SlideShare una empresa de Scribd logo

Shibbolise This!

Miles Metcalfe
Miles Metcalfe

Federated access management without the KoolAid

Tecnología
1 de 18
Descargar para leer sin conexión
Shibbolise This! Federated access management without the Kool-Aid
Why listen to me? • Involved with directory deployment for a decade • Involved in JISC eFramework and eLearning interoperability projects • I’m a federated-service believer
What we’ll cover • The case against Shibboleth • Considerations for deployment • Alternatives to doing it yourself
The case against Shibboleth • Shibboleth is an ideology not a solution to a problem • Anyway, Athens works - and is far less trouble • The nature of the problem Shibboleth solves is going away
Shibboleth as religion [Web applications] should stop doing authentication. That's the web server's job [...] Web servers are very capable beasts. Applications don't need to do these things [...] Supporting [authentication] directly inside an application is wrong, just as supporting passwords natively is wrong today. Scott Cantor, Ohio State University. Designer of Shibboleth
Athens works • If the access management federation is about access to library resources, isn’t Athens good enough? • Is the poor state of inter-institutional collaboration the consequence of a lack of federated access management?
Time moves on • Shibboleth is a product of an enterprise-centric age • How relevant is this? • The web is becoming more user- centric • VLEs are becoming PLEs • How long before OpenID?
Deployment considerations • Support • Resilience • Security • Directory and SRS • Institutional politics • Available resources
More support • Not just one password - all your users • Will your LRC staff help out ...? • Not just authentication, but authorisation • How will the Federation user interface work? • When do people do web-based access?
Single point of failure - multiple dependencies • What happens when your iDP goes down? • Or your directory service? • Even for maintenance? • Or your DNS, MAN connection, &c... • When did people want to access those web-based services again?
Security considerations • You must provide and manage SSL server certificates • They expire annually • You can’t hot-replace them • On a critical service • The iDP is another server in your DMZ
Directory enquiries • What is your policy for populating your user directory? • What information do you keep? • Attributes for authorisation? • Grouping information matching courses of study? • What is your expiry policy?
Political animals • Who owns student and staff information? • The same people who need it for the Federation? • Will they gather the information you need • And provide it on your schedule?
Photo: 5Lab (Hugh Lunnon) Available resources
Alternatives • Pay to use an outsourced service • Pay to continue using Athens
Outsourcing • Betting on an unknown service • How many problems will outsourcing solve? • How much will it cost? • How much of your time will it take?
Athens eternal? • Don’t bet on it! • You will have to face Shibboleth sooner or later • That likely means getting started now
Thanks! Miles Metcalfe, Ravensbourne College

Recomendados

Webinar Wednesday: Cloud Collaboration
Webinar Wednesday: Cloud CollaborationWebinar Wednesday: Cloud Collaboration
Webinar Wednesday: Cloud CollaborationAccellis Technology Group
 
Web 2.0: Addressing Institutional Barriers
Web 2.0: Addressing Institutional BarriersWeb 2.0: Addressing Institutional Barriers
Web 2.0: Addressing Institutional Barrierslisbk
 
BET ON IT: Design Your University Web Site To Enhance Your Admissions Goals
BET ON IT: Design Your University Web Site To Enhance Your Admissions GoalsBET ON IT: Design Your University Web Site To Enhance Your Admissions Goals
BET ON IT: Design Your University Web Site To Enhance Your Admissions GoalsDamond Nollan
 
Tech Resources for Food Bank SCM MI Conference 2009
Tech Resources for Food Bank SCM MI Conference 2009Tech Resources for Food Bank SCM MI Conference 2009
Tech Resources for Food Bank SCM MI Conference 2009Michigan Nonprofit Association
 
Visual Hierarchy in a Mobile Design World
Visual Hierarchy in a Mobile Design WorldVisual Hierarchy in a Mobile Design World
Visual Hierarchy in a Mobile Design WorldWaylon Baumgardner
 
LIN-R Final Programme Meeting Slides
LIN-R Final Programme Meeting SlidesLIN-R Final Programme Meeting Slides
LIN-R Final Programme Meeting SlidesMiles Metcalfe
 
Future technology in Education
Future technology in EducationFuture technology in Education
Future technology in EducationDilip Mehta
 
Terrorismo Palestino Contra Civis En Israel 01
Terrorismo Palestino Contra Civis En Israel 01Terrorismo Palestino Contra Civis En Israel 01
Terrorismo Palestino Contra Civis En Israel 01GZ-Israel
 

Recomendados

Webinar Wednesday: Cloud Collaboration
Webinar Wednesday: Cloud CollaborationWebinar Wednesday: Cloud Collaboration
Webinar Wednesday: Cloud CollaborationAccellis Technology Group
 
Web 2.0: Addressing Institutional Barriers
Web 2.0: Addressing Institutional BarriersWeb 2.0: Addressing Institutional Barriers
Web 2.0: Addressing Institutional Barrierslisbk
 
BET ON IT: Design Your University Web Site To Enhance Your Admissions Goals
BET ON IT: Design Your University Web Site To Enhance Your Admissions GoalsBET ON IT: Design Your University Web Site To Enhance Your Admissions Goals
BET ON IT: Design Your University Web Site To Enhance Your Admissions GoalsDamond Nollan
 
Tech Resources for Food Bank SCM MI Conference 2009
Tech Resources for Food Bank SCM MI Conference 2009Tech Resources for Food Bank SCM MI Conference 2009
Tech Resources for Food Bank SCM MI Conference 2009Michigan Nonprofit Association
 
Visual Hierarchy in a Mobile Design World
Visual Hierarchy in a Mobile Design WorldVisual Hierarchy in a Mobile Design World
Visual Hierarchy in a Mobile Design WorldWaylon Baumgardner
 
LIN-R Final Programme Meeting Slides
LIN-R Final Programme Meeting SlidesLIN-R Final Programme Meeting Slides
LIN-R Final Programme Meeting SlidesMiles Metcalfe
 
Future technology in Education
Future technology in EducationFuture technology in Education
Future technology in EducationDilip Mehta
 
Terrorismo Palestino Contra Civis En Israel 01
Terrorismo Palestino Contra Civis En Israel 01Terrorismo Palestino Contra Civis En Israel 01
Terrorismo Palestino Contra Civis En Israel 01GZ-Israel
 
RSC Future of Technology in Education
RSC Future of Technology in EducationRSC Future of Technology in Education
RSC Future of Technology in EducationMiles Metcalfe
 
Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...
Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...
Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...buckydodd
 
Fostering A Future With Technology In Education
Fostering A Future With Technology In EducationFostering A Future With Technology In Education
Fostering A Future With Technology In EducationShelley Lowes
 
Future of technology in education
Future of technology in educationFuture of technology in education
Future of technology in educationJisc
 
Electronic Management of Assessment
Electronic Management of AssessmentElectronic Management of Assessment
Electronic Management of AssessmentJisc
 
The Future of Technology and Education
The Future of Technology and EducationThe Future of Technology and Education
The Future of Technology and Educationsspengler
 
Integrating Technology into a Classroom
Integrating Technology into a ClassroomIntegrating Technology into a Classroom
Integrating Technology into a Classroomguesta5243d5
 
Technology and the future of education, learning, knowledge and universities ...
Technology and the future of education, learning, knowledge and universities ...Technology and the future of education, learning, knowledge and universities ...
Technology and the future of education, learning, knowledge and universities ...Gerd Leonhard
 
Future of Education
Future of EducationFuture of Education
Future of Educationcrazesujit
 
Educational technology presentation
Educational technology presentationEducational technology presentation
Educational technology presentationJamieDeYoung
 
Learning content with commodity tools
Learning content with commodity toolsLearning content with commodity tools
Learning content with commodity toolsMiles Metcalfe
 
Tf gsds
Tf gsdsTf gsds
Tf gsdsShannon Gallagher
 
POWRR Tools: Lessons learned from an IMLS National Leadership Grant
POWRR Tools: Lessons learned from an IMLS National Leadership GrantPOWRR Tools: Lessons learned from an IMLS National Leadership Grant
POWRR Tools: Lessons learned from an IMLS National Leadership GrantLynne Thomas
 
Organizational Access
Organizational AccessOrganizational Access
Organizational AccessMark Farmer
 
Is CiviCRM Right for Your Organization
Is CiviCRM Right for Your OrganizationIs CiviCRM Right for Your Organization
Is CiviCRM Right for Your OrganizationNTEN
 
Where Is eXtension
Where Is eXtensionWhere Is eXtension
Where Is eXtensionchwood
 
Spca2014 marianne vanwanrooij collaboration_and_enterprise_content_management
Spca2014 marianne vanwanrooij collaboration_and_enterprise_content_managementSpca2014 marianne vanwanrooij collaboration_and_enterprise_content_management
Spca2014 marianne vanwanrooij collaboration_and_enterprise_content_managementNCCOMMS
 
Technology Solutions in State and Regional Organizations
Technology Solutions in State and Regional OrganizationsTechnology Solutions in State and Regional Organizations
Technology Solutions in State and Regional OrganizationsAACRAO
 
Ten Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptech
Ten Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptechTen Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptech
Ten Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptechTechSoup Canada
 
Evolution to Digital Business Ecosystems
Evolution to Digital Business EcosystemsEvolution to Digital Business Ecosystems
Evolution to Digital Business EcosystemsRobbie Kiama
 
More Than Just a Meeting Place: Leveraging online tools for action
More Than Just a Meeting Place: Leveraging online tools for actionMore Than Just a Meeting Place: Leveraging online tools for action
More Than Just a Meeting Place: Leveraging online tools for actionifPeople
 
DataEngConf SF16 - Methods for Content Relevance at LinkedIn
DataEngConf SF16 - Methods for Content Relevance at LinkedInDataEngConf SF16 - Methods for Content Relevance at LinkedIn
DataEngConf SF16 - Methods for Content Relevance at LinkedInHakka Labs
 

Más contenido relacionado

Destacado

RSC Future of Technology in Education
RSC Future of Technology in EducationRSC Future of Technology in Education
RSC Future of Technology in EducationMiles Metcalfe
 
Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...
Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...
Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...buckydodd
 
Fostering A Future With Technology In Education
Fostering A Future With Technology In EducationFostering A Future With Technology In Education
Fostering A Future With Technology In EducationShelley Lowes
 
Future of technology in education
Future of technology in educationFuture of technology in education
Future of technology in educationJisc
 
Electronic Management of Assessment
Electronic Management of AssessmentElectronic Management of Assessment
Electronic Management of AssessmentJisc
 
The Future of Technology and Education
The Future of Technology and EducationThe Future of Technology and Education
The Future of Technology and Educationsspengler
 
Integrating Technology into a Classroom
Integrating Technology into a ClassroomIntegrating Technology into a Classroom
Integrating Technology into a Classroomguesta5243d5
 
Technology and the future of education, learning, knowledge and universities ...
Technology and the future of education, learning, knowledge and universities ...Technology and the future of education, learning, knowledge and universities ...
Technology and the future of education, learning, knowledge and universities ...Gerd Leonhard
 
Future of Education
Future of EducationFuture of Education
Future of Educationcrazesujit
 
Educational technology presentation
Educational technology presentationEducational technology presentation
Educational technology presentationJamieDeYoung
 

Destacado (10)

RSC Future of Technology in Education
RSC Future of Technology in EducationRSC Future of Technology in Education
RSC Future of Technology in Education
 
Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...
Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...
Exploring Evolutions and Revolutions Shaping the Future of Technology and Adu...
 
Fostering A Future With Technology In Education
Fostering A Future With Technology In EducationFostering A Future With Technology In Education
Fostering A Future With Technology In Education
 
Future of technology in education
Future of technology in educationFuture of technology in education
Future of technology in education
 
Electronic Management of Assessment
Electronic Management of AssessmentElectronic Management of Assessment
Electronic Management of Assessment
 
The Future of Technology and Education
The Future of Technology and EducationThe Future of Technology and Education
The Future of Technology and Education
 
Integrating Technology into a Classroom
Integrating Technology into a ClassroomIntegrating Technology into a Classroom
Integrating Technology into a Classroom
 
Technology and the future of education, learning, knowledge and universities ...
Technology and the future of education, learning, knowledge and universities ...Technology and the future of education, learning, knowledge and universities ...
Technology and the future of education, learning, knowledge and universities ...
 
Future of Education
Future of EducationFuture of Education
Future of Education
 
Educational technology presentation
Educational technology presentationEducational technology presentation
Educational technology presentation
 

Similar a Shibbolise This!

Learning content with commodity tools
Learning content with commodity toolsLearning content with commodity tools
Learning content with commodity toolsMiles Metcalfe
 
POWRR Tools: Lessons learned from an IMLS National Leadership Grant
POWRR Tools: Lessons learned from an IMLS National Leadership GrantPOWRR Tools: Lessons learned from an IMLS National Leadership Grant
POWRR Tools: Lessons learned from an IMLS National Leadership GrantLynne Thomas
 
Organizational Access
Organizational AccessOrganizational Access
Organizational AccessMark Farmer
 
Is CiviCRM Right for Your Organization
Is CiviCRM Right for Your OrganizationIs CiviCRM Right for Your Organization
Is CiviCRM Right for Your OrganizationNTEN
 
Where Is eXtension
Where Is eXtensionWhere Is eXtension
Where Is eXtensionchwood
 
Spca2014 marianne vanwanrooij collaboration_and_enterprise_content_management
Spca2014 marianne vanwanrooij collaboration_and_enterprise_content_managementSpca2014 marianne vanwanrooij collaboration_and_enterprise_content_management
Spca2014 marianne vanwanrooij collaboration_and_enterprise_content_managementNCCOMMS
 
Technology Solutions in State and Regional Organizations
Technology Solutions in State and Regional OrganizationsTechnology Solutions in State and Regional Organizations
Technology Solutions in State and Regional OrganizationsAACRAO
 
Ten Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptech
Ten Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptechTen Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptech
Ten Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptechTechSoup Canada
 
Evolution to Digital Business Ecosystems
Evolution to Digital Business EcosystemsEvolution to Digital Business Ecosystems
Evolution to Digital Business EcosystemsRobbie Kiama
 
More Than Just a Meeting Place: Leveraging online tools for action
More Than Just a Meeting Place: Leveraging online tools for actionMore Than Just a Meeting Place: Leveraging online tools for action
More Than Just a Meeting Place: Leveraging online tools for actionifPeople
 
DataEngConf SF16 - Methods for Content Relevance at LinkedIn
DataEngConf SF16 - Methods for Content Relevance at LinkedInDataEngConf SF16 - Methods for Content Relevance at LinkedIn
DataEngConf SF16 - Methods for Content Relevance at LinkedInHakka Labs
 
How can i... reduce my backup window.
How can i... reduce my backup window.How can i... reduce my backup window.
How can i... reduce my backup window.Andrew Nicholson
 
The Semantic Web: The Why? What? How?
The Semantic Web: The Why? What? How?The Semantic Web: The Why? What? How?
The Semantic Web: The Why? What? How?iLinkoln Meetup
 
Digital hoarding is driving away users and killing conversion
Digital hoarding is driving away users and killing conversionDigital hoarding is driving away users and killing conversion
Digital hoarding is driving away users and killing conversionKate Wehner
 
For the Love of Volunteers! How Do You Choose the Right Technology to Manage ...
For the Love of Volunteers! How Do You Choose the Right Technology to Manage ...For the Love of Volunteers! How Do You Choose the Right Technology to Manage ...
For the Love of Volunteers! How Do You Choose the Right Technology to Manage ...Jazkarta, Inc.
 
Discover the Benefits of Cloud Computing with Google Apps and Salesforce.com
Discover the Benefits of Cloud Computing with Google Apps and Salesforce.comDiscover the Benefits of Cloud Computing with Google Apps and Salesforce.com
Discover the Benefits of Cloud Computing with Google Apps and Salesforce.comabcboston
 
How to Build a Powerful Small Business Website
How to Build a Powerful Small Business WebsiteHow to Build a Powerful Small Business Website
How to Build a Powerful Small Business WebsiteReal Time Web Marketing
 
Future-proof your office 365 digital workplace
Future-proof your office 365 digital workplaceFuture-proof your office 365 digital workplace
Future-proof your office 365 digital workplaceOwen Allen
 
Tech essentials for Product managers
Tech essentials for Product managersTech essentials for Product managers
Tech essentials for Product managersNitin T Bhat
 

Similar a Shibbolise This! (20)

Learning content with commodity tools
Learning content with commodity toolsLearning content with commodity tools
Learning content with commodity tools
 
Tf gsds
Tf gsdsTf gsds
Tf gsds
 
POWRR Tools: Lessons learned from an IMLS National Leadership Grant
POWRR Tools: Lessons learned from an IMLS National Leadership GrantPOWRR Tools: Lessons learned from an IMLS National Leadership Grant
POWRR Tools: Lessons learned from an IMLS National Leadership Grant
 
Organizational Access
Organizational AccessOrganizational Access
Organizational Access
 
Is CiviCRM Right for Your Organization
Is CiviCRM Right for Your OrganizationIs CiviCRM Right for Your Organization
Is CiviCRM Right for Your Organization
 
Where Is eXtension
Where Is eXtensionWhere Is eXtension
Where Is eXtension
 
Spca2014 marianne vanwanrooij collaboration_and_enterprise_content_management
Spca2014 marianne vanwanrooij collaboration_and_enterprise_content_managementSpca2014 marianne vanwanrooij collaboration_and_enterprise_content_management
Spca2014 marianne vanwanrooij collaboration_and_enterprise_content_management
 
Technology Solutions in State and Regional Organizations
Technology Solutions in State and Regional OrganizationsTechnology Solutions in State and Regional Organizations
Technology Solutions in State and Regional Organizations
 
Ten Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptech
Ten Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptechTen Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptech
Ten Years of TechSoup Canada: Insights, ideas, and tips from a decade of #nptech
 
Evolution to Digital Business Ecosystems
Evolution to Digital Business EcosystemsEvolution to Digital Business Ecosystems
Evolution to Digital Business Ecosystems
 
More Than Just a Meeting Place: Leveraging online tools for action
More Than Just a Meeting Place: Leveraging online tools for actionMore Than Just a Meeting Place: Leveraging online tools for action
More Than Just a Meeting Place: Leveraging online tools for action
 
DataEngConf SF16 - Methods for Content Relevance at LinkedIn
DataEngConf SF16 - Methods for Content Relevance at LinkedInDataEngConf SF16 - Methods for Content Relevance at LinkedIn
DataEngConf SF16 - Methods for Content Relevance at LinkedIn
 
How can i... reduce my backup window.
How can i... reduce my backup window.How can i... reduce my backup window.
How can i... reduce my backup window.
 
The Semantic Web: The Why? What? How?
The Semantic Web: The Why? What? How?The Semantic Web: The Why? What? How?
The Semantic Web: The Why? What? How?
 
Digital hoarding is driving away users and killing conversion
Digital hoarding is driving away users and killing conversionDigital hoarding is driving away users and killing conversion
Digital hoarding is driving away users and killing conversion
 
For the Love of Volunteers! How Do You Choose the Right Technology to Manage ...
For the Love of Volunteers! How Do You Choose the Right Technology to Manage ...For the Love of Volunteers! How Do You Choose the Right Technology to Manage ...
For the Love of Volunteers! How Do You Choose the Right Technology to Manage ...
 
Discover the Benefits of Cloud Computing with Google Apps and Salesforce.com
Discover the Benefits of Cloud Computing with Google Apps and Salesforce.comDiscover the Benefits of Cloud Computing with Google Apps and Salesforce.com
Discover the Benefits of Cloud Computing with Google Apps and Salesforce.com
 
How to Build a Powerful Small Business Website
How to Build a Powerful Small Business WebsiteHow to Build a Powerful Small Business Website
How to Build a Powerful Small Business Website
 
Future-proof your office 365 digital workplace
Future-proof your office 365 digital workplaceFuture-proof your office 365 digital workplace
Future-proof your office 365 digital workplace
 
Tech essentials for Product managers
Tech essentials for Product managersTech essentials for Product managers
Tech essentials for Product managers
 

Más de Miles Metcalfe

East of Eden - online life beyond the Great Firewall
East of Eden - online life beyond the Great FirewallEast of Eden - online life beyond the Great Firewall
East of Eden - online life beyond the Great FirewallMiles Metcalfe
 
Fote2010 - Asset Tagged
Fote2010 - Asset TaggedFote2010 - Asset Tagged
Fote2010 - Asset TaggedMiles Metcalfe
 
Learning 2.0 and OpenID
Learning 2.0 and OpenIDLearning 2.0 and OpenID
Learning 2.0 and OpenIDMiles Metcalfe
 
Learning 2.0, A Rough Guide
Learning 2.0, A Rough GuideLearning 2.0, A Rough Guide
Learning 2.0, A Rough GuideMiles Metcalfe
 
Ravensbourne Staff Conference Technology Transition
Ravensbourne Staff Conference Technology TransitionRavensbourne Staff Conference Technology Transition
Ravensbourne Staff Conference Technology TransitionMiles Metcalfe
 
Shock 2009 - Ravensbourne tomorrow
Shock 2009 - Ravensbourne tomorrowShock 2009 - Ravensbourne tomorrow
Shock 2009 - Ravensbourne tomorrowMiles Metcalfe
 
Rather thin supporting slides for BMT207 lecture
Rather thin supporting slides for BMT207 lectureRather thin supporting slides for BMT207 lecture
Rather thin supporting slides for BMT207 lectureMiles Metcalfe
 
Strategic Principles presentation for ITSSG 2009-01-21
Strategic Principles presentation for ITSSG 2009-01-21Strategic Principles presentation for ITSSG 2009-01-21
Strategic Principles presentation for ITSSG 2009-01-21Miles Metcalfe
 
Relocation Progress Update 2009-01-19
Relocation Progress Update 2009-01-19Relocation Progress Update 2009-01-19
Relocation Progress Update 2009-01-19Miles Metcalfe
 
Project Management Part 1
Project Management Part 1Project Management Part 1
Project Management Part 1Miles Metcalfe
 
Presentations With Powerpoint
Presentations With PowerpointPresentations With Powerpoint
Presentations With PowerpointMiles Metcalfe
 
Ravensbourne Tomorrow, FOTE 2008
Ravensbourne Tomorrow, FOTE 2008Ravensbourne Tomorrow, FOTE 2008
Ravensbourne Tomorrow, FOTE 2008Miles Metcalfe
 
Ravensbourne IT Welcome Back 2008-2009: Technology Transformation
Ravensbourne IT Welcome Back 2008-2009: Technology TransformationRavensbourne IT Welcome Back 2008-2009: Technology Transformation
Ravensbourne IT Welcome Back 2008-2009: Technology TransformationMiles Metcalfe
 
Approaching Integration
Approaching IntegrationApproaching Integration
Approaching IntegrationMiles Metcalfe
 
Learning 2.0 at Ravensbourne
Learning 2.0 at RavensbourneLearning 2.0 at Ravensbourne
Learning 2.0 at RavensbourneMiles Metcalfe
 
Design Bash October 2007
Design Bash October 2007Design Bash October 2007
Design Bash October 2007Miles Metcalfe
 
Learning 2.0 - VLE to PLE
Learning 2.0 - VLE to PLELearning 2.0 - VLE to PLE
Learning 2.0 - VLE to PLEMiles Metcalfe
 

Más de Miles Metcalfe (20)

East of Eden - online life beyond the Great Firewall
East of Eden - online life beyond the Great FirewallEast of Eden - online life beyond the Great Firewall
East of Eden - online life beyond the Great Firewall
 
Fote2010 - Asset Tagged
Fote2010 - Asset TaggedFote2010 - Asset Tagged
Fote2010 - Asset Tagged
 
Learning 2.0 and OpenID
Learning 2.0 and OpenIDLearning 2.0 and OpenID
Learning 2.0 and OpenID
 
Learning 2.0, A Rough Guide
Learning 2.0, A Rough GuideLearning 2.0, A Rough Guide
Learning 2.0, A Rough Guide
 
Ravensbourne Staff Conference Technology Transition
Ravensbourne Staff Conference Technology TransitionRavensbourne Staff Conference Technology Transition
Ravensbourne Staff Conference Technology Transition
 
Shock 2009 - Ravensbourne tomorrow
Shock 2009 - Ravensbourne tomorrowShock 2009 - Ravensbourne tomorrow
Shock 2009 - Ravensbourne tomorrow
 
Rather thin supporting slides for BMT207 lecture
Rather thin supporting slides for BMT207 lectureRather thin supporting slides for BMT207 lecture
Rather thin supporting slides for BMT207 lecture
 
Strategic Principles presentation for ITSSG 2009-01-21
Strategic Principles presentation for ITSSG 2009-01-21Strategic Principles presentation for ITSSG 2009-01-21
Strategic Principles presentation for ITSSG 2009-01-21
 
Relocation Progress Update 2009-01-19
Relocation Progress Update 2009-01-19Relocation Progress Update 2009-01-19
Relocation Progress Update 2009-01-19
 
Project Management Part 1
Project Management Part 1Project Management Part 1
Project Management Part 1
 
Ghosts in the Machine
Ghosts in the MachineGhosts in the Machine
Ghosts in the Machine
 
Presentations With Powerpoint
Presentations With PowerpointPresentations With Powerpoint
Presentations With Powerpoint
 
Rave Knowledge Work
Rave Knowledge WorkRave Knowledge Work
Rave Knowledge Work
 
Ravensbourne Tomorrow, FOTE 2008
Ravensbourne Tomorrow, FOTE 2008Ravensbourne Tomorrow, FOTE 2008
Ravensbourne Tomorrow, FOTE 2008
 
Ravensbourne IT Welcome Back 2008-2009: Technology Transformation
Ravensbourne IT Welcome Back 2008-2009: Technology TransformationRavensbourne IT Welcome Back 2008-2009: Technology Transformation
Ravensbourne IT Welcome Back 2008-2009: Technology Transformation
 
Elearning and Me
Elearning and MeElearning and Me
Elearning and Me
 
Approaching Integration
Approaching IntegrationApproaching Integration
Approaching Integration
 
Learning 2.0 at Ravensbourne
Learning 2.0 at RavensbourneLearning 2.0 at Ravensbourne
Learning 2.0 at Ravensbourne
 
Design Bash October 2007
Design Bash October 2007Design Bash October 2007
Design Bash October 2007
 
Learning 2.0 - VLE to PLE
Learning 2.0 - VLE to PLELearning 2.0 - VLE to PLE
Learning 2.0 - VLE to PLE
 

Último

Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionDilum Bandara
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersRaghuram Pandurangan
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxLoriGlavin3
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxLoriGlavin3
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxLoriGlavin3
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxLoriGlavin3
 

Último (20)

Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An Introduction
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information Developers
 
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
 

Shibbolise This!

  • 1. Shibbolise This! Federated access management without the Kool-Aid
  • 2. Why listen to me? • Involved with directory deployment for a decade • Involved in JISC eFramework and eLearning interoperability projects • I’m a federated-service believer
  • 3. What we’ll cover • The case against Shibboleth • Considerations for deployment • Alternatives to doing it yourself
  • 4. The case against Shibboleth • Shibboleth is an ideology not a solution to a problem • Anyway, Athens works - and is far less trouble • The nature of the problem Shibboleth solves is going away
  • 5. Shibboleth as religion [Web applications] should stop doing authentication. That's the web server's job [...] Web servers are very capable beasts. Applications don't need to do these things [...] Supporting [authentication] directly inside an application is wrong, just as supporting passwords natively is wrong today. Scott Cantor, Ohio State University. Designer of Shibboleth
  • 6. Athens works • If the access management federation is about access to library resources, isn’t Athens good enough? • Is the poor state of inter-institutional collaboration the consequence of a lack of federated access management?
  • 7. Time moves on • Shibboleth is a product of an enterprise-centric age • How relevant is this? • The web is becoming more user- centric • VLEs are becoming PLEs • How long before OpenID?
  • 8. Deployment considerations • Support • Resilience • Security • Directory and SRS • Institutional politics • Available resources
  • 9. More support • Not just one password - all your users • Will your LRC staff help out ...? • Not just authentication, but authorisation • How will the Federation user interface work? • When do people do web-based access?
  • 10. Single point of failure - multiple dependencies • What happens when your iDP goes down? • Or your directory service? • Even for maintenance? • Or your DNS, MAN connection, &c... • When did people want to access those web-based services again?
  • 11. Security considerations • You must provide and manage SSL server certificates • They expire annually • You can’t hot-replace them • On a critical service • The iDP is another server in your DMZ
  • 12. Directory enquiries • What is your policy for populating your user directory? • What information do you keep? • Attributes for authorisation? • Grouping information matching courses of study? • What is your expiry policy?
  • 13. Political animals • Who owns student and staff information? • The same people who need it for the Federation? • Will they gather the information you need • And provide it on your schedule?
  • 14. Photo: 5Lab (Hugh Lunnon) Available resources
  • 15. Alternatives • Pay to use an outsourced service • Pay to continue using Athens
  • 16. Outsourcing • Betting on an unknown service • How many problems will outsourcing solve? • How much will it cost? • How much of your time will it take?
  • 17. Athens eternal? • Don’t bet on it! • You will have to face Shibboleth sooner or later • That likely means getting started now