Federated identity system for scientific collaborations

Europe/Zurich
IT Auditorium (CERN)

IT Auditorium

CERN

31/3-004
Bob Jones (CERN)
Description
The goal is to explore the requirements for federated identity management across the different disciplines, compare the functionality, operational constraints and state of deployment of current technologies, and formulate a roadmap for how we could establish such a service in the future.
Minutes
Participants
  • Ahmed ouarab
  • Alan Sill
  • Alberto Di Meglio
  • Almudena Montiel Gonzalez
  • Aneta Karaivanova
  • Antoine Daneau
  • Antonio Perez Perez
  • Björn Abt
  • Bob Jones
  • Bruno Lebayle
  • Catherine Gater
  • Christoph Witzig
  • Dai Davies
  • Daniel Broeder
  • David Groep
  • David Kelsey
  • David O'Callaghan
  • David Wallom
  • Dominique Porte
  • DORINE FOUOSSONG
  • Emmanuel Ormancey
  • Enrico M. V. Fasanelli
  • Fabien Pinet
  • Falaknaz Ayubi
  • Fernand De Decker
  • Fernando Calvelo Vazquez
  • Frank Schluenzen
  • Frederic Hemmer
  • Giuseppe Misurelli
  • Heinz Josef Weyer
  • Henri Mikkonen
  • Ian Bird
  • Ilya Saverchenko
  • Jakub MOSCICKI
  • Jean-François Guezou
  • Jean-François Perrin
  • Jean-Michel Jouanigot
  • Jerome Raciazek
  • Jim Basney
  • Johannes Reetz
  • John Chevers
  • John White
  • Jose Carlos Luna
  • Joshua Howlett
  • Krzysztof Kurowski
  • Krzysztof Wrona
  • Leif Nixon
  • Licia Florio
  • Ludek Matyska
  • Marcin Adamski
  • Mark Van de Sanden
  • Matthew Dovey
  • Michael Helm
  • Michal Prochazka
  • Michel Drescher
  • Mihaela Matei
  • Mikael Linden
  • Mine Altunay
  • Mingchao Ma
  • Mirjam van Daalen
  • Muriel Gougerot
  • Pascal Panneels
  • Patrick Aerts
  • Peter van der Reest
  • Philip Kershaw
  • Pornchai Timpawat
  • R. Poortinga Van Wijnen
  • Remi Mollon
  • Romain Wartel
  • Rudolf Dimper
  • Sebastian Labitzke
  • Silvia Arezzini
  • Stefan Lueders
  • Steffen Schreiner
  • Steven Newhouse
  • Sylmond Leroy Jack
  • Thomas Eickermann
  • Tim Bell
  • Tim Smith
  • Tommi Nyroenen
  • Ugis Sarkans
  • Vincent RIBAILLIER
  • Vincenzo Ciaschini
  • Viorel Tudor
  • Yves Ruti
    • 14:00 16:00
      user requirements

      Federated identity from the user community point of view. Here different scientific user communities will present their needs & expectations, current usage and future directions.

      • 14:00
        Welcome 10m
        Speaker: Frederic Hemmer (CERN)
        Slides
      • 14:10
        Introduction 10m
        Speaker: Bob Jones (CERN)
      • 14:20
        European photon/neutron facilities 20m
        Speaker: Heinz J Weyer (PSI)
        Slides
      • 14:40
        CLARIN and the humanities 20m
        The CLARIN project is one of the five Humanities Research Infrastructures on the ESFRI roadmap. In the preparatory phase solutions for AAI requirements were researched and implemented and are now used within the national CLARIN initiatives that have begun and are starting in the Netherlands, Germany, Denmark, Finland and several other European countries. A new European project "DASISH" is being started and will unite all the ESFRI Humanities RI projects in building a common AAI infrastructure based on experiences of CLARIN and the other project's preparatory phase findings
        Speaker: Mr Daan Broeder
        biography
        Slides
      • 15:00
        WLCG 20m
        Speaker: Mr Romain Wartel (CERN)
        Slides
      • 15:20
        Earth Science (Climate) 20m
        Speaker: Philip Kershaw (STFC)
        Paper
        Slides
      • 15:40
        Life Science (ELIXIR) 20m
        Speaker: Ugis Sarkans (EBI)
        Abstract
        Biography
        Slides
    • 16:00 16:30
      Coffee break 30m
    • 16:30 18:20
      existing infrastructure

      Services offered by major e-infrastructure providers. International infrastructures offer a number of services related to federated identity management. Presentations from these e-infrastructures will outline these services and forthcoming developments.

      • 16:30
        EGI 15m
        Speaker: Steven Newhouse
      • 16:45
        Identity Management in Open Science Grid: Challenges, Needs, and Future Directions 15m
        Speaker: Mine ALTUNAY (FNAL)
        Slides
      • 17:00
        DEISA/PRACE 15m
        Since 2004, the High-Performance Computing (HPC) community has organized itself in Europe through two major EU funded projects : DEISA (Distributed European Infrastructure for Supercomputing Applications, 2004-20011) and PRACE (Partnership for Advanced Computing in Europe) which started in 2008. The HPC ecosystem has been consolidated with the definition of a “pyramidal model” which clarifies the relations between the different actors. This work led to the creation in 2010 of PRACE-RI, a persistent pan-European infrastructure with its headquarter seated in Brussels and established as a non-profit association of European government representative organizations responsible for HPC. Identity management has always been considered as a critical activity and it has been a constant goal to maintain a robust solution both secured and not discouraging for the end users. For this reason, technical teams have done their best to design and implement a robust and easy-to-use solution. The trust model adopted is based on X509 certificates and uses when possible the Single Sign-On (SSO) approach. A fine grained authorization system as well as a distributed accounting database are also included. Even if the current model is fully operational, PRACE is investigating how it could evolve to integrate identity federation solutions. The main reason motivating this approach is a strong wish to enable interoperability with other international projects. Therefore, PRACE follows closely as part of its technology evaluation program the efforts carried out in this field. Following open standards based solutions is essential to reach interoperability, however there are also other criteria that must not be forgotten such as the identification of trustful credential providers, common understanding of the meaning of attributes and the compliance of applications with the solutions.
        Speaker: Mr Vincent Ribaillier (IDRIS)
        Bio
        Slides
      • 17:15
        CILogon: Federated Access to US CyberInfrastructure 15m
        Speaker: Mr Jim Basney (NCSA)
        Abstract
        Slides
      • 17:30
        GEANT 15m
        Speaker: Mr Joshua Howlett (JANET)
        Slides
      • 17:45
        Terena Certificate Service 15m
        Speaker: David Groep (NIKHEF-Unknown-Unknown)
        Slides
      • 18:00
        EMI 20m
        Speaker: John White White (Helsinki Institute of Physics HIP)
        Slides
    • 18:20 19:15
      Aperitif in Restaurant 2 55m