SIMPLE TRUSTED ACCESS ANYWHERE ANYTIME ON ANY DEVICE
![SIMPLE, TRUSTED ACCESS – ANYWHERE, ANYTIME, ON ANY DEVICE SIMPLE, TRUSTED ACCESS – ANYWHERE, ANYTIME, ON ANY DEVICE](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-1.jpg)
![Background • RA 21 has roots back to 2015 with a movement from corporate Background • RA 21 has roots back to 2015 with a movement from corporate](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-2.jpg)
![What we decided we would need… 1. SOLUTION 2. PUBLISHER SUPPORT Ø Single Sign What we decided we would need… 1. SOLUTION 2. PUBLISHER SUPPORT Ø Single Sign](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-3.jpg)
![Background (cont. ) • June 2015: P-D-R holds a special meeting on Authentication Technologies Background (cont. ) • June 2015: P-D-R holds a special meeting on Authentication Technologies](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-4.jpg)
![RA 21 Industry Participation • Individuals from more than 60 different organizations have been RA 21 Industry Participation • Individuals from more than 60 different organizations have been](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-5.jpg)
![The need for RA 21 Simple access to content needs to be fixed, especially The need for RA 21 Simple access to content needs to be fixed, especially](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-6.jpg)
![Surely there is a better way… Access to scholarly content, especially off-network, needs to Surely there is a better way… Access to scholarly content, especially off-network, needs to](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-7.jpg)
![Strong support among the research community for federated identity management to improve collaboration • Strong support among the research community for federated identity management to improve collaboration •](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-8.jpg)
![So why RA 21? The current institutional discovery workflow is very difficult for users So why RA 21? The current institutional discovery workflow is very difficult for users](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-9.jpg)
![Preserving Privacy Publishers receive attributes about the user, not the user’s identity. User: 12345 Preserving Privacy Publishers receive attributes about the user, not the user’s identity. User: 12345](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-10.jpg)
![New Capabilities with Attributes Accessing Content New Capabilities with Attributes Accessing Content](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-11.jpg)
![New Capabilities with Attributes Paying OA Fees £ € $ New Capabilities with Attributes Paying OA Fees £ € $](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-12.jpg)
![RA 21 Goals Recommend new solutions for access strategies beyond IP recognition in joint RA 21 Goals Recommend new solutions for access strategies beyond IP recognition in joint](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-13.jpg)
![RA 21 Current Status Refinement and user testing continues, demo today. Published in July RA 21 Current Status Refinement and user testing continues, demo today. Published in July](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-14.jpg)
![RA 21 Security / Privacy Analysis Objective: – Assess security and privacy risks associated RA 21 Security / Privacy Analysis Objective: – Assess security and privacy risks associated](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-15.jpg)
![RA 21 Security / Privacy Conclusion • There are no significant risks which prevent RA 21 Security / Privacy Conclusion • There are no significant risks which prevent](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-16.jpg)
![User Experience User Experience](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-17.jpg)
![UX Building Blocks 1 Consistent visual cue and call to action signals institutional access UX Building Blocks 1 Consistent visual cue and call to action signals institutional access](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-18.jpg)
![RA 21 UX Goals 1 A user only encounters a discovery process once (per RA 21 UX Goals 1 A user only encounters a discovery process once (per](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-19.jpg)
![Operations and Governance • RA 21 as a service consists of two discrete and Operations and Governance • RA 21 as a service consists of two discrete and](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-20.jpg)
![What is Required for the Persistence Service? • Hosting a fairly straightforward Java. Script What is Required for the Persistence Service? • Hosting a fairly straightforward Java. Script](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-21.jpg)
![A Bit About Governance • Governance model is actively under discussion – RA 21 A Bit About Governance • Governance model is actively under discussion – RA 21](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-22.jpg)
- Slides: 22
![SIMPLE TRUSTED ACCESS ANYWHERE ANYTIME ON ANY DEVICE SIMPLE, TRUSTED ACCESS – ANYWHERE, ANYTIME, ON ANY DEVICE](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-1.jpg)
SIMPLE, TRUSTED ACCESS – ANYWHERE, ANYTIME, ON ANY DEVICE
![Background RA 21 has roots back to 2015 with a movement from corporate Background • RA 21 has roots back to 2015 with a movement from corporate](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-2.jpg)
Background • RA 21 has roots back to 2015 with a movement from corporate librarians as represented by the Pharma Documentation Ring (P-D-R). – Indicated that IP address recognition as a means of providing services to corporate researchers was no longer meeting their needs.
![What we decided we would need 1 SOLUTION 2 PUBLISHER SUPPORT Ø Single Sign What we decided we would need… 1. SOLUTION 2. PUBLISHER SUPPORT Ø Single Sign](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-3.jpg)
What we decided we would need… 1. SOLUTION 2. PUBLISHER SUPPORT Ø Single Sign On (SSO) Ø Open Standards (eg SAML) Ø Inside/Outside Network Ø Standard Adopted by All STM Publishers Ø Granular Usage Stats Ø Privacy & Security
![Background cont June 2015 PDR holds a special meeting on Authentication Technologies Background (cont. ) • June 2015: P-D-R holds a special meeting on Authentication Technologies](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-4.jpg)
Background (cont. ) • June 2015: P-D-R holds a special meeting on Authentication Technologies • June 2016: Copyright Clearance Center hosts Universal Resource Access Forum involving P-D-R members, publishers, software providers, etc. • July 2016: URA Task Force was formed • Mid-2016: STM forms parallel effort, RA 21, in partnership with NISO • End of 2016: URA Task Force becomes Corporate Pilot of RA 21
![RA 21 Industry Participation Individuals from more than 60 different organizations have been RA 21 Industry Participation • Individuals from more than 60 different organizations have been](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-5.jpg)
RA 21 Industry Participation • Individuals from more than 60 different organizations have been involved in RA 21 since its inception in late 2016. Abb. Vie Pharmaceuticals American Medical Association / JAMA American Chemical Society American University American Psychological Association of Research Libraries American Society of Civil Engineers Atypon Systems BASF Bibliotheksservice-Zentrum Brill Publishers Brown University Centre for Agriculture and Bioscience Carnegie Mellon University Clarivate Analytics Cambridge University Press Copyright Clearance Center Denver University EBSCO Information Services Eduserv Elsevier Publishing Emerald Publishing Group Erasumus University Rotterdam ETHZ GEANT Glaxo. Smith. Kline Pharmaceuticals Harvard Highwire Press Hypothes. is IEEE Informed Strategies LLC Internet 2 Institute of Physics Publishing JISC Johns Hopkins University KTH Royal Institute of Technology Liblynx MIT My. Uni. Dys NISO Novartis OCLC Open University ORCID Opitcal Society of America Oxford University Press Proquest Ringgold Roche Holding AGG Sage Publications Silverchair Information Systems Springer Nature STM SUNET Switch Taylor & Francis Group Thieme Medical Publishers Tilburg University UC Davis Universiti Putra Malaysia University at Buffalo University of Bath University of Nottingham University of Surrey Wiley Wolters Kluwer Publishing Corporation Academic Institution Software/Service Provider Publisher
![The need for RA 21 Simple access to content needs to be fixed especially The need for RA 21 Simple access to content needs to be fixed, especially](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-6.jpg)
The need for RA 21 Simple access to content needs to be fixed, especially for off campus use: Mobile Traffic in Visits Jan-12 Jan-13 Jan-14 Jan-15 Jan-16 Jan-17 • Scholarly content & services are increasingly being accessed from outside of corporate/campus networks • Publisher pathways for providing off-network access have not kept pace with our experience on the consumer web (e. g. Google, Facebook, Linked. In logins across multiple sites). • When accessing publisher platforms off-network, fully entitled end users are turning to alternative resources (e. g. Sci. Hub, etc. ) because of ease of access. • RA 21 has been established as the first step in the journey towards replacing the now outdated IP based access & authentication model.
![Surely there is a better way Access to scholarly content especially offnetwork needs to Surely there is a better way… Access to scholarly content, especially off-network, needs to](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-7.jpg)
Surely there is a better way… Access to scholarly content, especially off-network, needs to be fixed • Federated authentication using SAML (“Shibboleth”) solves most of the problem – Multilateral trust – Mature technology – Widely deployed and supported by scholarly information providers – Widely adopted and deployed by academic institutions – Increasingly deployed by corporate customers given the rise of Saa. S platforms (if you’ve signed into Slack recently, you’ve used SAML!)
![Strong support among the research community for federated identity management to improve collaboration Strong support among the research community for federated identity management to improve collaboration •](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-8.jpg)
Strong support among the research community for federated identity management to improve collaboration • FIM 4 R. org has produced two whitepapers recommending improvements to the federated identity infrastructure to support research collaboration • Participants include – CLARIN, European Research Infrastructure for Language Resources and Technology – DARIAH, Digital Research Infrastructure for the Arts and Humanities – ELIXIR, Life Sciences – ESA, European Space Agency – INAF, Italian National Institute for Astrophysics – LIGO, Laser Interferometer Gravitational-Wave Observatory – Umbrella, Photon and Neutron Science – WLCG, Worldwide LHC Computing Grid (High Energy Physics) “Every researcher is entitled to focus on their work and not be impeded by needless obstacles nor required to understand anything about the FIM infrastructure enabling their access to research services. The recommendations … highlight wellestablished practices … whose widespread adoption would represent a huge boost to usability of federated access mechanisms by users engaged in collaborative research activities. ” https: //fim 4 r. org/wp-content/uploads/2018/06/FIM 4 R-version-2 -final -draft-20180611. pdf
![So why RA 21 The current institutional discovery workflow is very difficult for users So why RA 21? The current institutional discovery workflow is very difficult for users](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-9.jpg)
So why RA 21? The current institutional discovery workflow is very difficult for users to navigate
![Preserving Privacy Publishers receive attributes about the user not the users identity User 12345 Preserving Privacy Publishers receive attributes about the user, not the user’s identity. User: 12345](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-10.jpg)
Preserving Privacy Publishers receive attributes about the user, not the user’s identity. User: 12345 Role: Student User: 56789 Role: Student User: 55555 Role: Student
![New Capabilities with Attributes Accessing Content New Capabilities with Attributes Accessing Content](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-11.jpg)
New Capabilities with Attributes Accessing Content
![New Capabilities with Attributes Paying OA Fees New Capabilities with Attributes Paying OA Fees £ € $](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-12.jpg)
New Capabilities with Attributes Paying OA Fees £ € $
![RA 21 Goals Recommend new solutions for access strategies beyond IP recognition in joint RA 21 Goals Recommend new solutions for access strategies beyond IP recognition in joint](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-13.jpg)
RA 21 Goals Recommend new solutions for access strategies beyond IP recognition in joint collaboration with software vendors, libraries, federation operators, publishers and service providers • Test and improve solutions by organizing pilots in a variety of environments • Establish best practices and publish via the NISO Recommended Practice process – in process • Prepare for post-project phase by identifying potential parties to operate any necessary centralized infrastructure – in process
![RA 21 Current Status Refinement and user testing continues demo today Published in July RA 21 Current Status Refinement and user testing continues, demo today. Published in July](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-14.jpg)
RA 21 Current Status Refinement and user testing continues, demo today. Published in July 2018. Corporate Pilot WAYF Cloud Work on pilots has concluded. Corporate Pilot report was published in September 2018. Academic Pilot report was published in July 2018. - P 3 W architecture was selected.
![RA 21 Security Privacy Analysis Objective Assess security and privacy risks associated RA 21 Security / Privacy Analysis Objective: – Assess security and privacy risks associated](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-15.jpg)
RA 21 Security / Privacy Analysis Objective: – Assess security and privacy risks associated with the technical architectures that were tested by the two pilots – Provide recommendations tailored to mitigate risks identified for each Methodologies used: STRIDE Threat Model for security • • • Spoofing Identity Tampering with Data Repudiation Information Disclosure Denial of Service Elevation of Privilege DPIA for privacy • Data Protection Impact Analysis • Performed in compliance with GDPR
![RA 21 Security Privacy Conclusion There are no significant risks which prevent RA 21 Security / Privacy Conclusion • There are no significant risks which prevent](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-16.jpg)
RA 21 Security / Privacy Conclusion • There are no significant risks which prevent RA 21 from moving forward • Residual risks from both security and privacy perspectives are LOW • The nature of the data involved is low value, i. e. , not directly or easily attributable to any natural person • Appropriate safeguards are in place to mitigate confidentiality concerns • Working group currently considering whether RA 21 should endorse REFEDS Co. Co as part of the RA 21 Recommended Practices
![User Experience User Experience](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-17.jpg)
User Experience
![UX Building Blocks 1 Consistent visual cue and call to action signals institutional access UX Building Blocks 1 Consistent visual cue and call to action signals institutional access](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-18.jpg)
UX Building Blocks 1 Consistent visual cue and call to action signals institutional access 2 Flexible and smart search • • Search by institution name, abbreviation or email Typeahead matching and URL 3 Remembered institution on next access
![RA 21 UX Goals 1 A user only encounters a discovery process once per RA 21 UX Goals 1 A user only encounters a discovery process once (per](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-19.jpg)
RA 21 UX Goals 1 A user only encounters a discovery process once (per browser). 2 The user’s institution is persisted in browser local storage and subsequently rendered in the RA 21 button across all participating publishers.
![Operations and Governance RA 21 as a service consists of two discrete and Operations and Governance • RA 21 as a service consists of two discrete and](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-20.jpg)
Operations and Governance • RA 21 as a service consists of two discrete and separable components – Discovery of the Id. P – Storing the choice of Id. P (Persistence) • Different organizations will absolutely want their own customized discovery service – VOs, SPs, Federations all have different requirements for a discovery service • Persistence, however, needs to be common and standard across ALL participating organizations
![What is Required for the Persistence Service Hosting a fairly straightforward Java Script What is Required for the Persistence Service? • Hosting a fairly straightforward Java. Script](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-21.jpg)
What is Required for the Persistence Service? • Hosting a fairly straightforward Java. Script and static HTML pages • Possible DNS magic to help make the HA backend (involving CDNs from multiple organizations) invisible to users
![A Bit About Governance Governance model is actively under discussion RA 21 A Bit About Governance • Governance model is actively under discussion – RA 21](https://slidetodoc.com/presentation_image_h/96fe9d2b5dfc5ad4c39e6545ec8e9966/image-22.jpg)
A Bit About Governance • Governance model is actively under discussion – RA 21 leadership (publishers, NISO, STM), ORCID, GEANT, In. Common • Still looking for a library association representative
Anytime anywhere any device
Access anywhere anytime
Mercy bears richer fruits than strict justice
Metaphasepdm
Something anything nothing etc
Tally remote access
Internal input devices
Can quit anytime i want
Tv anytime
Choc choc cosmetics
Q anytime
There aren't any bananas
Any to any connectivity
Seknder
Terminal access controller access-control system
Terminal access controller access-control system
Iad integrated access device
Sequential access device
A tagout device is preferable to using a lockout device.
Kelompok output device
Cover letter ucl
Practice click
Goanywhere agents