1 / 5

Innovations in Federation Services: Insights from GEMBus STS and OAuth Experiments

This report discusses the latest developments in federation services as presented at Telefónica I+D in Bologna, November 2011. Key topics include the fully operational version of the GEMBus STS, innovations in OAuth and JSON, and proposals for proxies reformulated and submitted to REFEDS. The document emphasizes the importance of data protection, interconnection issues, and the integration of REST/SOAP with OAuth. Additionally, it highlights the convergence of previous proposals and the necessity of establishing trust in configuration rules for user institutions.

pakuna
Télécharger la présentation

Innovations in Federation Services: Insights from GEMBus STS and OAuth Experiments

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. News from the Other Side(s) Telefónica I+D Bologna, November2011

  2. TheSides • The GEMBus STS • First fully operational version available • Experiments with OAuth • Proposal on proxies reformulated and submitted to REFEDS • JSON gaining traction: JOSE (IETF) and SCIM (clouds) • STORK meets eduGAIN • Metadata and data protection issues first • Considering interconnection (even mutual) • OpenID Connect on its way • Watch for Roland’s presentation • Applications on my other side • M2M, control, metering, IPv6 privacy concerns, routing(!)

  3. The GemSTS Overall Design

  4. REST/SOAP Integration • Some tests have been performed to support REST/SOAP integration with OAuth2lib and GemSTS • The OAuth AS can request an OAuth token from GemSTS • The OAuth RS can delegate token validation to GemSTS

  5. Reformulated Proposal on Proxies to REFEDS • Including scenarios in which proxies can be used to enhance federation services • It is not proxies vs. federations • Incorporating a Web interface to the configuration repository • Trying to make the two original proposals converge • Introducing the analogy to federation metadata • As user institutions have to put a similar trust on configuration rules

More Related