attributes, what vocabulary?

• LoA gaining in importance

• Interfederation a real need

Paul CaskeyTechnology Architectpcaskey@utsystem.edu

June 21, 2007

Thank You!

https://idm.utsystem.edu/downloads/APAN-UTsys-June07.ppt