SlideShare a Scribd company logo

CILogon: An Integrated Identity and Access Management Platform for Science

J
jbasney

CILogon presentation at AGU16 https://agu.confex.com/agu/fm16/meetingapp.cgi/Paper/144086 When scientists work together, they use web sites and other software to share their ideas and data. To ensure the integrity of their work, these systems require the scientists to log in and verify that they are part of the team working on a particular science problem. Too often, the identity and access verification process is a stumbling block for the scientists. Scientific research projects are forced to invest time and effort into developing and supporting Identity and Access Management (IAM) services, distracting them from the core goals of their research collaboration. CILogon provides an IAM platform that enables scientists to work together to meet their IAM needs more effectively so they can allocate more time and effort to their core mission of scientific research. The CILogon platform enables federated identity management and collaborative organization management. Federated identity management enables researchers to use their home organization identities to access cyberinfrastructure, rather than requiring yet another username and password to log on. Collaborative organization management enables research projects to define user groups for authorization to collaboration platforms (e.g., wikis, mailing lists, and domain applications). CILogon's IAM platform serves the unique needs of research collaborations, namely the need to dynamically form collaboration groups across organizations and countries, sharing access to data, instruments, compute clusters, and other resources to enable scientific discovery. CILogon provides a software-as-a-service platform to ease integration with cyberinfrastructure, while making all software components publicly available under open source licenses to enable re-use. Figure 1 illustrates the components and interfaces of this platform. CILogon has been operational since 2010 and has been used by over 7,000 researchers from more than 170 identity providers to access cyberinfrastructure including Globus, LIGO, Open Science Grid, SeedMe, and XSEDE. The "CILogon 2.0" platform, launched in 2016, adds support for virtual organization (VO) membership management, identity linking, international collaborations, and standard integration protocols, through integration with the Internet2 COmanage collaboration software.

Technology
1 of 10
Download to read offline
CILogon An Integrated Identity and Access Management Platform for Science This material is based upon work supported by the National Science Foundation under grant numbers 0850557, 0943633, 1053575, 1440609, and 1547268 and by the Department of Energy under award number DE-SC0008597. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the United States Government or any agency thereof. Jim Basney jbasney@ncsa.illinois.edu December 2016
CILogon www.cilogon.org CILogon - Launched Sep 2010 ❏ Enables use of federated identities for access to cyberinfrastructure ❏ Translates across federations and protocols ❏ Supported by XSEDE
CILogon www.cilogon.org
CILogon www.cilogon.org 162 Active IdPs (Nov 2016) Fermi National Accelerator Laboratory LIGO Scientific Collaboration Ohio State University National Institutes of Health University of Michigan Purdue University Main Campus Google University of Chicago University of Illinois at Urbana-Champaign University of California-Los Angeles Johns Hopkins Indiana University University of Colorado at Boulder University of Minnesota Argonne National Laboratory University of California, Berkeley New York University University of Cincinnati Main Campus University of Nebraska-Lincoln The George Washington University Lawrence Berkeley National Laboratory University of Southern California University of Florida The University of Arizona Stanford University Yale University University of Wisconsin-Madison Michigan State University Cornell University Northwestern University University of Hawaii University of Utah University of North Carolina at Chapel Hill University of California-San Diego University of California, Davis Princeton University University of Wyoming University of Texas at Austin Oak Ridge National Laboratory Duke University Case Western Reserve University University of Washington University of Rochester Montana State University - Bozeman Clemson University Texas A & M University University of Notre Dame Massachusetts Institute of Technology West Virginia University University of Pittsburgh Rice University University of New Mexico Penn State Carnegie Mellon University University of South Dakota North Carolina State University University of California-Santa Barbara Columbia University California Institute of Technology Arizona State University University of Maryland College Park Rutgers Iowa State University Georgia Institute of Technology University of Iowa University of Pennsylvania University of California-Irvine Ohio University Main Campus Boston University Vanderbilt University Texas Tech University Oklahoma State University System Ohio Technology Consortium Colorado School of Mines Boise State University Virginia Polytechnic Institute and State University Tufts University Stony Brook University Marshall University Georgetown University Florida International University Brown University Weill Cornell Medical College University of Texas at Dallas University of North Carolina At Charlotte University of Dayton University of California, San Francisco Rockefeller University Old Dominion University Harvey Mudd College ESnet Colorado State University Baylor College of Medicine Woods Hole Oceanographic Institution Uppsala University University of Vermont University of Massachusetts Amherst University of Illinois at Chicago University of Delaware University of Alabama, The University of Alabama at Birmingham National Center for Supercomputing Applications Lund University Kansas State University George Mason University CERN University of Wisconsin-Milwaukee University of Tennessee University of Nebraska Medical Center University of Kansas University of Houston University of California, Santa Cruz United ID Texas State University - San Marcos Syracuse University Stevens Institute of Technology Southern Illinois University Nikhef Louisiana State University Lehigh University Lamar University Florida Atlantic University Wayne State University Vassar College University of Virginia University of South Florida University of South Carolina University of Oklahoma University of Nevada, Reno University of Nebraska University of Missouri System University of Miami University of Massachusetts - Dartmouth University of Maryland Baltimore University of California, Riverside University of Basel University of Arkansas University of Alaska Statewide System The University of Memphis The Broad Institute of MIT and Texas A&M University-Corpus Christi Rensselaer Polytechnic Institute PSI - Paul Scherrer Institut Oregon State University NOAA CAC Moss Landing Marine Laboratories Miami University Loyola University of Chicago Lafayette College Goucher College EPFL - EPF Lausanne College of William and Mary Cedarville University Carleton College California State University, Fullerton Brookhaven National Laboratory Brandeis University Baylor University International IdPs are highlighted
CILogon www.cilogon.org CILogon-enabled Sites ❏ ATLAS Connect ❏ CMS Connect ❏ DataONE ❏ DOE KBase ❏ Duke CI Connect ❏ Fermilab ❏ Globus ❏ IU CI Gateway ❏ LIGO ❏ OOI ❏ OSC OnDemand ❏ OSG Connect ❏ SeedMe ❏ XSEDE ECP ECP
CILogon www.cilogon.org SAML SP OIDC Provider X.509 CA HSM OIDC SP MFA LDAP COmanage Identities MFA Tokens SSH Keys Groups Attributes SAML AA User Registry eduGAIN IdP Google IdP Science App OAuth SPORCID IdP Science App Science App Science App InCommon IdP CILogon 2.0 CILogon: federated identity management COmanage: collaborative organization management
CILogon www.cilogon.org Managing Project Groups/Roles COmanage provides: ❏ enrollment flows ❏ expiration policies ❏ self service permissions ❏ pipelines https://spaces.internet2.edu/display/COmanage/COmanage+Technical+Manual
CILogon www.cilogon.org Policy Issues ❏ Assurance https://wiki.refeds.org/display/GROUPS/Assurance+Working+Group ❏ Federated attribute release https://refeds.org/category/research-and-scholarship ❏ Federated security incident response https://refeds.org/sirtfi
CILogon www.cilogon.org #1 Request: Add My Home Org ❏ Does Org operate a federated IdP? ❏ Is Org's IdP in eduGAIN ? ❏ Is Org's IdP interoperable? ❏ Does Org's IdP meet assurance/security requirements? ❏ We automate the federation process
CILogon www.cilogon.org Thanks! Contact us: jbasney@ncsa.illinois.edu help@cilogon.org

Recommended

CILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global SummitCILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global Summitjbasney
 
CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016jbasney
 
Interdisciplinary Research 2013
Interdisciplinary Research 2013Interdisciplinary Research 2013
Interdisciplinary Research 2013FSU College of Law Research Center
 
Genderand law
Genderand lawGenderand law
Genderand lawFSU College of Law Research Center
 
Online Public Compound Databases
Online Public Compound DatabasesOnline Public Compound Databases
Online Public Compound DatabasesUS Environmental Protection Agency (EPA), Center for Computational Toxicology and Exposure
 
Diseño presentación corporativa SENTIMOTO LTD
Diseño presentación corporativa SENTIMOTO LTDDiseño presentación corporativa SENTIMOTO LTD
Diseño presentación corporativa SENTIMOTO LTDMarcel Molina Valenzuela
 
Ten ways to take your hashtags to the next level
Ten ways to take your hashtags to the next levelTen ways to take your hashtags to the next level
Ten ways to take your hashtags to the next levelLindsay Nyquist
 
Slide tutorial penyampaian spt 1770 s dengan wizard
Slide tutorial penyampaian spt 1770 s dengan wizardSlide tutorial penyampaian spt 1770 s dengan wizard
Slide tutorial penyampaian spt 1770 s dengan wizardKppkp Bangil
 

Recommended

CILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global SummitCILogon 2.0 at 2017 Internet2 Global Summit
CILogon 2.0 at 2017 Internet2 Global Summitjbasney
 
CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016CILogon 2.0 Update at TechEx 2016
CILogon 2.0 Update at TechEx 2016jbasney
 
Interdisciplinary Research 2013
Interdisciplinary Research 2013Interdisciplinary Research 2013
Interdisciplinary Research 2013FSU College of Law Research Center
 
Genderand law
Genderand lawGenderand law
Genderand lawFSU College of Law Research Center
 
Online Public Compound Databases
Online Public Compound DatabasesOnline Public Compound Databases
Online Public Compound DatabasesUS Environmental Protection Agency (EPA), Center for Computational Toxicology and Exposure
 
Diseño presentación corporativa SENTIMOTO LTD
Diseño presentación corporativa SENTIMOTO LTDDiseño presentación corporativa SENTIMOTO LTD
Diseño presentación corporativa SENTIMOTO LTDMarcel Molina Valenzuela
 
Ten ways to take your hashtags to the next level
Ten ways to take your hashtags to the next levelTen ways to take your hashtags to the next level
Ten ways to take your hashtags to the next levelLindsay Nyquist
 
Slide tutorial penyampaian spt 1770 s dengan wizard
Slide tutorial penyampaian spt 1770 s dengan wizardSlide tutorial penyampaian spt 1770 s dengan wizard
Slide tutorial penyampaian spt 1770 s dengan wizardKppkp Bangil
 
SAML Security Contacts
SAML Security ContactsSAML Security Contacts
SAML Security Contactsjbasney
 
FeduShare TechEx15
FeduShare TechEx15FeduShare TechEx15
FeduShare TechEx15jbasney
 
Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Kppkp Bangil
 
Qui som
Qui somQui som
Qui somIpomea Associació
 
Brianna
BriannaBrianna
Briannabribri300
 
Ten tips to improve your Facebook presence
Ten tips to improve your Facebook presenceTen tips to improve your Facebook presence
Ten tips to improve your Facebook presenceLindsay Nyquist
 
Magazzini
MagazziniMagazzini
MagazziniFrancesco Eterno
 
Simulasi spt op2009
Simulasi spt op2009Simulasi spt op2009
Simulasi spt op2009Kppkp Bangil
 
Sekilas tentang pajak
Sekilas tentang pajakSekilas tentang pajak
Sekilas tentang pajakKppkp Bangil
 
Prabhav services inc
Prabhav services incPrabhav services inc
Prabhav services inchiren2012
 
презентациякитай
презентациякитайпрезентациякитай
презентациякитайnasten4ik_29
 
Module 2
Module 2Module 2
Module 2shakyra90
 
Pitch deck powerpoint
Pitch deck powerpointPitch deck powerpoint
Pitch deck powerpointRobinson Hernandez
 
Hashtags & friends
Hashtags & friendsHashtags & friends
Hashtags & friendsLindsay Nyquist
 
Cybersecurity for Conservation
Cybersecurity for ConservationCybersecurity for Conservation
Cybersecurity for Conservationjbasney
 
CILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global SummitCILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global Summitjbasney
 
Ptkp
PtkpPtkp
PtkpKppkp Bangil
 
Getting Social With Social: Using social media education to build relationshi...
Getting Social With Social: Using social media education to build relationshi...Getting Social With Social: Using social media education to build relationshi...
Getting Social With Social: Using social media education to build relationshi...Lindsay Nyquist
 
Washtech presentation
Washtech presentationWashtech presentation
Washtech presentationsorgho
 
Sosialisasi tanggal 22 mei 2012
Sosialisasi tanggal 22 mei 2012Sosialisasi tanggal 22 mei 2012
Sosialisasi tanggal 22 mei 2012Kppkp Bangil
 
CILogon 2.0 MAGIC SC16
CILogon 2.0 MAGIC SC16CILogon 2.0 MAGIC SC16
CILogon 2.0 MAGIC SC16jbasney
 
CILogon and InCommon: Technical Update
CILogon and InCommon: Technical UpdateCILogon and InCommon: Technical Update
CILogon and InCommon: Technical Updatejbasney
 

More Related Content

Viewers also liked

SAML Security Contacts
SAML Security ContactsSAML Security Contacts
SAML Security Contactsjbasney
 
FeduShare TechEx15
FeduShare TechEx15FeduShare TechEx15
FeduShare TechEx15jbasney
 
Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Kppkp Bangil
 
Ten tips to improve your Facebook presence
Ten tips to improve your Facebook presenceTen tips to improve your Facebook presence
Ten tips to improve your Facebook presenceLindsay Nyquist
 
Simulasi spt op2009
Simulasi spt op2009Simulasi spt op2009
Simulasi spt op2009Kppkp Bangil
 
Sekilas tentang pajak
Sekilas tentang pajakSekilas tentang pajak
Sekilas tentang pajakKppkp Bangil
 
Prabhav services inc
Prabhav services incPrabhav services inc
Prabhav services inchiren2012
 
презентациякитай
презентациякитайпрезентациякитай
презентациякитайnasten4ik_29
 
Cybersecurity for Conservation
Cybersecurity for ConservationCybersecurity for Conservation
Cybersecurity for Conservationjbasney
 
CILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global SummitCILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global Summitjbasney
 
Getting Social With Social: Using social media education to build relationshi...
Getting Social With Social: Using social media education to build relationshi...Getting Social With Social: Using social media education to build relationshi...
Getting Social With Social: Using social media education to build relationshi...Lindsay Nyquist
 
Washtech presentation
Washtech presentationWashtech presentation
Washtech presentationsorgho
 
Sosialisasi tanggal 22 mei 2012
Sosialisasi tanggal 22 mei 2012Sosialisasi tanggal 22 mei 2012
Sosialisasi tanggal 22 mei 2012Kppkp Bangil
 

Viewers also liked (20)

SAML Security Contacts
SAML Security ContactsSAML Security Contacts
SAML Security Contacts
 
FeduShare TechEx15
FeduShare TechEx15FeduShare TechEx15
FeduShare TechEx15
 
Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009Petunjuk isi pph badan 2009
Petunjuk isi pph badan 2009
 
Qui som
Qui somQui som
Qui som
 
Brianna
BriannaBrianna
Brianna
 
Ten tips to improve your Facebook presence
Ten tips to improve your Facebook presenceTen tips to improve your Facebook presence
Ten tips to improve your Facebook presence
 
Magazzini
MagazziniMagazzini
Magazzini
 
Simulasi spt op2009
Simulasi spt op2009Simulasi spt op2009
Simulasi spt op2009
 
Sekilas tentang pajak
Sekilas tentang pajakSekilas tentang pajak
Sekilas tentang pajak
 
Prabhav services inc
Prabhav services incPrabhav services inc
Prabhav services inc
 
презентациякитай
презентациякитайпрезентациякитай
презентациякитай
 
Module 2
Module 2Module 2
Module 2
 
Pitch deck powerpoint
Pitch deck powerpointPitch deck powerpoint
Pitch deck powerpoint
 
Hashtags & friends
Hashtags & friendsHashtags & friends
Hashtags & friends
 
Cybersecurity for Conservation
Cybersecurity for ConservationCybersecurity for Conservation
Cybersecurity for Conservation
 
CILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global SummitCILogon 2.0 at 2016 Internet2 Global Summit
CILogon 2.0 at 2016 Internet2 Global Summit
 
Ptkp
PtkpPtkp
Ptkp
 
Getting Social With Social: Using social media education to build relationshi...
Getting Social With Social: Using social media education to build relationshi...Getting Social With Social: Using social media education to build relationshi...
Getting Social With Social: Using social media education to build relationshi...
 
Washtech presentation
Washtech presentationWashtech presentation
Washtech presentation
 
Sosialisasi tanggal 22 mei 2012
Sosialisasi tanggal 22 mei 2012Sosialisasi tanggal 22 mei 2012
Sosialisasi tanggal 22 mei 2012
 

Similar to CILogon: An Integrated Identity and Access Management Platform for Science

CILogon 2.0 MAGIC SC16
CILogon 2.0 MAGIC SC16CILogon 2.0 MAGIC SC16
CILogon 2.0 MAGIC SC16jbasney
 
CILogon and InCommon: Technical Update
CILogon and InCommon: Technical UpdateCILogon and InCommon: Technical Update
CILogon and InCommon: Technical Updatejbasney
 
Partial Listing of Affiliated Universities, Colleges, and Schools supporting ...
Partial Listing of Affiliated Universities, Colleges, and Schools supporting ...Partial Listing of Affiliated Universities, Colleges, and Schools supporting ...
Partial Listing of Affiliated Universities, Colleges, and Schools supporting ...William Kritsonis
 
Biomedical Technology Careers
Biomedical Technology CareersBiomedical Technology Careers
Biomedical Technology CareersJenny Gildon
 
Openness as a Catalyst for Education - Jared Stein
Openness as a Catalyst for Education - Jared SteinOpenness as a Catalyst for Education - Jared Stein
Openness as a Catalyst for Education - Jared SteinWCET
 
Openness as a Catalyst for Education (2009)
Openness as a Catalyst for Education (2009)Openness as a Catalyst for Education (2009)
Openness as a Catalyst for Education (2009)Jared Stein
 
National FORUM Journals - Partial Listing of Affiliated Colleges, Universitie...
National FORUM Journals - Partial Listing of Affiliated Colleges, Universitie...National FORUM Journals - Partial Listing of Affiliated Colleges, Universitie...
National FORUM Journals - Partial Listing of Affiliated Colleges, Universitie...William Kritsonis
 
Partial Listing of Affiliated Colleges, Universities, Schools - NATIONAL FORU...
Partial Listing of Affiliated Colleges, Universities, Schools - NATIONAL FORU...Partial Listing of Affiliated Colleges, Universities, Schools - NATIONAL FORU...
Partial Listing of Affiliated Colleges, Universities, Schools - NATIONAL FORU...William Kritsonis
 
Student Body Presidents Debt Ceiling Letter
Student Body Presidents Debt Ceiling LetterStudent Body Presidents Debt Ceiling Letter
Student Body Presidents Debt Ceiling LetterObama White House
 
About National Collegiate Inventors and Innovators Alliance
About National Collegiate Inventors and Innovators AllianceAbout National Collegiate Inventors and Innovators Alliance
About National Collegiate Inventors and Innovators AllianceHumera Fasihuddin
 
Outcomes i webinar 9 25-20
Outcomes i webinar 9 25-20Outcomes i webinar 9 25-20
Outcomes i webinar 9 25-20Charles Trafton
 
Second Life For Education 17293
Second Life For Education 17293Second Life For Education 17293
Second Life For Education 17293tpetrea55
 
Second Life for Education
Second Life for EducationSecond Life for Education
Second Life for Educationiconolith
 
Second life-for-education-17293
Second life-for-education-17293Second life-for-education-17293
Second life-for-education-17293angel pazos presas
 

Similar to CILogon: An Integrated Identity and Access Management Platform for Science (20)

CILogon 2.0 MAGIC SC16
CILogon 2.0 MAGIC SC16CILogon 2.0 MAGIC SC16
CILogon 2.0 MAGIC SC16
 
CILogon and InCommon: Technical Update
CILogon and InCommon: Technical UpdateCILogon and InCommon: Technical Update
CILogon and InCommon: Technical Update
 
Partial Listing of Affiliated Universities, Colleges, and Schools supporting ...
Partial Listing of Affiliated Universities, Colleges, and Schools supporting ...Partial Listing of Affiliated Universities, Colleges, and Schools supporting ...
Partial Listing of Affiliated Universities, Colleges, and Schools supporting ...
 
Biomedical Technology Careers
Biomedical Technology CareersBiomedical Technology Careers
Biomedical Technology Careers
 
Centers visiting diego fdezsevilla research country
Centers visiting diego fdezsevilla research countryCenters visiting diego fdezsevilla research country
Centers visiting diego fdezsevilla research country
 
Openness as a Catalyst for Education - Jared Stein
Openness as a Catalyst for Education - Jared SteinOpenness as a Catalyst for Education - Jared Stein
Openness as a Catalyst for Education - Jared Stein
 
Openness as a Catalyst for Education (2009)
Openness as a Catalyst for Education (2009)Openness as a Catalyst for Education (2009)
Openness as a Catalyst for Education (2009)
 
National FORUM Journals - Partial Listing of Affiliated Colleges, Universitie...
National FORUM Journals - Partial Listing of Affiliated Colleges, Universitie...National FORUM Journals - Partial Listing of Affiliated Colleges, Universitie...
National FORUM Journals - Partial Listing of Affiliated Colleges, Universitie...
 
IMPACT Final Conference - Paul Fogel
IMPACT Final Conference - Paul FogelIMPACT Final Conference - Paul Fogel
IMPACT Final Conference - Paul Fogel
 
Partial Listing of Affiliated Colleges, Universities, Schools - NATIONAL FORU...
Partial Listing of Affiliated Colleges, Universities, Schools - NATIONAL FORU...Partial Listing of Affiliated Colleges, Universities, Schools - NATIONAL FORU...
Partial Listing of Affiliated Colleges, Universities, Schools - NATIONAL FORU...
 
Student Body Presidents Debt Ceiling Letter
Student Body Presidents Debt Ceiling LetterStudent Body Presidents Debt Ceiling Letter
Student Body Presidents Debt Ceiling Letter
 
About National Collegiate Inventors and Innovators Alliance
About National Collegiate Inventors and Innovators AllianceAbout National Collegiate Inventors and Innovators Alliance
About National Collegiate Inventors and Innovators Alliance
 
University Map
University MapUniversity Map
University Map
 
Outcomes i webinar 9 25-20
Outcomes i webinar 9 25-20Outcomes i webinar 9 25-20
Outcomes i webinar 9 25-20
 
National Name Exchange Annual Report 2010
National Name Exchange Annual Report 2010National Name Exchange Annual Report 2010
National Name Exchange Annual Report 2010
 
Second Life For Education 17293
Second Life For Education 17293Second Life For Education 17293
Second Life For Education 17293
 
Second Life for Education
Second Life for EducationSecond Life for Education
Second Life for Education
 
Second life-for-education-17293
Second life-for-education-17293Second life-for-education-17293
Second life-for-education-17293
 
Respiratory therapy schools list
Respiratory therapy schools listRespiratory therapy schools list
Respiratory therapy schools list
 
2014 ASPB Presentation- Berardini
2014 ASPB Presentation- Berardini2014 ASPB Presentation- Berardini
2014 ASPB Presentation- Berardini
 

More from jbasney

Guidance and Survey Results from the Trustworthy Data Working Group
Guidance and Survey Results from the Trustworthy Data Working GroupGuidance and Survey Results from the Trustworthy Data Working Group
Guidance and Survey Results from the Trustworthy Data Working Groupjbasney
 
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)jbasney
 
CILogon & SciTokens: OIDC/OAuth Federation
CILogon & SciTokens: OIDC/OAuth FederationCILogon & SciTokens: OIDC/OAuth Federation
CILogon & SciTokens: OIDC/OAuth Federationjbasney
 
CILogon 2.0 - IAM Online Webinar Series
CILogon 2.0 - IAM Online Webinar SeriesCILogon 2.0 - IAM Online Webinar Series
CILogon 2.0 - IAM Online Webinar Seriesjbasney
 
Lightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
Lightweight Cybersecurity Risk Assessment Tools for CyberinfrastructureLightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
Lightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructurejbasney
 
CILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meetingCILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meetingjbasney
 
11th FIM4R Workshop: US Projects Update
11th FIM4R Workshop: US Projects Update11th FIM4R Workshop: US Projects Update
11th FIM4R Workshop: US Projects Updatejbasney
 
CILogon PEARC17
CILogon PEARC17CILogon PEARC17
CILogon PEARC17jbasney
 
CTSC+SWAMP: cybersecurity resources for your campus
CTSC+SWAMP: cybersecurity resources for your campusCTSC+SWAMP: cybersecurity resources for your campus
CTSC+SWAMP: cybersecurity resources for your campusjbasney
 
Trusting External Identity Providers for Global Research Collaborations
Trusting External Identity Providers for Global Research CollaborationsTrusting External Identity Providers for Global Research Collaborations
Trusting External Identity Providers for Global Research Collaborationsjbasney
 
CTSC at TNC16
CTSC at TNC16CTSC at TNC16
CTSC at TNC16jbasney
 
CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30jbasney
 

More from jbasney (12)

Guidance and Survey Results from the Trustworthy Data Working Group
Guidance and Survey Results from the Trustworthy Data Working GroupGuidance and Survey Results from the Trustworthy Data Working Group
Guidance and Survey Results from the Trustworthy Data Working Group
 
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
Federated Identity Needs for the Large Synoptic Survey Telescope (LSST)
 
CILogon & SciTokens: OIDC/OAuth Federation
CILogon & SciTokens: OIDC/OAuth FederationCILogon & SciTokens: OIDC/OAuth Federation
CILogon & SciTokens: OIDC/OAuth Federation
 
CILogon 2.0 - IAM Online Webinar Series
CILogon 2.0 - IAM Online Webinar SeriesCILogon 2.0 - IAM Online Webinar Series
CILogon 2.0 - IAM Online Webinar Series
 
Lightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
Lightweight Cybersecurity Risk Assessment Tools for CyberinfrastructureLightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
Lightweight Cybersecurity Risk Assessment Tools for Cyberinfrastructure
 
CILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meetingCILogon 2.0 at Oct 2017 CICI PI meeting
CILogon 2.0 at Oct 2017 CICI PI meeting
 
11th FIM4R Workshop: US Projects Update
11th FIM4R Workshop: US Projects Update11th FIM4R Workshop: US Projects Update
11th FIM4R Workshop: US Projects Update
 
CILogon PEARC17
CILogon PEARC17CILogon PEARC17
CILogon PEARC17
 
CTSC+SWAMP: cybersecurity resources for your campus
CTSC+SWAMP: cybersecurity resources for your campusCTSC+SWAMP: cybersecurity resources for your campus
CTSC+SWAMP: cybersecurity resources for your campus
 
Trusting External Identity Providers for Global Research Collaborations
Trusting External Identity Providers for Global Research CollaborationsTrusting External Identity Providers for Global Research Collaborations
Trusting External Identity Providers for Global Research Collaborations
 
CTSC at TNC16
CTSC at TNC16CTSC at TNC16
CTSC at TNC16
 
CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30CILogon 2.0 at REFEDS 30
CILogon 2.0 at REFEDS 30
 

Recently uploaded

How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 

Recently uploaded (20)

How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 

CILogon: An Integrated Identity and Access Management Platform for Science

  • 1. CILogon An Integrated Identity and Access Management Platform for Science This material is based upon work supported by the National Science Foundation under grant numbers 0850557, 0943633, 1053575, 1440609, and 1547268 and by the Department of Energy under award number DE-SC0008597. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the United States Government or any agency thereof. Jim Basney jbasney@ncsa.illinois.edu December 2016
  • 2. CILogon www.cilogon.org CILogon - Launched Sep 2010 ❏ Enables use of federated identities for access to cyberinfrastructure ❏ Translates across federations and protocols ❏ Supported by XSEDE
  • 4. CILogon www.cilogon.org 162 Active IdPs (Nov 2016) Fermi National Accelerator Laboratory LIGO Scientific Collaboration Ohio State University National Institutes of Health University of Michigan Purdue University Main Campus Google University of Chicago University of Illinois at Urbana-Champaign University of California-Los Angeles Johns Hopkins Indiana University University of Colorado at Boulder University of Minnesota Argonne National Laboratory University of California, Berkeley New York University University of Cincinnati Main Campus University of Nebraska-Lincoln The George Washington University Lawrence Berkeley National Laboratory University of Southern California University of Florida The University of Arizona Stanford University Yale University University of Wisconsin-Madison Michigan State University Cornell University Northwestern University University of Hawaii University of Utah University of North Carolina at Chapel Hill University of California-San Diego University of California, Davis Princeton University University of Wyoming University of Texas at Austin Oak Ridge National Laboratory Duke University Case Western Reserve University University of Washington University of Rochester Montana State University - Bozeman Clemson University Texas A & M University University of Notre Dame Massachusetts Institute of Technology West Virginia University University of Pittsburgh Rice University University of New Mexico Penn State Carnegie Mellon University University of South Dakota North Carolina State University University of California-Santa Barbara Columbia University California Institute of Technology Arizona State University University of Maryland College Park Rutgers Iowa State University Georgia Institute of Technology University of Iowa University of Pennsylvania University of California-Irvine Ohio University Main Campus Boston University Vanderbilt University Texas Tech University Oklahoma State University System Ohio Technology Consortium Colorado School of Mines Boise State University Virginia Polytechnic Institute and State University Tufts University Stony Brook University Marshall University Georgetown University Florida International University Brown University Weill Cornell Medical College University of Texas at Dallas University of North Carolina At Charlotte University of Dayton University of California, San Francisco Rockefeller University Old Dominion University Harvey Mudd College ESnet Colorado State University Baylor College of Medicine Woods Hole Oceanographic Institution Uppsala University University of Vermont University of Massachusetts Amherst University of Illinois at Chicago University of Delaware University of Alabama, The University of Alabama at Birmingham National Center for Supercomputing Applications Lund University Kansas State University George Mason University CERN University of Wisconsin-Milwaukee University of Tennessee University of Nebraska Medical Center University of Kansas University of Houston University of California, Santa Cruz United ID Texas State University - San Marcos Syracuse University Stevens Institute of Technology Southern Illinois University Nikhef Louisiana State University Lehigh University Lamar University Florida Atlantic University Wayne State University Vassar College University of Virginia University of South Florida University of South Carolina University of Oklahoma University of Nevada, Reno University of Nebraska University of Missouri System University of Miami University of Massachusetts - Dartmouth University of Maryland Baltimore University of California, Riverside University of Basel University of Arkansas University of Alaska Statewide System The University of Memphis The Broad Institute of MIT and Texas A&M University-Corpus Christi Rensselaer Polytechnic Institute PSI - Paul Scherrer Institut Oregon State University NOAA CAC Moss Landing Marine Laboratories Miami University Loyola University of Chicago Lafayette College Goucher College EPFL - EPF Lausanne College of William and Mary Cedarville University Carleton College California State University, Fullerton Brookhaven National Laboratory Brandeis University Baylor University International IdPs are highlighted
  • 5. CILogon www.cilogon.org CILogon-enabled Sites ❏ ATLAS Connect ❏ CMS Connect ❏ DataONE ❏ DOE KBase ❏ Duke CI Connect ❏ Fermilab ❏ Globus ❏ IU CI Gateway ❏ LIGO ❏ OOI ❏ OSC OnDemand ❏ OSG Connect ❏ SeedMe ❏ XSEDE ECP ECP
  • 6. CILogon www.cilogon.org SAML SP OIDC Provider X.509 CA HSM OIDC SP MFA LDAP COmanage Identities MFA Tokens SSH Keys Groups Attributes SAML AA User Registry eduGAIN IdP Google IdP Science App OAuth SPORCID IdP Science App Science App Science App InCommon IdP CILogon 2.0 CILogon: federated identity management COmanage: collaborative organization management
  • 7. CILogon www.cilogon.org Managing Project Groups/Roles COmanage provides: ❏ enrollment flows ❏ expiration policies ❏ self service permissions ❏ pipelines https://spaces.internet2.edu/display/COmanage/COmanage+Technical+Manual
  • 8. CILogon www.cilogon.org Policy Issues ❏ Assurance https://wiki.refeds.org/display/GROUPS/Assurance+Working+Group ❏ Federated attribute release https://refeds.org/category/research-and-scholarship ❏ Federated security incident response https://refeds.org/sirtfi
  • 9. CILogon www.cilogon.org #1 Request: Add My Home Org ❏ Does Org operate a federated IdP? ❏ Is Org's IdP in eduGAIN ? ❏ Is Org's IdP interoperable? ❏ Does Org's IdP meet assurance/security requirements? ❏ We automate the federation process