Blog from April, 2011

IAM Online May 11 - The Challenges of User Consent
Dean Woodbeck (internet2.edu) posted on Apr 28, 2011

IAM Online - Wednesday, May 11, 2011

3 p.m. EDT / 2 p.m. CDT / 1 p.m. MDT / Noon PDT
www.incommon.org/iamonline

The Challenges of User Consent

Are you starting to see more requests from SPs seeking user attributes? Would you like to explore methods that would simplify the attribute release process? You aren’t alone. Campuses are seeking a scalable approach to managing attribute release that will minimize admin involvement and allow users to access sites like those that support collaborative work and want such attributes as EPPN, name, and email.

Automating the user consent procedure, combined with metadata-driven attribute release, provides an approach that greatly simplifies this process for all parties, and allows users to reach sites without delay.

Join us for a discussion and demonstration from Brown University and the University of Southern California.

Host and Speakers

Tom Barton (host), Sr. Director – Architecture, Integration and CISO, University of Chicago
Russell Beall, Director, ITS Enterprise System Development, University of Southern California
Steven Carmody, Sr. IT Architect, Brown University

Connecting

We use Adobe Connect for slide sharing and audio: http://internet2.acrobat.com/iam-online. For more details, see www.incommon.org/iamonline.

ABOUT IAM Online

IAM Online is a monthly online education series including essentials of federated identity management, hot topics from the EDUCAUSE Identity and Access Management Working Group, and emerging topics in IAM. Experts provide overviews, answer questions and lead discussions. IAM is brought to you by InCommon in cooperation with Internet2 and the EDUCAUSE Identity and Access Management Working Group.

Unicon Renews as InCommon Affiliate
Dean Woodbeck (internet2.edu) posted on Apr 26, 2011

ANN ARBOR, Michigan – April 26, 2011 – Unicon, Inc., a leading provider of information technology consulting services for the education market, has renewed as an InCommon Affiliate for 2011.

The InCommon Affiliate Program provides the research and education community with a way to connect with partners able to help build the necessary underlying infrastructure that supports federated access.

“InCommon streamlines research and collaboration between institutions,” said John Blakley, Chief Executive Officer of Unicon. “We recognize the value of Shibboleth as it relates to the InCommon community, and have formalized a program to support our Shibboleth customers with direct access to qualified technical staff, including an option for custom development work.”

Unicon provides services for authentication solutions, including Shibboleth Federated Single Sign-On Software, offering implementation planning, branding, installation, configuration, custom development, mentoring, and support. Unicon can implement and customize Shibboleth for uPortal, Sakai, and other enterprise applications. The company also offers solutions for Jasig’s CAS Single Sign-On (Central Authentication Service).

“Shibboleth and core identity management infrastructure are key for a large majority of our participants,” said John Krienke, chief operating officer of InCommon. “We’re pleased to again welcome Unicon and their extensive experience with Shibboleth implementations for both identity providers and online service providers.”

For more information, and a list of current affiliates, go to www.incommon.org/affiliate.

ABOUT UNICON
Unicon, Inc. is a leading provider of IT consulting services for the education market. Unicon works closely with colleges, universities, and corporations to find the best solutions to meet their business challenges. Unicon specializes in using open source technologies to deliver flexible and cost-effective systems in the areas of enterprise portals, learning management systems, identity and access management, online video, calendaring, email, and collaboration. Unicon is a Sakai Commercial Affiliate; an InCommon Affiliate; an Industry Member of Internet2; a Jasig and VMware Partner; an authorized Solution Provider for CAS, uPortal, and VMware; a services partner and reseller of Kaltura, Liferay, and Zimbra; and a Contributing Member of the IMS Global Learning Consortium. For more information, visit: www.unicon.net.

ABOUT INCOMMON
InCommon serves the U.S. education and research communities, supporting a common framework of trust services and operating the InCommon Federation, the U.S. trust federation for research and education, and the community-driven InCommon Certificate Service. The InCommon Federation enables scalable, trusted collaborations among its community of participants. Identity Providers give their users single sign-on convenience and privacy protection, while Service Providers control access to their protected resources. The Certificate Service offers unlimited certificates to the U.S. higher education community for one fixed annual fee. For more information, see www.incommon.org.

Advance CAMP Early-Bird Rates End April 22
Dean Woodbeck (internet2.edu) posted on Apr 15, 2011

Early-bird pricing ends April 22 for Advance CAMP: Identity Services Summit. Those attending the identity summit will help create the agenda on-site, then work together on solutions for provisioning, discovery, authorization and other identity-related issues.

Advance CAMP: Identity Services Summit III
Westminster, Colorado * May 25-27, 2011https://spaces.at.internet2.edu/display/ACAMPIdSummit2011/Home

EARLY BIRD REGISTRATION ENDS FRIDAY, APRIL 22. Register now athttps://spaces.at.internet2.edu/display/ACAMPIdSummit2011/Home

PROGRAM FRAMEWORK available athttps://spaces.at.internet2.edu/display/ACAMPIdSummit2011/Advance+CAMP+Program

The meeting will feature an unconference-style agenda. Invited talks will get the juices flowing and provide background on hot topics. There will be substantial time for exploration and discussion.

POST YOUR TOPICS IDEAS and contributions for Advance CAMP program athttps://spaces.at.internet2.edu/display/ACAMPIdSummit2011/Participants+and+Requested+Topics

Proposed sessions include:

  • Standard APIs for Identity Services
  • Identity for Research and Virtual Organizations
  • Provisioning Initiatives
  • General-purpose Authorization Libraries
  • Federation, Inter-Federation, Federated SSH
  • Identity Assurance Profiles
  • Groups and Federations
  • Invitation-based Identity Providers

SEEKING the participation of architects, developers, and deployers of open-source and commercial-sponsored software, services, and frameworks to:

  • Engage in solving identity-related challenges of importance to you
  • Hear about who's doing what and how to participate in or leverage their activities
  • Develop your take-aways for using technologies such as Facebook, OAuth, OpenID, SAML, Kuali KIM, OpenSocial, Spring, and Django among others

COME EARLY and attend Jasig's Spotlight on Open Source Conference held just prior to Advance CAMP at the same location. Information can be found at http://www.jasig.org/jasigs-spotlight-open-source . Attendees
of both the Jasig and Advance CAMP events receive a $50 rebate on each registration.

SPECIAL RECIPROCAL PROMOTION for Jasig and Advance CAMP attendees! Jasig registrants can attend Advance CAMP Wednesday afternoon sessions as our guest! Advance CAMPers can come early and attend the Jasig sessions for free on Wednesday morning.

ADVANCE CAMP is sponsored by the InCommon Federation in cooperation with Internet2, Jasig, and the Kuali Foundation.

InCommon and Middleware at the Spring Member Meeting
Dean Woodbeck (internet2.edu) posted on Apr 11, 2011

Planning to attend the Internet2 2011 Spring Member Meeting, April 18-20, in Arlington, Virginia? Both the Focus on Federation and the Middleware tracks have full schedules from which you can choose.

InCommon will again hold two community forums, a technical forum on Monday (April 18) at 1:15 p.m., and a policy forum on Tuesday (April 19) at 8:45 a.m.

Other sessions of interest to InCommon participants include:

  • Identity: Now a Major Motion Picture - R.L. "Bob" Morgan's look at the state of affairs in identity and access management. (Monday at 3 p.m.)
  • InCommon Identity Assurance Profiles - an update on Bronze and Silver (Monday at 4:30 p.m.)
  • The Emerging Infrasturcture of Identity and Federation (Tuesday at 1:15 p.m.)
  • InCommon Certificate Service: Experiences from Deployers (Tuesday at 3 p.m.)

You can see the full Focus on Federation and Middleware schedule on the Spring Member Meeting program web page.

For those not attending in person, the InCommon Policy Forum and the Certificate Service session will both be available via Netcast.

InCommon Policy Forum, Certificate Service Session to be Netcast
Dean Woodbeck (internet2.edu) posted on Apr 06, 2011

The InCommon Policy Forum and a track session focused on experiences with the InCommon Certificate Service will be available via Netcast from the 2011 Internet2 Spring Member Meeting on Tuesday, April 19. The Member Meeting site includes a Netcast schedule with links to the live streams.

InCommon Policy Forum
Tuesday, April 19 - 8:45 - 10 a.m. (EDT)
Speakers: Jack Suess, chair of InCommon Steering, will moderate the Forum

The InCommon Policy Forum will include topics of importance developed by the InCommon Steering Committee, as well as those raised by attendees. Topics likely to be discussed include the Identity Assurance Program (also known as Bronze and Silver), user consent to attribute release (with a demo), and federating with the federal government.

InCommon Certificate Service - Experiences from Deployers
Tuesday, April 19 - 3-4 p.m. (EDT)
Speakers: Paul Caskey (University of Texas System) and Jim Jokl (University of Virginia)

InCommon operates a community-driven certificate service, providing unlimited SSL and personal certificates for all domains owned and controlled by a college or university. A number of other additional, specialized services are available for a fee, as well. This session will provide an overview of the base service and include a panel discussion about deployment experiences and cost savings.

InCommon Newsletter - April 2011
Dean Woodbeck (internet2.edu) posted on Apr 05, 2011

InCommon News - April 5, 2011

---------------
In This Issue:

  • April 13 IAM Online Addresses Guest Access
  • Spring Member Meeting: Focus on Federation Track
  • Fischer International Joins Affiliate Program
  • InCommon Welcomes 200th Higher Ed Participant
  • Certificate Service Reaches 100 Subscribers
  • Registration Open for CAMP: Hot Topics in Identity and Federated Identity Management
  • Register by April 22 for Advance CAMP: Identity Services Summit III
  • About Fischer International – New InCommon Affiliate

---------------
April 13 IAM Online Addresses Guest Access
The April IAM (Identity and Access Management) Online will feature a presentation, case studies, and the pros and cons of using social networking identities or Open IDs to provide guest access to low-risk campus services. The IAM Online is Wednesday, April 13, at 3 p.m. EDT. Dedra Chamberlin (University of California Berkeley) will provide some background on why campuses are considering the use of social networking IDs and Open IDs on campus and what concerns such use raises, followed by case studies from Penn State and the National Institutes of Health. For details, see www.incommon.org/iamonline.

---------------
Spring Member Meeting: Focus on Federation Track – April 18-20, 2011
The Internet2 Spring Member Meeting (April 18-20) will feature both federation and middleware track sessions, as well as a number of related working group meetings. If you can’t attend, the InCommon Policy Forum and the track session on the InCommon Certificate Service will both be Netcast (see http://bit.ly/fKGibp). Details on the program, plus registration information, is available at http://events.internet2.edu/2011/spring-mm/

---------------
Fischer International Becomes InCommon Affiliate
Fischer International Identity (www.fischerinternational.com), a leading provider of identity management solutions, has become an InCommon Affiliate. Fischer International’s identity management solution includes their “Federation On-Ramp,” a low-cost, managed solution that provides institutions with an immediate entry-way to the InCommon Federation and without having to dedicate or hire skilled resources to deploy and manage a federation infrastructure. See additional details below.

---------------
InCommon Welcomes 200th Higher Ed Participant
InCommon reached another growth milestone, welcoming its 200th higher education participant in March. In addition to colleges and university, the 282 InCommon participants include research organizations, agencies of the U.S. government, and private companies that offer online services.

---------------
Certificate Service Reaches 100 Subscribers
The InCommon Certificate Service, just launched in August 2010, has reached 100 subscribers. The service provides unlimited SSL, client and code signing digital certificates to higher education for all domains owned or controlled by the institution. So far, the service has issued 7,653 certificates to its subscribers. Details are available at www.incommon.org/cert.

---------------
Registration Open for InCommon CAMP: Hot Topics in Identity and Federated Identity Management
We’re putting the finishing touches on the hotel contract and other details for this year’s CAMP: Hot Topics in Identity and Federated Identity Management, scheduled for Columbus, Ohio.

Learn about management and technical practices and tips on:

  • Community Practices with Affiliate and Guest Systems
  • Governance and Policy for Identity and Access Management
  • Update to InCommon's Identity Assurance Profiles
  • Recommended Practices for Federating in InCommon
  • Service Providers: Bringing New Customers on Board

Registration is open at https://spaces.at.internet2.edu/display/CAMPJune2011

---------------
Register by April 22 for Advance CAMP: Identity Services Summit III – May 25-27, 2011
The registration fee for Advance CAMP will increase after April 22. Advance CAMP (May 25-27 in Westminster, Colo.) will focus on better provisioning, access management and other identity-related problems. Participants will work with identity leaders and developers across higher education to help design the next generation architecture. Registration is now open. Participants can come early and attend Jasig’s Spotlight on Open Source Conference (www.jasig.org/jasigs-spotlight-open-source) just prior to Advance CAMP at the same location.

----------
About Fischer International – New InCommon Affiliate
Fischer International’s award-winning identity management solution includes our “Federation On-Ramp,” a low-cost, managed solution that provides institutions with an immediate entry-way to the InCommon Federation and without having to dedicate or hire skilled resources to deploy and manage a federation infrastructure. Fischer takes care of all the details so you don't have to, from Source of Authority integration and IdP/SP metadata configuration, to 24/7 monitoring, backups, audit & reporting, and solution maintenance. Federation On-Ramp also includes a self-service Access Request Portal for InCommon resources with optional approval workflows. IAM capabilities can be easily added to address other IAM challenges such as temporary/guest access, orphan account remediation, self-service password reset & synchronization, automated role and account management, and more. For additional information, visit www.fischerinternational.com

--------------------
InCommon News is published by the InCommon Federation (www.incommon.org) for its participants and other interested parties. InCommon is an LLC of Internet2. Send feedback or comments to incommon-info@incommonfederation.org.

This newsletter is sent to incommon-announce@incommonfederation.org. To subscribe or unsubscribe, send an email to sympa@incommonfederation.org with one of these messages in the subject: subscribe incommon-announce or unsubscribe incommon-announce. You can also subscribe to the InCommon RSS news feed, which includes this newsletter, by visiting www.incommon.org/contacts.cfm.

April 13 IAM Online - Social Identities, Open IDs and Guest Access
Dean Woodbeck (internet2.edu) posted on Apr 04, 2011

IAM Online - Wednesday - April 13 - 2011

3 p.m. EDT / 2 p.m. CDT / 1 p.m. MDT / Noon PDT
www.incommon.org/iamonline

Social Identities, Open IDs and Guest/Affiliate Access

Many campuses today are thinking or rethinking how they provide access to guests or affiliates. With the pervasiveness of social IDs and Open IDs (like Google, Facebook, OpenID, and others), some are considering using such user-provided credentials for access to low risk services. Join the IAM Online, Wednesday, April 13, for a discussion of the pros and cons of such an approach, and of alternatives.

Dedra Chamberlin (University of California Berkeley) will provide some background on why campuses are considering the use of social networking IDs and Open IDs on campus and what concerns such use raises, followed by case studies from Penn State and the National Institutes of Health.

Speakers
Debbie Bucci, Integration Services Center Program Manager, National Institutes of Health
Dedra Chamberlin, IT Manager, University of California Berkeley
Chris Hubing, Information Technology Services, Emerging Technologies, Penn State Unversity

Moderator/Host
Mark Scheible, Chair, IAM Tookit Working Group

Connecting
We use Adobe Connect for slide sharing and audio: http://internet2.acrobat.com/iam-online. For more details, see www.incommon.org/iamonline.

About IAM Online
IAM Online is a monthly online education series including essentials of federated identity management, hot topics from the EDUCAUSE Identity and Access Management Working Group, and emerging topics in IAM. Experts provide overviews, answer questions and lead discussions. IAM is brought to you by InCommon in cooperation with Internet2 and the EDUCAUSE Identity and Access Management Working Group.

CAMP Registration Open - Hot Topics in IdM and Federated IdM
Dean Woodbeck (internet2.edu) posted on Apr 04, 2011

InCommon CAMP: Hot Topics in Identity and Federated Identity Management

Columbus, Ohio * June 21-23, 2011 * www.incommon.org/camp

REGISTRATION is open for the InCommon CAMP: Hot Topics in Identity and Federated Identity Management, June 21-23, 2011, in Columbus, Ohio.

Looking for concrete solutions to your most pressing identity-related challenges? Want to know more about the hot topics in federated identity today? Come to CAMP: Hot Topics in Identity and Federated Identity Management and learn more about solutions being implemented across higher education and partner organizations.

LEARN about management and technical practices and tips on:
• Community Practices with Affiliate and Guest Systems
• Governance and Policy for Identity and Access Management
• Update to InCommon's Identity Assurance Profiles
• Recommended Practices for Federating in InCommon
• Service Providers: Bringing New Customers on Board

WHO SHOULD ATTEND: IT management, identity and service architects and implementers, project managers, security professionals, corporate and service partners, and IT policy administrators.

REGISTER BY MAY 31 to save money with early-bird rates and to ensure you get a room in the hotel block: https://spaces.at.internet2.edu/display/CAMPJune2011

FOR THOSE NEW TO FEDERATED IDENTITY, consider attending the pre-meeting seminar, “The Big Picture: Introduction to Federated Identity Management,” to learn what it is and how it fits with your identity and access management infrastructure.

RESOURCES AND OPPORTUNITIES for learning more about federated identity can be found on the InCommon Federation site: www.incommon.org

CAMP SPONSORS
This CAMP is sponsored by the InCommon Federation in cooperation with Internet2, EDUCAUSE and OARnet.