edugain-discuss AT lists.geant.org
Subject: An open discussion list for topics related to the eduGAIN interfederation service.
List archive
- From: "Leif Johansson" <leifj AT sunet.se>
- To: Josh Howlett <Josh.Howlett AT jisc.ac.uk>
- Cc: "edugain-discuss AT geant.net" <edugain-discuss AT geant.net>
- Subject: Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs
- Date: Fri, 28 Nov 2014 18:03:44 +0100
- Authentication-results: prod-mail.geant.net (amavisd-new); dkim=pass header.i= AT sunet.se
- List-archive: <https://mail.geant.net/mailman/private/edugain-discuss/>
- List-id: eduGAIN discussion list <edugain-discuss.geant.net>
- Vbr-info: md=sunet.se; mc=all; mv=swamid.se
Hi Jozef,
You raise a number of valid points. There is a vocal minority here who disagree with you, but I think the silent majority would agree with your characterisation of these issues and the need to address them, so that eduGAIN is better able to serve the research communities that it is primarily funded to support.
On the particular point of the Protect Network IdP; these kinds of open registration IdPs are clearly an anomaly. Even if its membership of the UK federation is consistent with UK and eduGAIN policy, it could be that we need to revisit these policies. I will discuss this internally.
Thanks for your input.
Josh.
Josh Howlett
Head, Trust & IdentityT +44 (0)1235 822 363
M +44 (0)7810 835 075
Skype josh_howlett
Lumen House, Library Avenue, Harwell Oxford, Didcot, OX11 0SG
From: Jozef Misutka [mailto:misutka AT ufal.mff.cuni.cz]
Sent: 27 November 2014 08:35
To: edugain-discuss AT geant.net
Subject: [eduGAIN-discuss] eduGAIN and non "academic" IdPs
Dear all,
putting my Service Provider (SP) admin hat on I would like to hear your opinions on the matter described below and whether it is an issue for other SPs as well.
Let's start with reading http://services.geant.net/edugain/About_eduGAIN/Pages/Home.aspx which can give the impression that SPs and IdPs inside eduGAIN should have "academic" [1] background:
"""
eduGAIN is a service developed within the GÉANT Project - a major collaboration between European national research and education network (NREN) organisations and the European Union.
"""Entities are pushed to eduGAIN by national federations (NFs). Although many NFs have "Education and Research", "Academic" or "Science" in their name they have their own policies in accepting members.
Simply put, because "eduGAIN" does not have any requirements on the published entities in this respect users from e.g., private companies! can authenticate to SP.
And this can be a problem for our (or any other) academic SP.
We want to be available "for all academics of the world" and we thought eduGAIN could help us and simplify the process. But because a lot of IdPs do not release any or valid attributes we do not know if the authenticated user is "academic" or not at the moment. The only way is to (regularly) go through http://edugain.org/technical/status.php, read all the Metadata Registration Practice Statement (MPRS) and find out which IdPs can join the particular federation. In case a NF allows private companies we would have to manually approve academic IdPs from that federation.
Some NFs put categories to published IdPs; however, it is not feasible to know all the NFs in detail for every SP.
Thank you for your input.
[1] We do not have a precise definition of "academic" but we know that private companies are not academic.
Kind regards,
____________________________
Jozef Misutka
LINDAT/CLARIN CTO
http://lindat.cz
Jisc is a registered charity (number 1149740) and a company limited by guarantee which is registered in England under Company No. 5747339, VAT No. GB 197 0632 86. Jisc’s registered office is: One Castlepark, Tower Hill, Bristol, BS2 0JA. T 0203 697 5800.
Jisc Collections and Janet Ltd. is a wholly owned Jisc subsidiary and a company limited by guarantee which is registered in England under Company No. number 2881024, VAT No. GB 197 0632 86. The registered office is: Lumen House, Library Avenue, Harwell, Didcot, Oxfordshire, OX11 0SG. T 01235 822200.
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, (continued)
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Mikael Linden, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Peter Schober, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Andy Bennett, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Tom Scavo, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Ian Young, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Niels van Dijk, 30-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Nicole Harris, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Leif Johansson, 11/28/2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Nicole Harris, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Pål Axelsson, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Andy Bennett, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Tom Scavo, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Leif Johansson, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Andy Bennett, 28-Nov-2014
- Re: [eduGAIN-discuss] eduGAIN and non "academic" IdPs, Pål Axelsson, 28-Nov-2014
Archive powered by MHonArc 2.6.19.