1. Knock, Knock – Who’s There?
Towards Federated Authentication
Leigh Dodds
Chief Technology Officer, Ingenta
Society for Scholarly Publishing
San Francisco, June 2007
20. Where Things Differ…
• How do we know who the user’s Identity Provider is?
• How do the Service Providers and Identity Providers talk to
one another?
• What information does the Identity Provider expose about
the User?
• Can we trust the Identity Provider?
• How does the Identity Provider authenticate the user?
21.
22.
23. OpenId
• User-centric
• Simple to implement
• Growing number of open source toolkits
• Rapid adoption in web community
• Does not address trust issue
24. Shibboleth
• Library-centric
• Complex to implement
• Open source software plus commercial options
• Growing adoption in library and publishing
communities
• Introduces element of trust
13 million users via LiveJournal 63 million AIM users? 1 million wordpress bloggers 34k users at Sun
Institutions: >150 institutions in 2004 Federations: In Australia, US, Denmark, UK, Finland, France, Norway, Sweden, Switzerland Supporting services: Ovid Gateway/SilverPlatter, ProQuest, ScienceDirect, EBSCO, JSTOR, OCLC, Blackboard, National Science Digital Library, Gale, CAB Abstracts. By November 2008 around one third of UK institutions will have implemented federated access management, with the majority completed by November 2009