SlideShare une entreprise Scribd logo

Privacy and Consent

Télécharger en tant que PPT, PDF
EDINA, University of Edinburgh
EDINA, University of Edinburgh

Presented by Fiona Culloch at FAM09, Cardiff, 24 November 2009

Formation
1  sur  32
Access Management Privacy and Consent Fiona Culloch, EDINA FAM09, Cardiff, 24 November 2009
FAM09, Cardiff Copyright © EDINA, 2009 2 Access Management UK federation privacy Catastrophic Success
FAM09, Cardiff Copyright © EDINA, 2009 3 Access Management Available attributes • Most IdPs give out only: – Organisational affiliation (ePSA) – Service-specific, opaque ID (ePTI)
FAM09, Cardiff Copyright © EDINA, 2009 4 Access Management FAM infrastructure allows any attributes Photo: Library of Virginia / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 5 Access Management Personal data has stayed on the old road Photo: State Library of Queensland / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 6 Access Management Most SPs don’t ask for personal data • Many don’t personalise • Those that do: – Had to create own accounts for IP authentication – User enters own data into form – Many have kept same system for FAM
FAM09, Cardiff Copyright © EDINA, 2009 7 Access Management What if an SP does want personal data?
FAM09, Cardiff Copyright © EDINA, 2009 8 Access Management Institutional directory •Holds personal data •Disclosure subject to DPA •So it’s treated like a safe Photo: New York Public Library / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 9 Access Management Directory guarded by administrators Photo: New York Public Library / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 10 Access Management There’s not just one IdP either… 238 IdPs +243 virt.
FAM09, Cardiff Copyright © EDINA, 2009 11 Access Management Will they be friendly? Photo: Library of Congress, Bain Collection / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 12 Access Management “No one really asks us much for ARP changes” IdP administrator
FAM09, Cardiff Copyright © EDINA, 2009 13 Access Management Stable deadlock Too hard to ask, so SPs don’t IdPs get no requests, think all is well
FAM09, Cardiff Copyright © EDINA, 2009 14 Access Management Can’t federation coordinate top-down? Resolving MxN policies was original rationale for federations
FAM09, Cardiff Copyright © EDINA, 2009 15 Access Management What voices feed into UK federation standard-setting?
FAM09, Cardiff Copyright © EDINA, 2009 16 Access Management Voices(1): Technical Architect • If you have an aspiration… • “Show me the spec.!” • Demonstrate: – Necessity – Deployability – Widespread need Photo: Library of Congress, Bain Collection / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 17 Access Management Voices(2): Legal • Enshrine DPA principles • Avoid liability • Agrees with architect: – SP will ask for too much Photo: Library of Congress, Bain Collection / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 18 Access Management Voices(3): missing in action • No IdP, SP representatives! • Fed. tries to think “if I were an IdP/SP…” – Works for “horizontal” requirements – Not so good for app- specific, “vertical” requirements Photo: State Library of New South Wales / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 19 Access Management Hard to deal with everyone Trad. answer is representative forums
FAM09, Cardiff Copyright © EDINA, 2009 20 Access Management SP forums • Representative SPs to broker requirements • SPs know what attributes they want • “Vertical” forums: – Divorce apps from infrastructure – Can cross national boundaries
FAM09, Cardiff Copyright © EDINA, 2009 21 Access Management IdP forums • IdPs: – Determine feasibility – Implement • Had to be invented for Eduserv • Now generalise
FAM09, Cardiff Copyright © EDINA, 2009 22 Access Management Joint forums allow bottom-up progress • App-specific forums • Experiment, agree, deploy, not theorise: – Small scale (10s not 100s) – Scale up success • IETF style
FAM09, Cardiff Copyright © EDINA, 2009 23 Access Management How to disclose data but not go to jail Photo: State Library of New South Wales / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 24 Access Management Technical fix: user consent at run time
FAM09, Cardiff Copyright © EDINA, 2009 25 Access Management Technical fix: problems • Additional user interface complexity: – Extra screen: what is being asked? • IdP must still: – Create (default) ARP – Confront quasi-legal questions • SP must: – Handle revocation
FAM09, Cardiff Copyright © EDINA, 2009 26 Access Management DPA permits disclosure on grounds other than consent, including necessity for purpose
FAM09, Cardiff Copyright © EDINA, 2009 27 Access Management ICO Legal Guidance 3.1.5 … “The Commissioner’s view is that consent is not particularly easy to achieve and that data controllers should consider other conditions in Schedule 2 (and Schedule 3 if processing sensitive personal data) before looking at consent. No condition carries greater weight than any other. All the conditions provide an equally valid basis for processing. Merely because consent is the first condition to appear in both Schedules 2 and 3, does not mean that data controllers should consider consent first.” …
FAM09, Cardiff Copyright © EDINA, 2009 28 Access Management Alternative for processing personal data 3.1.1 … “The processing is necessary for the purposes of legitimate interests pursued by the data controller or by the third party or parties to whom the data are disclosed… The Commissioner takes a wide view of the legitimate interests condition…”
FAM09, Cardiff Copyright © EDINA, 2009 29 Access Management Data processor agreements • Commercial SPs have licences anyway • Add some DPA clauses: – You have a data processor agreement – IdP covered against SP misbehaviour Photo: Library of Congress, Bain Collection / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 30 Access Management Opportunities in JISC model licence? • Add standard DPA terms for SPs • Define recommended ARP for each SP: – Move per-SP, quasi-legal thinking from IdP to IdP forum + JISC Collections – JISC Collections doing legal anyway (licence negotiation), IdP forum informs on feasibility – Simplify by banding?
FAM09, Cardiff Copyright © EDINA, 2009 31 Access Management Computing regulations • Add DPA “Purposes” • Serve as user notification (“fair processing”) • In practice, vague is good – c.f. all commercial privacy policiesPhoto: Library of Congress, Bain Collection / Flickr
FAM09, Cardiff Copyright © EDINA, 2009 32 Access Management Call to action Are you willing to be active in an IdP forum? Names please!

Recommandé

Chapter 7 telecommunications the internet and wireless technology
Chapter 7 telecommunications the internet and wireless technologyChapter 7 telecommunications the internet and wireless technology
Chapter 7 telecommunications the internet and wireless technologyVan Chau
 
Chapter 8 securing information systems
Chapter 8 securing information systemsChapter 8 securing information systems
Chapter 8 securing information systemsVan Chau
 
Strategic Plans For The Technical And Human Sides Of Convergence
Strategic Plans For The Technical And Human Sides Of ConvergenceStrategic Plans For The Technical And Human Sides Of Convergence
Strategic Plans For The Technical And Human Sides Of Convergencemonacofamily
 
Chapter Four IT infrastructure
Chapter Four IT infrastructureChapter Four IT infrastructure
Chapter Four IT infrastructureMohamed Madar
 
Craft2.ppt
Craft2.pptCraft2.ppt
Craft2.pptwebhostingguy
 
G111416 personal-brand-sydney-v1910b
G111416 personal-brand-sydney-v1910bG111416 personal-brand-sydney-v1910b
G111416 personal-brand-sydney-v1910bTony Pearson
 
S200743 storage-announcements-ist2020-v2001a
S200743 storage-announcements-ist2020-v2001aS200743 storage-announcements-ist2020-v2001a
S200743 storage-announcements-ist2020-v2001aTony Pearson
 
2013 Fieldbus Update
2013 Fieldbus Update2013 Fieldbus Update
2013 Fieldbus UpdateFieldComm Group
 

Recommandé

Chapter 7 telecommunications the internet and wireless technology
Chapter 7 telecommunications the internet and wireless technologyChapter 7 telecommunications the internet and wireless technology
Chapter 7 telecommunications the internet and wireless technologyVan Chau
 
Chapter 8 securing information systems
Chapter 8 securing information systemsChapter 8 securing information systems
Chapter 8 securing information systemsVan Chau
 
Strategic Plans For The Technical And Human Sides Of Convergence
Strategic Plans For The Technical And Human Sides Of ConvergenceStrategic Plans For The Technical And Human Sides Of Convergence
Strategic Plans For The Technical And Human Sides Of Convergencemonacofamily
 
Chapter Four IT infrastructure
Chapter Four IT infrastructureChapter Four IT infrastructure
Chapter Four IT infrastructureMohamed Madar
 
Craft2.ppt
Craft2.pptCraft2.ppt
Craft2.pptwebhostingguy
 
G111416 personal-brand-sydney-v1910b
G111416 personal-brand-sydney-v1910bG111416 personal-brand-sydney-v1910b
G111416 personal-brand-sydney-v1910bTony Pearson
 
S200743 storage-announcements-ist2020-v2001a
S200743 storage-announcements-ist2020-v2001aS200743 storage-announcements-ist2020-v2001a
S200743 storage-announcements-ist2020-v2001aTony Pearson
 
2013 Fieldbus Update
2013 Fieldbus Update2013 Fieldbus Update
2013 Fieldbus UpdateFieldComm Group
 
EDINA National Datacentre Activity Update to GWG
EDINA National Datacentre Activity Update to GWGEDINA National Datacentre Activity Update to GWG
EDINA National Datacentre Activity Update to GWGEDINA, University of Edinburgh
 
Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...
Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...
Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...EDINA, University of Edinburgh
 
Open Access Repository Junction
Open Access Repository JunctionOpen Access Repository Junction
Open Access Repository JunctionEDINA, University of Edinburgh
 
OARJ: assisting deposit into multiple repository services
OARJ: assisting deposit into multiple repository services OARJ: assisting deposit into multiple repository services
OARJ: assisting deposit into multiple repository services EDINA, University of Edinburgh
 
Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...
Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...
Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...JISC GECO
 
COBWEB – Where we are at
COBWEB – Where we are atCOBWEB – Where we are at
COBWEB – Where we are atEDINA, University of Edinburgh
 
Report on EDINA Authentication Related Academic Sector Activities
Report on EDINA Authentication Related Academic Sector ActivitiesReport on EDINA Authentication Related Academic Sector Activities
Report on EDINA Authentication Related Academic Sector ActivitiesEDINA, University of Edinburgh
 
AddressingHistory: crowdsourcing the past
AddressingHistory: crowdsourcing the pastAddressingHistory: crowdsourcing the past
AddressingHistory: crowdsourcing the pastHistoric Environment Scotland
 
Hiberlink: Prototypes of pro-active approaches to support the archiving of we...
Hiberlink: Prototypes of pro-active approaches to support the archiving of we...Hiberlink: Prototypes of pro-active approaches to support the archiving of we...
Hiberlink: Prototypes of pro-active approaches to support the archiving of we...EDINA, University of Edinburgh
 
UKLA Update On Activities
UKLA Update On ActivitiesUKLA Update On Activities
UKLA Update On ActivitiesEDINA, University of Edinburgh
 
E-journal Preservation & the Archival Value of the Authors’ Final Copy
E-journal Preservation & the Archival Value of the Authors’ Final CopyE-journal Preservation & the Archival Value of the Authors’ Final Copy
E-journal Preservation & the Archival Value of the Authors’ Final CopyEDINA, University of Edinburgh
 
End of COBWEB Co-Design Projects Celebration
End of COBWEB Co-Design Projects Celebration End of COBWEB Co-Design Projects Celebration
End of COBWEB Co-Design Projects Celebration EDINA, University of Edinburgh
 
Edin casestudy-ou-rr-2011
Edin casestudy-ou-rr-2011Edin casestudy-ou-rr-2011
Edin casestudy-ou-rr-2011Robin Rice
 
Introduction to data and support services for Political Data Analysis
Introduction to data and support services for Political Data AnalysisIntroduction to data and support services for Political Data Analysis
Introduction to data and support services for Political Data AnalysisEDINA, University of Edinburgh
 
What’s Different about the Digital: Community Action via UK LOCKSS Alliance
What’s Different about the Digital: Community Action via UK LOCKSS AllianceWhat’s Different about the Digital: Community Action via UK LOCKSS Alliance
What’s Different about the Digital: Community Action via UK LOCKSS AllianceEDINA, University of Edinburgh
 
Looking After Your Data: RDM @ Edinburgh
Looking After Your Data: RDM @ EdinburghLooking After Your Data: RDM @ Edinburgh
Looking After Your Data: RDM @ EdinburghEDINA, University of Edinburgh
 
Digital maps: past, present; on your desktop and in the palm of your hand
Digital maps: past, present; on your desktop and in the palm of your handDigital maps: past, present; on your desktop and in the palm of your hand
Digital maps: past, present; on your desktop and in the palm of your handEDINA, University of Edinburgh
 
Licence to Share: Research and Collaboration through Go-Geo! and ShareGeo
Licence to Share: Research and Collaboration through Go-Geo! and ShareGeoLicence to Share: Research and Collaboration through Go-Geo! and ShareGeo
Licence to Share: Research and Collaboration through Go-Geo! and ShareGeoEDINA, University of Edinburgh
 
Geo APIs
Geo APIsGeo APIs
Geo APIsEDINA, University of Edinburgh
 
Digital Preservation Case Study: Community Action via UK LOCKSS Alliance
Digital Preservation Case Study: Community Action via UK LOCKSS AllianceDigital Preservation Case Study: Community Action via UK LOCKSS Alliance
Digital Preservation Case Study: Community Action via UK LOCKSS AllianceEDINA, University of Edinburgh
 
Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap
Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap
Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap Amplexor
 
70a1bee5afaa499bff2de1419845-2545809091213.ppt
70a1bee5afaa499bff2de1419845-2545809091213.ppt70a1bee5afaa499bff2de1419845-2545809091213.ppt
70a1bee5afaa499bff2de1419845-2545809091213.pptDeebikaKaliyaperumal
 

Contenu connexe

En vedette

Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...
Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...
Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...EDINA, University of Edinburgh
 
OARJ: assisting deposit into multiple repository services
OARJ: assisting deposit into multiple repository services OARJ: assisting deposit into multiple repository services
OARJ: assisting deposit into multiple repository services EDINA, University of Edinburgh
 
Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...
Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...
Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...JISC GECO
 
Report on EDINA Authentication Related Academic Sector Activities
Report on EDINA Authentication Related Academic Sector ActivitiesReport on EDINA Authentication Related Academic Sector Activities
Report on EDINA Authentication Related Academic Sector ActivitiesEDINA, University of Edinburgh
 
Hiberlink: Prototypes of pro-active approaches to support the archiving of we...
Hiberlink: Prototypes of pro-active approaches to support the archiving of we...Hiberlink: Prototypes of pro-active approaches to support the archiving of we...
Hiberlink: Prototypes of pro-active approaches to support the archiving of we...EDINA, University of Edinburgh
 
E-journal Preservation & the Archival Value of the Authors’ Final Copy
E-journal Preservation & the Archival Value of the Authors’ Final CopyE-journal Preservation & the Archival Value of the Authors’ Final Copy
E-journal Preservation & the Archival Value of the Authors’ Final CopyEDINA, University of Edinburgh
 
Edin casestudy-ou-rr-2011
Edin casestudy-ou-rr-2011Edin casestudy-ou-rr-2011
Edin casestudy-ou-rr-2011Robin Rice
 
Introduction to data and support services for Political Data Analysis
Introduction to data and support services for Political Data AnalysisIntroduction to data and support services for Political Data Analysis
Introduction to data and support services for Political Data AnalysisEDINA, University of Edinburgh
 
What’s Different about the Digital: Community Action via UK LOCKSS Alliance
What’s Different about the Digital: Community Action via UK LOCKSS AllianceWhat’s Different about the Digital: Community Action via UK LOCKSS Alliance
What’s Different about the Digital: Community Action via UK LOCKSS AllianceEDINA, University of Edinburgh
 
Digital maps: past, present; on your desktop and in the palm of your hand
Digital maps: past, present; on your desktop and in the palm of your handDigital maps: past, present; on your desktop and in the palm of your hand
Digital maps: past, present; on your desktop and in the palm of your handEDINA, University of Edinburgh
 
Licence to Share: Research and Collaboration through Go-Geo! and ShareGeo
Licence to Share: Research and Collaboration through Go-Geo! and ShareGeoLicence to Share: Research and Collaboration through Go-Geo! and ShareGeo
Licence to Share: Research and Collaboration through Go-Geo! and ShareGeoEDINA, University of Edinburgh
 
Digital Preservation Case Study: Community Action via UK LOCKSS Alliance
Digital Preservation Case Study: Community Action via UK LOCKSS AllianceDigital Preservation Case Study: Community Action via UK LOCKSS Alliance
Digital Preservation Case Study: Community Action via UK LOCKSS AllianceEDINA, University of Edinburgh
 

En vedette (20)

EDINA National Datacentre Activity Update to GWG
EDINA National Datacentre Activity Update to GWGEDINA National Datacentre Activity Update to GWG
EDINA National Datacentre Activity Update to GWG
 
Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...
Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...
Some Academic Sector/NMCA outcomes from the OGC Web Service Shibboleth Intero...
 
Open Access Repository Junction
Open Access Repository JunctionOpen Access Repository Junction
Open Access Repository Junction
 
OARJ: assisting deposit into multiple repository services
OARJ: assisting deposit into multiple repository services OARJ: assisting deposit into multiple repository services
OARJ: assisting deposit into multiple repository services
 
Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...
Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...
Introduction to Collaborative by Nature: Interoperable Geospatial Approaches ...
 
COBWEB – Where we are at
COBWEB – Where we are atCOBWEB – Where we are at
COBWEB – Where we are at
 
Report on EDINA Authentication Related Academic Sector Activities
Report on EDINA Authentication Related Academic Sector ActivitiesReport on EDINA Authentication Related Academic Sector Activities
Report on EDINA Authentication Related Academic Sector Activities
 
AddressingHistory: crowdsourcing the past
AddressingHistory: crowdsourcing the pastAddressingHistory: crowdsourcing the past
AddressingHistory: crowdsourcing the past
 
Hiberlink: Prototypes of pro-active approaches to support the archiving of we...
Hiberlink: Prototypes of pro-active approaches to support the archiving of we...Hiberlink: Prototypes of pro-active approaches to support the archiving of we...
Hiberlink: Prototypes of pro-active approaches to support the archiving of we...
 
UKLA Update On Activities
UKLA Update On ActivitiesUKLA Update On Activities
UKLA Update On Activities
 
E-journal Preservation & the Archival Value of the Authors’ Final Copy
E-journal Preservation & the Archival Value of the Authors’ Final CopyE-journal Preservation & the Archival Value of the Authors’ Final Copy
E-journal Preservation & the Archival Value of the Authors’ Final Copy
 
End of COBWEB Co-Design Projects Celebration
End of COBWEB Co-Design Projects Celebration End of COBWEB Co-Design Projects Celebration
End of COBWEB Co-Design Projects Celebration
 
Edin casestudy-ou-rr-2011
Edin casestudy-ou-rr-2011Edin casestudy-ou-rr-2011
Edin casestudy-ou-rr-2011
 
Introduction to data and support services for Political Data Analysis
Introduction to data and support services for Political Data AnalysisIntroduction to data and support services for Political Data Analysis
Introduction to data and support services for Political Data Analysis
 
What’s Different about the Digital: Community Action via UK LOCKSS Alliance
What’s Different about the Digital: Community Action via UK LOCKSS AllianceWhat’s Different about the Digital: Community Action via UK LOCKSS Alliance
What’s Different about the Digital: Community Action via UK LOCKSS Alliance
 
Looking After Your Data: RDM @ Edinburgh
Looking After Your Data: RDM @ EdinburghLooking After Your Data: RDM @ Edinburgh
Looking After Your Data: RDM @ Edinburgh
 
Digital maps: past, present; on your desktop and in the palm of your hand
Digital maps: past, present; on your desktop and in the palm of your handDigital maps: past, present; on your desktop and in the palm of your hand
Digital maps: past, present; on your desktop and in the palm of your hand
 
Licence to Share: Research and Collaboration through Go-Geo! and ShareGeo
Licence to Share: Research and Collaboration through Go-Geo! and ShareGeoLicence to Share: Research and Collaboration through Go-Geo! and ShareGeo
Licence to Share: Research and Collaboration through Go-Geo! and ShareGeo
 
Geo APIs
Geo APIsGeo APIs
Geo APIs
 
Digital Preservation Case Study: Community Action via UK LOCKSS Alliance
Digital Preservation Case Study: Community Action via UK LOCKSS AllianceDigital Preservation Case Study: Community Action via UK LOCKSS Alliance
Digital Preservation Case Study: Community Action via UK LOCKSS Alliance
 

Similaire à Privacy and Consent

Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap
Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap
Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap Amplexor
 
70a1bee5afaa499bff2de1419845-2545809091213.ppt
70a1bee5afaa499bff2de1419845-2545809091213.ppt70a1bee5afaa499bff2de1419845-2545809091213.ppt
70a1bee5afaa499bff2de1419845-2545809091213.pptDeebikaKaliyaperumal
 
Emc vi pr data services
Emc vi pr data servicesEmc vi pr data services
Emc vi pr data servicessolarisyougood
 
Massively Parallel Processing with Procedural Python - Pivotal HAWQ
Massively Parallel Processing with Procedural Python - Pivotal HAWQMassively Parallel Processing with Procedural Python - Pivotal HAWQ
Massively Parallel Processing with Procedural Python - Pivotal HAWQInMobi Technology
 
Converged data center_f_co_e_iscsi_future_storage_networking
Converged data center_f_co_e_iscsi_future_storage_networkingConverged data center_f_co_e_iscsi_future_storage_networking
Converged data center_f_co_e_iscsi_future_storage_networkingEMC
 
Storage networking fcf_co_eiscsivsn_technology
Storage networking fcf_co_eiscsivsn_technologyStorage networking fcf_co_eiscsivsn_technology
Storage networking fcf_co_eiscsivsn_technologyEMC
 
Update on european data centre standards socitm 2013
Update on european data centre standards socitm 2013Update on european data centre standards socitm 2013
Update on european data centre standards socitm 2013Capitoline LLP
 
Petit Déjeuner Expert Aproged 3ème Plateforme par Alain Le Corre / EMC
Petit Déjeuner Expert Aproged 3ème Plateforme par Alain Le Corre / EMCPetit Déjeuner Expert Aproged 3ème Plateforme par Alain Le Corre / EMC
Petit Déjeuner Expert Aproged 3ème Plateforme par Alain Le Corre / EMCAproged
 
Emc vi pr global data services
Emc vi pr global data servicesEmc vi pr global data services
Emc vi pr global data servicessolarisyougood
 
Top 5 Reasons To Consider SolarWinds IPAM Over Infoblox
Top 5 Reasons To Consider SolarWinds IPAM Over InfobloxTop 5 Reasons To Consider SolarWinds IPAM Over Infoblox
Top 5 Reasons To Consider SolarWinds IPAM Over InfobloxSolarWinds
 
Greenplum: Driving the future of Data Warehousing and Analytics
Greenplum: Driving the future of Data Warehousing and AnalyticsGreenplum: Driving the future of Data Warehousing and Analytics
Greenplum: Driving the future of Data Warehousing and Analyticseaiti
 
Copy of laudon-traver_ec17_ppt_ch03_accessible.pptx
Copy of laudon-traver_ec17_ppt_ch03_accessible.pptxCopy of laudon-traver_ec17_ppt_ch03_accessible.pptx
Copy of laudon-traver_ec17_ppt_ch03_accessible.pptxramidhavsclas
 
Facebook Outage Analysis: Using External Visibility to Fortify Availability
Facebook Outage Analysis: Using External Visibility to Fortify AvailabilityFacebook Outage Analysis: Using External Visibility to Fortify Availability
Facebook Outage Analysis: Using External Visibility to Fortify AvailabilityThousandEyes
 
Experiencing MIS, Fifth Canadian Edition
Experiencing MIS, Fifth Canadian EditionExperiencing MIS, Fifth Canadian Edition
Experiencing MIS, Fifth Canadian EditionRobehgeneAtud2
 
The IBM Platform Cloud Service
The IBM Platform Cloud Service The IBM Platform Cloud Service
The IBM Platform Cloud Serviceinside-BigData.com
 
Basic Technology - Module 13 cloud computing
Basic Technology - Module 13 cloud computingBasic Technology - Module 13 cloud computing
Basic Technology - Module 13 cloud computingsolarisyougood
 
EMC Vipr srm-technical Deep dive
EMC Vipr srm-technical Deep diveEMC Vipr srm-technical Deep dive
EMC Vipr srm-technical Deep divesolarisyougood
 
Using Network Recording and Search to Improve IT Service Delivery
Using Network Recording and Search to Improve IT Service DeliveryUsing Network Recording and Search to Improve IT Service Delivery
Using Network Recording and Search to Improve IT Service DeliveryEmulex Corporation
 

Similaire à Privacy and Consent (20)

Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap
Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap
Amplexor Seminar EMC Documentum - EMC Documentum today: vision and roadmap
 
70a1bee5afaa499bff2de1419845-2545809091213.ppt
70a1bee5afaa499bff2de1419845-2545809091213.ppt70a1bee5afaa499bff2de1419845-2545809091213.ppt
70a1bee5afaa499bff2de1419845-2545809091213.ppt
 
Emc vi pr data services
Emc vi pr data servicesEmc vi pr data services
Emc vi pr data services
 
Massively Parallel Processing with Procedural Python - Pivotal HAWQ
Massively Parallel Processing with Procedural Python - Pivotal HAWQMassively Parallel Processing with Procedural Python - Pivotal HAWQ
Massively Parallel Processing with Procedural Python - Pivotal HAWQ
 
Converged data center_f_co_e_iscsi_future_storage_networking
Converged data center_f_co_e_iscsi_future_storage_networkingConverged data center_f_co_e_iscsi_future_storage_networking
Converged data center_f_co_e_iscsi_future_storage_networking
 
Sa info archive-s_aksenenko
Sa info archive-s_aksenenkoSa info archive-s_aksenenko
Sa info archive-s_aksenenko
 
Storage networking fcf_co_eiscsivsn_technology
Storage networking fcf_co_eiscsivsn_technologyStorage networking fcf_co_eiscsivsn_technology
Storage networking fcf_co_eiscsivsn_technology
 
Update on european data centre standards socitm 2013
Update on european data centre standards socitm 2013Update on european data centre standards socitm 2013
Update on european data centre standards socitm 2013
 
Petit Déjeuner Expert Aproged 3ème Plateforme par Alain Le Corre / EMC
Petit Déjeuner Expert Aproged 3ème Plateforme par Alain Le Corre / EMCPetit Déjeuner Expert Aproged 3ème Plateforme par Alain Le Corre / EMC
Petit Déjeuner Expert Aproged 3ème Plateforme par Alain Le Corre / EMC
 
Emc vi pr global data services
Emc vi pr global data servicesEmc vi pr global data services
Emc vi pr global data services
 
Top 5 Reasons To Consider SolarWinds IPAM Over Infoblox
Top 5 Reasons To Consider SolarWinds IPAM Over InfobloxTop 5 Reasons To Consider SolarWinds IPAM Over Infoblox
Top 5 Reasons To Consider SolarWinds IPAM Over Infoblox
 
Greenplum: Driving the future of Data Warehousing and Analytics
Greenplum: Driving the future of Data Warehousing and AnalyticsGreenplum: Driving the future of Data Warehousing and Analytics
Greenplum: Driving the future of Data Warehousing and Analytics
 
Copy of laudon-traver_ec17_ppt_ch03_accessible.pptx
Copy of laudon-traver_ec17_ppt_ch03_accessible.pptxCopy of laudon-traver_ec17_ppt_ch03_accessible.pptx
Copy of laudon-traver_ec17_ppt_ch03_accessible.pptx
 
Facebook Outage Analysis: Using External Visibility to Fortify Availability
Facebook Outage Analysis: Using External Visibility to Fortify AvailabilityFacebook Outage Analysis: Using External Visibility to Fortify Availability
Facebook Outage Analysis: Using External Visibility to Fortify Availability
 
Experiencing MIS, Fifth Canadian Edition
Experiencing MIS, Fifth Canadian EditionExperiencing MIS, Fifth Canadian Edition
Experiencing MIS, Fifth Canadian Edition
 
The IBM Platform Cloud Service
The IBM Platform Cloud Service The IBM Platform Cloud Service
The IBM Platform Cloud Service
 
Chapter 3.pdf
Chapter 3.pdfChapter 3.pdf
Chapter 3.pdf
 
Basic Technology - Module 13 cloud computing
Basic Technology - Module 13 cloud computingBasic Technology - Module 13 cloud computing
Basic Technology - Module 13 cloud computing
 
EMC Vipr srm-technical Deep dive
EMC Vipr srm-technical Deep diveEMC Vipr srm-technical Deep dive
EMC Vipr srm-technical Deep dive
 
Using Network Recording and Search to Improve IT Service Delivery
Using Network Recording and Search to Improve IT Service DeliveryUsing Network Recording and Search to Improve IT Service Delivery
Using Network Recording and Search to Improve IT Service Delivery
 

Plus de EDINA, University of Edinburgh

We have the technology... We have the data... What next?
We have the technology... We have the data... What next?We have the technology... We have the data... What next?
We have the technology... We have the data... What next?EDINA, University of Edinburgh
 
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...EDINA, University of Edinburgh
 
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...EDINA, University of Edinburgh
 
Managing your Digital Footprint : Taking control of the metadata and tracks a...
Managing your Digital Footprint : Taking control of the metadata and tracks a...Managing your Digital Footprint : Taking control of the metadata and tracks a...
Managing your Digital Footprint : Taking control of the metadata and tracks a...EDINA, University of Edinburgh
 
Social media and blogging to develop and communicate research in the arts and...
Social media and blogging to develop and communicate research in the arts and...Social media and blogging to develop and communicate research in the arts and...
Social media and blogging to develop and communicate research in the arts and...EDINA, University of Edinburgh
 
Enhancing your research impact through social media - Nicola Osborne
Enhancing your research impact through social media - Nicola OsborneEnhancing your research impact through social media - Nicola Osborne
Enhancing your research impact through social media - Nicola OsborneEDINA, University of Edinburgh
 
Social Media in Marketing in Support of Your Personal Brand - Nicola Osborne
Social Media in Marketing in Support of Your Personal Brand - Nicola OsborneSocial Media in Marketing in Support of Your Personal Brand - Nicola Osborne
Social Media in Marketing in Support of Your Personal Brand - Nicola OsborneEDINA, University of Edinburgh
 
Best Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
Best Practice for Social Media in Teaching & Learning Contexts - Nicola OsborneBest Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
Best Practice for Social Media in Teaching & Learning Contexts - Nicola OsborneEDINA, University of Edinburgh
 
Introduction to Edinburgh University Data Library and national data services
Introduction to Edinburgh University Data Library and national data servicesIntroduction to Edinburgh University Data Library and national data services
Introduction to Edinburgh University Data Library and national data servicesEDINA, University of Edinburgh
 
Digimap for Schools: Introduction to an ICT based cross curricular resource f...
Digimap for Schools: Introduction to an ICT based cross curricular resource f...Digimap for Schools: Introduction to an ICT based cross curricular resource f...
Digimap for Schools: Introduction to an ICT based cross curricular resource f...EDINA, University of Edinburgh
 

Plus de EDINA, University of Edinburgh (20)

The Making of the English Landscape:
The Making of the English Landscape: The Making of the English Landscape:
The Making of the English Landscape:
 
Spatial Data, Spatial Humanities
Spatial Data, Spatial HumanitiesSpatial Data, Spatial Humanities
Spatial Data, Spatial Humanities
 
Land Cover Map 2015
Land Cover Map 2015Land Cover Map 2015
Land Cover Map 2015
 
We have the technology... We have the data... What next?
We have the technology... We have the data... What next?We have the technology... We have the data... What next?
We have the technology... We have the data... What next?
 
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
Reference Rot in Theses: A HiberActive Pilot - 10x10 session for Repository F...
 
GeoForum EDINA report 2017
GeoForum EDINA report 2017GeoForum EDINA report 2017
GeoForum EDINA report 2017
 
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
If I Googled You, What Would I Find? Managing your digital footprint - Nicola...
 
Moray housemarch2017
Moray housemarch2017Moray housemarch2017
Moray housemarch2017
 
Uniof stirlingmarch2017secondary
Uniof stirlingmarch2017secondaryUniof stirlingmarch2017secondary
Uniof stirlingmarch2017secondary
 
Uniof glasgow jan2017_secondary
Uniof glasgow jan2017_secondaryUniof glasgow jan2017_secondary
Uniof glasgow jan2017_secondary
 
Managing your Digital Footprint : Taking control of the metadata and tracks a...
Managing your Digital Footprint : Taking control of the metadata and tracks a...Managing your Digital Footprint : Taking control of the metadata and tracks a...
Managing your Digital Footprint : Taking control of the metadata and tracks a...
 
Social media and blogging to develop and communicate research in the arts and...
Social media and blogging to develop and communicate research in the arts and...Social media and blogging to develop and communicate research in the arts and...
Social media and blogging to develop and communicate research in the arts and...
 
Enhancing your research impact through social media - Nicola Osborne
Enhancing your research impact through social media - Nicola OsborneEnhancing your research impact through social media - Nicola Osborne
Enhancing your research impact through social media - Nicola Osborne
 
Social Media in Marketing in Support of Your Personal Brand - Nicola Osborne
Social Media in Marketing in Support of Your Personal Brand - Nicola OsborneSocial Media in Marketing in Support of Your Personal Brand - Nicola Osborne
Social Media in Marketing in Support of Your Personal Brand - Nicola Osborne
 
Best Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
Best Practice for Social Media in Teaching & Learning Contexts - Nicola OsborneBest Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
Best Practice for Social Media in Teaching & Learning Contexts - Nicola Osborne
 
SCURL and SUNCAT serials holdings comparison service
SCURL and SUNCAT serials holdings comparison serviceSCURL and SUNCAT serials holdings comparison service
SCURL and SUNCAT serials holdings comparison service
 
Big data in Digimap
Big data in DigimapBig data in Digimap
Big data in Digimap
 
Introduction to Edinburgh University Data Library and national data services
Introduction to Edinburgh University Data Library and national data servicesIntroduction to Edinburgh University Data Library and national data services
Introduction to Edinburgh University Data Library and national data services
 
Digimap for Schools: Introduction to an ICT based cross curricular resource f...
Digimap for Schools: Introduction to an ICT based cross curricular resource f...Digimap for Schools: Introduction to an ICT based cross curricular resource f...
Digimap for Schools: Introduction to an ICT based cross curricular resource f...
 
Digimap Update - Geoforum 2016 - Guy McGarva
Digimap Update - Geoforum 2016 - Guy McGarvaDigimap Update - Geoforum 2016 - Guy McGarva
Digimap Update - Geoforum 2016 - Guy McGarva
 

Dernier

Russian Call Girls in Andheri Airport Mumbai WhatsApp 9167673311 💞 Full Nigh...
Russian Call Girls in Andheri Airport Mumbai WhatsApp 9167673311 💞 Full Nigh...Russian Call Girls in Andheri Airport Mumbai WhatsApp 9167673311 💞 Full Nigh...
Russian Call Girls in Andheri Airport Mumbai WhatsApp 9167673311 💞 Full Nigh...Pooja Nehwal
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)eniolaolutunde
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactPECB
 
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfBASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfSoniaTolstoy
 
CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxGaneshChakor2
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphThiyagu K
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpinRaunakKeshri1
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationnomboosow
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Sapana Sha
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingTechSoup
 
Measures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SDMeasures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SDThiyagu K
 
Sanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfSanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfsanyamsingh5019
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxVS Mahajan Coaching Centre
 
POINT- BIOCHEMISTRY SEM 2 ENZYMES UNIT 5.pptx
POINT- BIOCHEMISTRY SEM 2 ENZYMES UNIT 5.pptxPOINT- BIOCHEMISTRY SEM 2 ENZYMES UNIT 5.pptx
POINT- BIOCHEMISTRY SEM 2 ENZYMES UNIT 5.pptxSayali Powar
 
Separation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and ActinidesSeparation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and ActinidesFatimaKhan178732
 
Introduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsIntroduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsTechSoup
 
Arihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfArihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfchloefrazer622
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introductionMaksud Ahmed
 

Dernier (20)

Russian Call Girls in Andheri Airport Mumbai WhatsApp 9167673311 💞 Full Nigh...
Russian Call Girls in Andheri Airport Mumbai WhatsApp 9167673311 💞 Full Nigh...Russian Call Girls in Andheri Airport Mumbai WhatsApp 9167673311 💞 Full Nigh...
Russian Call Girls in Andheri Airport Mumbai WhatsApp 9167673311 💞 Full Nigh...
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global Impact
 
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfBASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
 
CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptx
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot Graph
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 
Student login on Anyboli platform.helpin
Student login on Anyboli platform.helpinStudent login on Anyboli platform.helpin
Student login on Anyboli platform.helpin
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communication
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy Consulting
 
Measures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SDMeasures of Dispersion and Variability: Range, QD, AD and SD
Measures of Dispersion and Variability: Range, QD, AD and SD
 
Sanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfSanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdf
 
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptxOrganic Name Reactions for the students and aspirants of Chemistry12th.pptx
Organic Name Reactions for the students and aspirants of Chemistry12th.pptx
 
POINT- BIOCHEMISTRY SEM 2 ENZYMES UNIT 5.pptx
POINT- BIOCHEMISTRY SEM 2 ENZYMES UNIT 5.pptxPOINT- BIOCHEMISTRY SEM 2 ENZYMES UNIT 5.pptx
POINT- BIOCHEMISTRY SEM 2 ENZYMES UNIT 5.pptx
 
Separation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and ActinidesSeparation of Lanthanides/ Lanthanides and Actinides
Separation of Lanthanides/ Lanthanides and Actinides
 
Introduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsIntroduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The Basics
 
Arihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfArihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdf
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introduction
 
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
 

Privacy and Consent

  • 1. Access Management Privacy and Consent Fiona Culloch, EDINA FAM09, Cardiff, 24 November 2009
  • 2. FAM09, Cardiff Copyright © EDINA, 2009 2 Access Management UK federation privacy Catastrophic Success
  • 3. FAM09, Cardiff Copyright © EDINA, 2009 3 Access Management Available attributes • Most IdPs give out only: – Organisational affiliation (ePSA) – Service-specific, opaque ID (ePTI)
  • 4. FAM09, Cardiff Copyright © EDINA, 2009 4 Access Management FAM infrastructure allows any attributes Photo: Library of Virginia / Flickr
  • 5. FAM09, Cardiff Copyright © EDINA, 2009 5 Access Management Personal data has stayed on the old road Photo: State Library of Queensland / Flickr
  • 6. FAM09, Cardiff Copyright © EDINA, 2009 6 Access Management Most SPs don’t ask for personal data • Many don’t personalise • Those that do: – Had to create own accounts for IP authentication – User enters own data into form – Many have kept same system for FAM
  • 7. FAM09, Cardiff Copyright © EDINA, 2009 7 Access Management What if an SP does want personal data?
  • 8. FAM09, Cardiff Copyright © EDINA, 2009 8 Access Management Institutional directory •Holds personal data •Disclosure subject to DPA •So it’s treated like a safe Photo: New York Public Library / Flickr
  • 9. FAM09, Cardiff Copyright © EDINA, 2009 9 Access Management Directory guarded by administrators Photo: New York Public Library / Flickr
  • 10. FAM09, Cardiff Copyright © EDINA, 2009 10 Access Management There’s not just one IdP either… 238 IdPs +243 virt.
  • 11. FAM09, Cardiff Copyright © EDINA, 2009 11 Access Management Will they be friendly? Photo: Library of Congress, Bain Collection / Flickr
  • 12. FAM09, Cardiff Copyright © EDINA, 2009 12 Access Management “No one really asks us much for ARP changes” IdP administrator
  • 13. FAM09, Cardiff Copyright © EDINA, 2009 13 Access Management Stable deadlock Too hard to ask, so SPs don’t IdPs get no requests, think all is well
  • 14. FAM09, Cardiff Copyright © EDINA, 2009 14 Access Management Can’t federation coordinate top-down? Resolving MxN policies was original rationale for federations
  • 15. FAM09, Cardiff Copyright © EDINA, 2009 15 Access Management What voices feed into UK federation standard-setting?
  • 16. FAM09, Cardiff Copyright © EDINA, 2009 16 Access Management Voices(1): Technical Architect • If you have an aspiration… • “Show me the spec.!” • Demonstrate: – Necessity – Deployability – Widespread need Photo: Library of Congress, Bain Collection / Flickr
  • 17. FAM09, Cardiff Copyright © EDINA, 2009 17 Access Management Voices(2): Legal • Enshrine DPA principles • Avoid liability • Agrees with architect: – SP will ask for too much Photo: Library of Congress, Bain Collection / Flickr
  • 18. FAM09, Cardiff Copyright © EDINA, 2009 18 Access Management Voices(3): missing in action • No IdP, SP representatives! • Fed. tries to think “if I were an IdP/SP…” – Works for “horizontal” requirements – Not so good for app- specific, “vertical” requirements Photo: State Library of New South Wales / Flickr
  • 19. FAM09, Cardiff Copyright © EDINA, 2009 19 Access Management Hard to deal with everyone Trad. answer is representative forums
  • 20. FAM09, Cardiff Copyright © EDINA, 2009 20 Access Management SP forums • Representative SPs to broker requirements • SPs know what attributes they want • “Vertical” forums: – Divorce apps from infrastructure – Can cross national boundaries
  • 21. FAM09, Cardiff Copyright © EDINA, 2009 21 Access Management IdP forums • IdPs: – Determine feasibility – Implement • Had to be invented for Eduserv • Now generalise
  • 22. FAM09, Cardiff Copyright © EDINA, 2009 22 Access Management Joint forums allow bottom-up progress • App-specific forums • Experiment, agree, deploy, not theorise: – Small scale (10s not 100s) – Scale up success • IETF style
  • 23. FAM09, Cardiff Copyright © EDINA, 2009 23 Access Management How to disclose data but not go to jail Photo: State Library of New South Wales / Flickr
  • 24. FAM09, Cardiff Copyright © EDINA, 2009 24 Access Management Technical fix: user consent at run time
  • 25. FAM09, Cardiff Copyright © EDINA, 2009 25 Access Management Technical fix: problems • Additional user interface complexity: – Extra screen: what is being asked? • IdP must still: – Create (default) ARP – Confront quasi-legal questions • SP must: – Handle revocation
  • 26. FAM09, Cardiff Copyright © EDINA, 2009 26 Access Management DPA permits disclosure on grounds other than consent, including necessity for purpose
  • 27. FAM09, Cardiff Copyright © EDINA, 2009 27 Access Management ICO Legal Guidance 3.1.5 … “The Commissioner’s view is that consent is not particularly easy to achieve and that data controllers should consider other conditions in Schedule 2 (and Schedule 3 if processing sensitive personal data) before looking at consent. No condition carries greater weight than any other. All the conditions provide an equally valid basis for processing. Merely because consent is the first condition to appear in both Schedules 2 and 3, does not mean that data controllers should consider consent first.” …
  • 28. FAM09, Cardiff Copyright © EDINA, 2009 28 Access Management Alternative for processing personal data 3.1.1 … “The processing is necessary for the purposes of legitimate interests pursued by the data controller or by the third party or parties to whom the data are disclosed… The Commissioner takes a wide view of the legitimate interests condition…”
  • 29. FAM09, Cardiff Copyright © EDINA, 2009 29 Access Management Data processor agreements • Commercial SPs have licences anyway • Add some DPA clauses: – You have a data processor agreement – IdP covered against SP misbehaviour Photo: Library of Congress, Bain Collection / Flickr
  • 30. FAM09, Cardiff Copyright © EDINA, 2009 30 Access Management Opportunities in JISC model licence? • Add standard DPA terms for SPs • Define recommended ARP for each SP: – Move per-SP, quasi-legal thinking from IdP to IdP forum + JISC Collections – JISC Collections doing legal anyway (licence negotiation), IdP forum informs on feasibility – Simplify by banding?
  • 31. FAM09, Cardiff Copyright © EDINA, 2009 31 Access Management Computing regulations • Add DPA “Purposes” • Serve as user notification (“fair processing”) • In practice, vague is good – c.f. all commercial privacy policiesPhoto: Library of Congress, Bain Collection / Flickr
  • 32. FAM09, Cardiff Copyright © EDINA, 2009 32 Access Management Call to action Are you willing to be active in an IdP forum? Names please!