Shibboleth Update

Outline

MACE  (Middleware Architecture Committee for Education)

Shibboleth

Shibboleth - What is it?

Shibboleth - Why is it Needed?

Founding assumptions

Stage 1 - Addressing Three Scenario's

Architectural Model

Authorization Attributes

Implications of Shibboleth Design Choices

Federated Administration

Simple point-to-point model

Shibboleth Architecture
Concepts - High Level

Shibboleth Architecture
Concepts (detail)

Shibboleth Flows Draft

Detailed Component Descriptions

Establishing a User Context

Getting Attributes
and Determining Access

SHIRE
Indexical Reference Establisher

WAYF
Where are You From?

Handle Server

SHIRE
Indexical Reference Establisher

SHAR
Attribute Requester

Attribute Authority

IBM Interest

IBM and Tivoli's commitment

Shibboleth (and SAML) Communities of Interest (COI)

D. Wasley's PKI Puzzle

Shibboleth and PKI

Shibboleth and SAML and WebISO

What Will it be Like to Use Shibboleth?

Use - Go Directly To Target

Use - Specify Origin Site

Use - Local  Authentication

Use - Target Page Displayed!

Use - Local Navigation Site

Use - "in the background"

Use - Target Page Displayed!

Milestones

Roll-out plan

Coding stage

Profile  of  Pilot Sites

Some of the pilots

Getting Ready

Identity Services on One Slide

Shibboleth, eduPerson, and everything else

Slide 48