internet2 member meeting

Federation & eGovernmentFall 2008 Internet2 Member Meeting

Tuesday, Oct. 14, 8:45 am to 10 am

Napoleon Ballroom B/C

New Orleans, Louisiana

Jim Angus [email protected]/in/JimAngus

Issues of IdentityWhat does it mean?

Issues of Identity

easy authorized access to applications

across diverse & distributed communities of interest

scalable across heterogeneous, distributed environments

What does it mean?

Issues of IdentityWhat does it really mean?

http://www.ugotrade.com/wordpress/wp-content/uploads/2008/03/ebenmoglen.jpg

http://farm1.static.flickr.com/142/371679946_0c869cda5c.jpg

Issues of IdentityWhere are we now?

Issues of Identity

easy authorized access to applications

across diverse & distributed communities of interest

scalable across heterogeneous, distributed environments

What does it mean?

Why Federation?

Why Federation?eGovernment Goal:Initiatives are Operational and Yield Benefits

cost reduction

response time

burden reduction

improved citizen service

etc.

www.whitehouse.gov/omb/egov/2003egov_strat.pdf

Why Federation?electronic Research Administration

eRA is in use by over 100,000 individual researchers and about 9,500 research institutions worldwide


User accounts are currently providedand maintained by the NIH


I forgot my password.


My password is expired.


I forgot my userid.

http://www.enigmagraphics.com/illusthelpdesk.shtml

Pete MortonActing Program Manager, eRA


My “visionary goal” is to use federated access to first make the government a single entity that

a citizen can log into...


My “visionary goal” is to use federated access to first make the government a single entity that

a citizen can log into...

...and then select and use the services of choice... without

having to re-logon.


If you think about it, accomplishing this will also put pressure on the government ...



...to have similar looks and feels regardless of the agency.



...to have similar looks and feels regardless of the agency.

This is a good thing.

Federation - the presentNIH Network for Public Information Officers

NIH Network for Public Information Officers

the first federated application at the NIH

the first external Sharepoint application at the NIH

Building for the future... same audience as eRA

Building a community of PIOs in a secure environment

Using Sharepoint 2007 for ease of development

Let’s take a look...

user enters URL & system “notes” the URL

HOME Wiki PIO-Net VIP



user selects the kind of login & system“notes” the organization



research organization NIH



system redirects to appropriate login screen for authentication









organization login NIH login







application grants access with specific permissions







PIO-Net

application grants access with specific permissions




PIO-Net




PIO-Net


federation NIHEXT



PIO-Net


Where are you from?

user enters URLocpl.od.nih.gov

user enters URLocpl.od.nih.gov

redirects tologin screen

user choosesaccount type

user chooses account type

federation loginor

NIH account

if NIHthen NIH login

If user chooses “research orgs”


select org from list


select org from list

external users may be

federatedOR

NIH external

federated usersare directed to their own

login screen

after loginusers are redirected to

the NIH PIO-Net

PIO-Net

Federating Sharepoint

load balancing (Big IP)

federation gateway (WAYF, Shibboleth)

security policy/firewall (Site Minder)

Microsoft Sharepoint 2007 (Bill Gates)

The Process...

http://localrhythms.files.wordpress.com/2008/06/man-pulling-hair-out-2.jpg

http://jclcitservices.files.wordpress.com/2007/12/hair-out-714605.jpg

http://www.castlelane.co.uk/images/home.jpg

http://www.irishjobs.ie/work_wise/images/articleimages/pulling_out_hair.jpghttp://freekick.files.wordpress.com/2007/07/pulling-out-hair.jpg

The Result...

http://69.13.97.211/t-shirt-designs/prodimages/smiley%20face.jpg

internet2 member meeting

Technology