Federated Identity Management IG

IG

Group details

Chair(s): 
Daan Broeder, Bob Jones
Case Statement: 
 

A strategic element to maintaining a competitive advantage in research is by focussing energies in areas of innovation, which is facilitated by sharing of resources and support of inter-disciplinary collaborations at the national and international levels. The primary impediment to this resource sharing and collaboration is the lack of an effective FIM (Federated Identity Management) ecosystem.

The FIM interest group (FIMig) is an international cross-domain interest group to work on all issues related to the use FIM for the implementation of AAIs (Authentication and Authorization Infrastructures) in research infrastructures.

Not all research data and computing resources are publicly available so that access needs to be constricted sometimes, e.g. until a dissertation has been published, or because highly sensitive personal data are included. Thus AAI technologies should be a part of RDA activities.

Solving the problem of constraining access to services and data to authorized people is a fundamental problem in research infrastructures where solutions are usually seen as combinations of an authentication part (identifying the user) and an authorization part (determining a persons access rights).

Although there are many possible solutions to enable an AAI, the FIM approach is especially well suited for research infrastructures that are distributed over many sites and need to be scalable. User friendliness is an important issue: that the technology requires no specialized knowledge from the end users. Through the release and delivery by FIM of roles and other specific user attributes, FIM can also directly be used for access control of protected resources, although this is not a requirement.

The interest group considers as its main task to discuss and propose solutions for the problems that are experienced by research infrastructures that need FIM services in order to operate their facilities and to serve their user communities. This agrees with the RDA ideal of a bottom-up approach where the data-practioners, in this case organised in thematic research infrastructures, are the major driving force. Past experience has taught us that solutions are required on managerial, operational, legal and technological planes, which means that representation also of enabling organizations and software producers is needed.

The starting point of FIMig are the discussions by the FIM4R group (http://cds.cern.ch/record/1442597?ln=en) where a number of research communities have prepared a common AAI requirements document (http://cds.cern.ch/record/1442597/files/CERN-OPEN-2012-006.pdf) and initiated a number of pilot developments. This group is mainly EU based but the results and conclusions reached are not geographically restricted and valuable input has been received from colleagues in Asia and the USA. Creating a discussion platform within RDA will enable it to broaden the current discussions within FIM4R group using RDA contacts (thinking here especially of US and AUs colleagues) and of course the special RDA group discussion facilities.

Efforts will be made to ensure a balanced representation of existing organizations that are stakehoders in the FIM landscape. These are the academic identity federations and their inter- organizations, as are the research community organizations and the projects through which they work realizing research infrastructures.

Beyond Interest Groups, the RDA includes also Workgroups. These are much more focussed on solving specific use-cases by (reference-) implementations and need to have a well defined timeline for their realisation. The RDA FIMig envisages kickstarting such workgroups, operating under a FIMig umbrella to solve specific problems when it thinks this is feasible and useful. This is thought to be the most productive way of achieving progress and working towards the goal of providing an interoperable, production AAI service to the multi-domain research community and beyond.

The provisional FIMig members:
Daan Broeder, MPI for Psycholinguistics, NL daan.broeder@mpi.nl Bob Jones, CERN, CH Robert.Jones@cern<NOSPAM>.ch
Peter Gietz, DAASI International, D
Tommi Nyronen, CSC, FI
Andrea Baldi, ESA, IT
Philip Kershaw, STFC, UK
David Kelsey, STFC, UK
Mirjam van Daalen, SwissFEL, CH
Romain Wartel, CERN, CH
Dean Flanders, FMI, CH
Wolfgang Pempe, DFN, D
Larry Lannom, CNRI, USA

Giridhar Manepalli CNRI, USA

Jim Basney NSCA, USA
Glenn Moloney, NeCTAR, AU
Nigel Ward, NeCTAR, AU
Tom Fifield, University Melbourne, AU 

 

Recent Activity

17 Nov 2015

Next FIM4R meeting, November 30, Vienna

Dear all (sorry for crossposting),
this is to announce the final Agenda of the next FIM4R Meeting taking
place at the end of this month.
The meeting will start at 10:00 AM and end at 18:00.
Please find the updated agenda at http://fim4r.daasi.de/?page_id=21
@Speakers: please adjust your slides according to the time slots and
leave 3 to 5 minutes space for Q&A.
Registration is still open, please register as soon as possible so we
can adjust respectively.

23 Jul 2015

RDA P6 Meeting IG Federated Identity Management

Dear Daan,
Thank you for applying to hold a meeting at RDA Plenary 6, your meeting
has been scheduled for *24 September 2015- BREAKOUT 5 - 13:30 -15:00.*
You are invited to update the meeting page with a session description,
objectives & agenda by 14 August at the very latest. Please bear in mind
the "Getting the most from your meeting" courtesy of the RDA Technical
Advisory Board when preparing the meeting:

11 Jun 2015

Last chance to get a P6 breakout

The deadline for RDA Plenary 6 breakout session (23-25 Sept 2015)
application is fast approaching. You have until 20th June 2015 to submit
your request for a meeting space in Paris -
https://www.rd-alliance.org/plenary-meetings/sixth-plenary/call-session-...
Working & Interest groups as well as representatives from BoFs will be
invited to share their group updates and interact with RDA members on 23