...
analyse how much has been developed to leverage federated access with other authentication systems used in the R&E communities, in the eGov space and in the commercial sector;
research a possible solution to link identities in the contest of higher levels of assurance, attribute providers and guest identities;
assess existing technologies to provide SSO for non-Web applications (cloud, storage and so on) and offer recommendations for their usage;
develop a risk-based model for existing AAI solutions;
propose models for supporting guest identities (NRENs’ in-house solutions vs commercially-offered solutions should be explored);
define a blueprint architecture to enable web and non-web SSO capabilities across different infrastructures, integrating attribute providers/group management tools operated by user-communities;
provide models for federated authorisation: how to integrate attributes and permissions from diverse communities, making them available at the federation level in a consistent and secure way.
Structure of the activity
Task ID | Task | Leader |
---|---|---|
Task 1 (JRA1.1) | Requirements Gathering | Peter Solagna (EGI.eu) |
Task 2 (JRA1.2) | Blueprint Architectures | Marcus Hardt (KIT) |
Task 3 (JRA1.3) | Guest Identities | Jens Jensen - STFC UKRI (STFC) |
Task 4 (JRA1.4) | Models for implementing Attribute Providers and Token Translation Services | Davide Vaghetti (GARR) |
...