Gaku Nin Federated Identity Management Activities in Japan

  • Slides: 10
Download presentation
Gaku. Nin: Federated Identity Management Activities in Japan Takeshi Nishimura/Academic Authentication Systems Office National

Gaku. Nin: Federated Identity Management Activities in Japan Takeshi Nishimura/Academic Authentication Systems Office National Institute of Informatics

An Academic Identity Federation in Japan SP Lib Services Web mail Gaku. Nin. Steering

An Academic Identity Federation in Japan SP Lib Services Web mail Gaku. Nin. Steering Committee • Federation Policy • Id. P Auditing • Promotion Id. P Univ. A Easy Access from out of Campus Groupware Academic Federations have been established per country basis Discovery Service Registration Sys. Metadata Repo. Info. Web Site Univ. B Reduction of ID management cost, Improvement of security Content Services Most of Major Publishers 2 E-Journals E-Learning Univ. C Seamless access with SSO Application Services Admin Services e. Learning e. Portfolio Foodle

#Id. Ps 200 M Users 1. 6 1. 4 #Id. P Users 1. 42

#Id. Ps 200 M Users 1. 6 1. 4 #Id. P Users 1. 42 M Total 140 Staff 1. 0 180 120 100 0. 8 80 0. 6 60 0. 4 40 0. 2 0. 0 pilot   Participants Ratio # Total 3 Production National 67 78% 86 Public 17 19% 91 153 160 Students 1. 2 #SPs 20 Ju. Ja. Ju l- n l- n l 0 -1 -1 -1 -1 Japanese 9 1 0 1 1 total 1 2 1 HE 3 1 population 4 1 5 1 6 is 17 about 0 3. 7 million 1 2 3 4 5 6 7 Private 54 9% 600 Junior College 0 0% 343 0 Tech. College 51 89%   57   A FA FA u eu eu g bg bg - -- -0 11 11 Inter-Univ. 9 00 11 Institute F e b 1 2 A u g 1 2 1 FA FA eu eu bg bg -- -11 11 33 44 Other F e b 1 5 10     A FA u eu g bg - - 1 11 5 66 Total F e b 1 7 200    

2008 • Feasibility Study with test accounts • Participants: 30 Id. P sites and

2008 • Feasibility Study with test accounts • Participants: 30 Id. P sites and 18 SP sites (incl. Elsevier) 2009 • Pilot Operation (UPKI-Fed) with real accounts and services • Preparation of policy documents 2010 • Production Operation started (As a 3 years project) • Renamed as “Gaku. Nin” 2012 • US FICAM Lo. A-1 assessment for requested Id. Ps started by cooperation with OIX (Open Identity e. Xchange); (switched to Kantara in 2015) 2014 • Shifted to an official service by NII • Still no fee is required to join 4

� 2010� mail � sn �o � ou � given. Name � display. Name

� 2010� mail � sn �o � ou � given. Name � display. Name � edu. Person. Affiliation � edu. Person. Principal. Name � edu. Person. Entitlement � edu. Person. Scoped. Affiliation � edu. Person. Targeted. ID 5 � jasn � ja. Given. Name � ja. Display. Name � jaou � 2014 � is. Member. Of � gakunin. Scoped. Personal. Unique. Code � 2017 � edu. Person. Assurance � edu. Person. Unique. Id � edu. Person. Orcid

� Annual � Our self-audit for Id. Ps rules � Operating Policies for Gaku.

� Annual � Our self-audit for Id. Ps rules � Operating Policies for Gaku. Nin Participants � System Administration Standards for the Gaku. Nin � Based 6 on answers, Gaku. Nin asserts grade A & B.

7

7

� Gaku. Nin � With joined edu. GAIN in 2013. slight update of our

� Gaku. Nin � With joined edu. GAIN in 2013. slight update of our rules � Our Id. Ps/SPs joins edu. GAIN by opt-in basis (still) � We 8 are preparing metadata two times per month.

� Formerly, e-Journals � Currently, ORCID 9

� Formerly, e-Journals � Currently, ORCID 9

� Building filter settings for Shibboleth Id. P <afp: Attribute. Filter. Policy id="Policyfor. CUP"

� Building filter settings for Shibboleth Id. P <afp: Attribute. Filter. Policy id="Policyfor. CUP" xmlns: afp="urn: mace: shibboleth: 2. 0: afp"> <afp: Policy. Requirement. Rule xsi: type="basic: Attribute. Requester. String" value="https: //shibboleth. cambridge. org/shibboleth-sp" /> <afp: Attribute. Rule attribute. ID="edu. Person. Scoped. Affiliation"> <afp: Permit. Value. Rule xsi: type="basic: ANY" /> </afp: Attribute. Rule> </afp: Attribute. Filter. Policy> � How Id. Ps � Are 10 to provide Discovery Service for edu. GAIN there Open Id. Ps in edu. GAIN?