Federated Security: The Shibboleth Approach

摘要: Number 4 2004 • EDUCAUSE QUARTERLY 13 The Fifth Annual Educause Current Issues Survey1 ranked “security and identity management” near the top of list critical IT challenges on campus today. Recognition crucial importance securing networked resources led Internet2 to establish its Middleware Initiative (I2MI) in 1999. While was founded develop deploy advanced network technologies applications, it clear from start that high-speed networks would simply provide a quicker path abuse unless improved methods managing controlling access were developed deployed along with those networks. I2MI has brought together middleware architects work fundamental issues authentication, authorization, directory services make secure inter-institutional possible practical. most innovative effort date is Shibboleth Project.2 Its primary product, System,  supports user Webbased resources; enables independent organizations federate extend capabilities their existing identity-management services; multi-organizational federations enable scalable use technology; encourages attribute-based authorization; provides controls protect privacy personal information; Federated Security: Approach