SlideShare une entreprise Scribd logo

Apanheath

Télécharger en tant que PPTX, PDF
R
refeds
TechnologieBusiness
1  sur  22
The AAF From start-up to a steady state Federation in 2.5 years February16 2012 Presented by Heath Marks Manager & Terry Smith Technical Manager
It all began June 2009 • Incorporated not-for-profit association owned by Australian universities and leading national research and research support organisations • Federal government seed funding $2M AUD (June 2009 – Dec 2011) – AAF subscription base to meet critical mass for self sustainability – AAF business model developed for self sustainability • As of 31 December 2011 – 67 Subscribers – 68+ services registered in the AAF
Subscriber Growth 100% AU unis Identity Provider Identity Provider & Service Provider Service Provider
Key Streams of Activity Policy, procedures and frameworks Technology, infrastructure and its support Marketing and communication Running the business (AAF Incorporated)
Policy, procedures, frameworks
Policy: Federation Rules Federation Rules containing Subscriber responsibilities – Rules for Identity Providers – Rules for Service Providers – Data protection and privacy (the Australian Privacy Act 1988) – Limitation of liability, termination, cessation, changes to rules, dispute resolution .. etc.
Policy: Core Attributes • “8.3 Identity Providers must collect or generate the Core Attributes as defined by the Federation Subscriber responsibilities” – auEduPersonSharedToken  – displayName Attribute release – eduPersonAffiliation filters in place – eduPersonEntitlement – eduPersonScopedAffiliation – eduPersonTargetedID – AuthenticationMethod – eduPersonAssurance – cn – o – mail
Other Policy and Procedures • Test and production federation usage policy • Test federation terms of use • Logo usage policy • Change management • Software release policy • Operational policies & frameworks
Compliance Program • Annual compliance statement 30 required: Organisations confirm that they have Jun examined the compliance of their e system, process and documentation against its obligations under the Federation Rules. • Non-compliance activities in place • Additional compliance statement required for organisations asserting
LoA Framework Concepts of Assurance • Identity Assurance: eduPersonAssurance urn:mace:aaf.edu.au:iap:id:.[level], where level is a value from 1 to 2. • Token and Credential Management Assurance: AuthenticationMethod urn:mace:aaf.edu.au:iap:authn:[level], where level is a value from 0 to 2 NIST SP 800-63 – LoA 1 and LoA 2. http://www.aaf.edu.au/technical/levels-of-assurance/
Technology, infrastructure and its support
AAF Infrastructure WAYF Perth WAYF Brisbane WAYF Melbourne • Test and Production Federations • ANYCast • Core infrastructure hosted by our subscribers with agreements in place. • National Server Program for eResearch • Services in the cloud
AAF Technology A Central point of registration, management and reporting for identity and service providers participating in a standards compliant SAML 2 identity federation. http://wiki.aaf.edu.au/fe derationregistry/
Good Practice Program • Continuous improvement: – Rule compliance – Current deployment – Prod quality – Attribute release filters – Contacts and administrators – Test Federation policies – High Availability IdP – LoA – Relationship building
Running the Business (AAF Incorporated)
Business Model Principles: – The AAF should aim to break even; – AAF subscribers vary greatly in their size and usage of the AAF and the subscription should apportion costs fairly and equitably; – The subscription fees should be flexible and adaptable so that as the AAF evolves, the fees can be readily adjusted to reflect changing cost structures and subscriber diversity.
Subscription Fees Subscription Component 2012- AUD One-time joining fee $4,500 Basic annual fee (1* IdP + $4,628 10 SPs) Universities and Fee per FTE $2.02 Research Extra 10 Service Fee $3,250 Extra 1 IdP Fee $5,850 Subscription Component 2012- AUD Commercia One-time joining fee $4,550 l (3 year Annual fee per service $3,900 discount available) Annual fee per IdP $13,000
Steady State = 3.8 people Manager Technical Manager Communications Manager Technical Architect .8
Marketing and Communication
Key Messages • The AAF is a significant and growing part of the Australian eResearch infrastructure landscape. • Its core value proposition is that it is operating as a shared service for the Australian research and education sector. It minimises the cost and effort for each individual subscriber of managing federated identity. • The AAF has achieved a critical mass of Identity Providers. This has given service providers access to over one million identities and proved to be a catalyst for service growth in the Federation.
Key Messages • The Federation is being funded primarily by Universities and large government research organisations • A vibrant and successful Federation will have many services, some will be heavily used and some will be lightly used. .
What next • Measuring our success in 2012 will focus on continuing to build the value proposition by the services that are available via the AAF. • Super Science initiatives • AAF infrastructure for: ? National Entitlement Server for fine grained authorisation

Recommandé

Overview of the Onboarding and validation process and the Rules of Participat...
Overview of the Onboarding and validation process and the Rules of Participat...Overview of the Onboarding and validation process and the Rules of Participat...
Overview of the Onboarding and validation process and the Rules of Participat...EOSC-hub project
 
IRMS Marketing your Records Service
IRMS Marketing your Records Service IRMS Marketing your Records Service
IRMS Marketing your Records Service Nicola Franklin
 
Emerce Conversion Event - Selling the Unsellable
Emerce Conversion Event - Selling the UnsellableEmerce Conversion Event - Selling the Unsellable
Emerce Conversion Event - Selling the UnsellableValtech
 
Pvc foam komatex for maquette modelling and design
Pvc foam komatex for maquette modelling and designPvc foam komatex for maquette modelling and design
Pvc foam komatex for maquette modelling and designHudi Leksono
 
Maiko rocks pyramids
Maiko rocks pyramidsMaiko rocks pyramids
Maiko rocks pyramidsBeatrice Watson
 
Nyttige Joomla udvidelser - Oplæg til Joomla User Group - København
Nyttige Joomla udvidelser - Oplæg til Joomla User Group - KøbenhavnNyttige Joomla udvidelser - Oplæg til Joomla User Group - København
Nyttige Joomla udvidelser - Oplæg til Joomla User Group - KøbenhavnSusanne Krogh-Hansen
 
Palavra do mes de julho (sensacional!!!)(1)
Palavra do mes de julho (sensacional!!!)(1)Palavra do mes de julho (sensacional!!!)(1)
Palavra do mes de julho (sensacional!!!)(1)viniciusmoteuchi
 
Edisi keempat belas
Edisi keempat belasEdisi keempat belas
Edisi keempat belasWhy Error
 

Recommandé

Overview of the Onboarding and validation process and the Rules of Participat...
Overview of the Onboarding and validation process and the Rules of Participat...Overview of the Onboarding and validation process and the Rules of Participat...
Overview of the Onboarding and validation process and the Rules of Participat...EOSC-hub project
 
IRMS Marketing your Records Service
IRMS Marketing your Records Service IRMS Marketing your Records Service
IRMS Marketing your Records Service Nicola Franklin
 
Emerce Conversion Event - Selling the Unsellable
Emerce Conversion Event - Selling the UnsellableEmerce Conversion Event - Selling the Unsellable
Emerce Conversion Event - Selling the UnsellableValtech
 
Pvc foam komatex for maquette modelling and design
Pvc foam komatex for maquette modelling and designPvc foam komatex for maquette modelling and design
Pvc foam komatex for maquette modelling and designHudi Leksono
 
Maiko rocks pyramids
Maiko rocks pyramidsMaiko rocks pyramids
Maiko rocks pyramidsBeatrice Watson
 
Nyttige Joomla udvidelser - Oplæg til Joomla User Group - København
Nyttige Joomla udvidelser - Oplæg til Joomla User Group - KøbenhavnNyttige Joomla udvidelser - Oplæg til Joomla User Group - København
Nyttige Joomla udvidelser - Oplæg til Joomla User Group - KøbenhavnSusanne Krogh-Hansen
 
Palavra do mes de julho (sensacional!!!)(1)
Palavra do mes de julho (sensacional!!!)(1)Palavra do mes de julho (sensacional!!!)(1)
Palavra do mes de julho (sensacional!!!)(1)viniciusmoteuchi
 
Edisi keempat belas
Edisi keempat belasEdisi keempat belas
Edisi keempat belasWhy Error
 
Zp
ZpZp
Zpsaniaser
 
Edisi keduabelas
Edisi keduabelasEdisi keduabelas
Edisi keduabelasWhy Error
 
Edisi 3
Edisi 3Edisi 3
Edisi 3Why Error
 
Edisi 1
Edisi 1Edisi 1
Edisi 1Why Error
 
Edisi 15
Edisi 15Edisi 15
Edisi 15Why Error
 
Discovery refeds 11
Discovery refeds 11Discovery refeds 11
Discovery refeds 11refeds
 
Khusus pka
Khusus pkaKhusus pka
Khusus pkaWhy Error
 
Licia Florio REFEDS Prague 2011
Licia Florio REFEDS Prague 2011Licia Florio REFEDS Prague 2011
Licia Florio REFEDS Prague 2011refeds
 
Edisi keduabelas
Edisi keduabelasEdisi keduabelas
Edisi keduabelasWhy Error
 
Edisi 10
Edisi 10Edisi 10
Edisi 10Why Error
 
Edugain policy-prague vn
Edugain policy-prague vnEdugain policy-prague vn
Edugain policy-prague vnrefeds
 
REFEDS MET, PEER and MDUI Presentation
REFEDS MET, PEER and MDUI PresentationREFEDS MET, PEER and MDUI Presentation
REFEDS MET, PEER and MDUI Presentationrefeds
 
REFEDS Overview
REFEDS OverviewREFEDS Overview
REFEDS Overviewrefeds
 
Refeds ferpa v0 02
Refeds ferpa v0 02Refeds ferpa v0 02
Refeds ferpa v0 02refeds
 
Shib survey
Shib surveyShib survey
Shib surveyrefeds
 
Edisi 6
Edisi 6Edisi 6
Edisi 6Why Error
 
Pricing
PricingPricing
PricingMurshad Sf
 
Trust and identity
Trust and identityTrust and identity
Trust and identityJisc
 
Hexaware corporate overview nov10
Hexaware corporate overview nov10Hexaware corporate overview nov10
Hexaware corporate overview nov10Hazelknight Media & Entertainment Pvt Ltd
 
Simplifying it using a disciplined portfolio governance approach
Simplifying it using a disciplined portfolio governance approachSimplifying it using a disciplined portfolio governance approach
Simplifying it using a disciplined portfolio governance approachp6academy
 
Kantara a Global Context 2011
Kantara a Global Context 2011Kantara a Global Context 2011
Kantara a Global Context 2011kantarainitiative
 
Service management board (SMB), Service providers’ forum (SPF)
Service management board (SMB), Service providers’ forum (SPF)Service management board (SMB), Service providers’ forum (SPF)
Service management board (SMB), Service providers’ forum (SPF)EOSC-hub project
 

Contenu connexe

En vedette

Edisi keduabelas
Edisi keduabelasEdisi keduabelas
Edisi keduabelasWhy Error
 
Discovery refeds 11
Discovery refeds 11Discovery refeds 11
Discovery refeds 11refeds
 
Licia Florio REFEDS Prague 2011
Licia Florio REFEDS Prague 2011Licia Florio REFEDS Prague 2011
Licia Florio REFEDS Prague 2011refeds
 
Edisi keduabelas
Edisi keduabelasEdisi keduabelas
Edisi keduabelasWhy Error
 
Edugain policy-prague vn
Edugain policy-prague vnEdugain policy-prague vn
Edugain policy-prague vnrefeds
 
REFEDS MET, PEER and MDUI Presentation
REFEDS MET, PEER and MDUI PresentationREFEDS MET, PEER and MDUI Presentation
REFEDS MET, PEER and MDUI Presentationrefeds
 
REFEDS Overview
REFEDS OverviewREFEDS Overview
REFEDS Overviewrefeds
 
Refeds ferpa v0 02
Refeds ferpa v0 02Refeds ferpa v0 02
Refeds ferpa v0 02refeds
 
Shib survey
Shib surveyShib survey
Shib surveyrefeds
 

En vedette (17)

Zp
ZpZp
Zp
 
Edisi keduabelas
Edisi keduabelasEdisi keduabelas
Edisi keduabelas
 
Edisi 3
Edisi 3Edisi 3
Edisi 3
 
Edisi 1
Edisi 1Edisi 1
Edisi 1
 
Edisi 15
Edisi 15Edisi 15
Edisi 15
 
Discovery refeds 11
Discovery refeds 11Discovery refeds 11
Discovery refeds 11
 
Khusus pka
Khusus pkaKhusus pka
Khusus pka
 
Licia Florio REFEDS Prague 2011
Licia Florio REFEDS Prague 2011Licia Florio REFEDS Prague 2011
Licia Florio REFEDS Prague 2011
 
Edisi keduabelas
Edisi keduabelasEdisi keduabelas
Edisi keduabelas
 
Edisi 10
Edisi 10Edisi 10
Edisi 10
 
Edugain policy-prague vn
Edugain policy-prague vnEdugain policy-prague vn
Edugain policy-prague vn
 
REFEDS MET, PEER and MDUI Presentation
REFEDS MET, PEER and MDUI PresentationREFEDS MET, PEER and MDUI Presentation
REFEDS MET, PEER and MDUI Presentation
 
REFEDS Overview
REFEDS OverviewREFEDS Overview
REFEDS Overview
 
Refeds ferpa v0 02
Refeds ferpa v0 02Refeds ferpa v0 02
Refeds ferpa v0 02
 
Shib survey
Shib surveyShib survey
Shib survey
 
Edisi 6
Edisi 6Edisi 6
Edisi 6
 
Pricing
PricingPricing
Pricing
 

Similaire à Apanheath

Trust and identity
Trust and identityTrust and identity
Trust and identityJisc
 
Simplifying it using a disciplined portfolio governance approach
Simplifying it using a disciplined portfolio governance approachSimplifying it using a disciplined portfolio governance approach
Simplifying it using a disciplined portfolio governance approachp6academy
 
Kantara a Global Context 2011
Kantara a Global Context 2011Kantara a Global Context 2011
Kantara a Global Context 2011kantarainitiative
 
Service management board (SMB), Service providers’ forum (SPF)
Service management board (SMB), Service providers’ forum (SPF)Service management board (SMB), Service providers’ forum (SPF)
Service management board (SMB), Service providers’ forum (SPF)EOSC-hub project
 
Inventures Overview
Inventures OverviewInventures Overview
Inventures OverviewInventures
 
Richard J. Sherman from Emeritus Supply Chain Council on ‘Keeping SCOR in You...
Richard J. Sherman from Emeritus Supply Chain Council on ‘Keeping SCOR in You...Richard J. Sherman from Emeritus Supply Chain Council on ‘Keeping SCOR in You...
Richard J. Sherman from Emeritus Supply Chain Council on ‘Keeping SCOR in You...eyefortransport
 
API and App Ecosystems - Build The Best: a deep dive
API and App Ecosystems - Build The Best: a deep diveAPI and App Ecosystems - Build The Best: a deep dive
API and App Ecosystems - Build The Best: a deep diveCisco DevNet
 
The IT Service Definition Journey
The IT Service Definition JourneyThe IT Service Definition Journey
The IT Service Definition JourneyPete Hidalgo
 
WSO2 and Agile Path - How the WSO2 Governance Registry is being used for a k...
WSO2 and Agile Path - How the WSO2 Governance Registry is being used for a k... WSO2 and Agile Path - How the WSO2 Governance Registry is being used for a k...
WSO2 and Agile Path - How the WSO2 Governance Registry is being used for a k...WSO2
 
Hexaware Technologies Corporate overview
Hexaware Technologies Corporate overviewHexaware Technologies Corporate overview
Hexaware Technologies Corporate overviewPaulo Boschetti
 
Con8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controlsCon8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controlsOracle
 
Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...Oracle
 
eduTEAMS
eduTEAMSeduTEAMS
eduTEAMSJisc
 
Innovation incubation concept_v2
Innovation incubation concept_v2Innovation incubation concept_v2
Innovation incubation concept_v2Fatih Boran Berber
 
David J Keith
David J Keith David J Keith
David J Keith Dave Keith
 
ClearCost Introduction 2015
ClearCost Introduction 2015ClearCost Introduction 2015
ClearCost Introduction 2015Mark S. Mahre
 
Data center insights summit 2015 disruptive force of clouds
Data center insights summit 2015 disruptive force of cloudsData center insights summit 2015 disruptive force of clouds
Data center insights summit 2015 disruptive force of cloudscrbraun
 

Similaire à Apanheath (20)

Trust and identity
Trust and identityTrust and identity
Trust and identity
 
Hexaware corporate overview nov10
Hexaware corporate overview nov10Hexaware corporate overview nov10
Hexaware corporate overview nov10
 
Simplifying it using a disciplined portfolio governance approach
Simplifying it using a disciplined portfolio governance approachSimplifying it using a disciplined portfolio governance approach
Simplifying it using a disciplined portfolio governance approach
 
Kantara a Global Context 2011
Kantara a Global Context 2011Kantara a Global Context 2011
Kantara a Global Context 2011
 
Service management board (SMB), Service providers’ forum (SPF)
Service management board (SMB), Service providers’ forum (SPF)Service management board (SMB), Service providers’ forum (SPF)
Service management board (SMB), Service providers’ forum (SPF)
 
Inventures Overview
Inventures OverviewInventures Overview
Inventures Overview
 
Richard J. Sherman from Emeritus Supply Chain Council on ‘Keeping SCOR in You...
Richard J. Sherman from Emeritus Supply Chain Council on ‘Keeping SCOR in You...Richard J. Sherman from Emeritus Supply Chain Council on ‘Keeping SCOR in You...
Richard J. Sherman from Emeritus Supply Chain Council on ‘Keeping SCOR in You...
 
API and App Ecosystems - Build The Best: a deep dive
API and App Ecosystems - Build The Best: a deep diveAPI and App Ecosystems - Build The Best: a deep dive
API and App Ecosystems - Build The Best: a deep dive
 
The IT Service Definition Journey
The IT Service Definition JourneyThe IT Service Definition Journey
The IT Service Definition Journey
 
IPC_Overview
IPC_OverviewIPC_Overview
IPC_Overview
 
WSO2 and Agile Path - How the WSO2 Governance Registry is being used for a k...
WSO2 and Agile Path - How the WSO2 Governance Registry is being used for a k... WSO2 and Agile Path - How the WSO2 Governance Registry is being used for a k...
WSO2 and Agile Path - How the WSO2 Governance Registry is being used for a k...
 
Hexaware Technologies Corporate overview
Hexaware Technologies Corporate overviewHexaware Technologies Corporate overview
Hexaware Technologies Corporate overview
 
Con8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controlsCon8154 controlling for multiple erp systems with oracle advanced controls
Con8154 controlling for multiple erp systems with oracle advanced controls
 
Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...Customers talk about controlling access for multiple erp systems with oracle ...
Customers talk about controlling access for multiple erp systems with oracle ...
 
eduTEAMS
eduTEAMSeduTEAMS
eduTEAMS
 
Innovation incubation concept_v2
Innovation incubation concept_v2Innovation incubation concept_v2
Innovation incubation concept_v2
 
David J Keith
David J Keith David J Keith
David J Keith
 
Rashmi_Das_current
Rashmi_Das_currentRashmi_Das_current
Rashmi_Das_current
 
ClearCost Introduction 2015
ClearCost Introduction 2015ClearCost Introduction 2015
ClearCost Introduction 2015
 
Data center insights summit 2015 disruptive force of clouds
Data center insights summit 2015 disruptive force of cloudsData center insights summit 2015 disruptive force of clouds
Data center insights summit 2015 disruptive force of clouds
 

Dernier

How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 

Dernier (20)

How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 

Apanheath

  • 1. The AAF From start-up to a steady state Federation in 2.5 years February16 2012 Presented by Heath Marks Manager & Terry Smith Technical Manager
  • 2. It all began June 2009 • Incorporated not-for-profit association owned by Australian universities and leading national research and research support organisations • Federal government seed funding $2M AUD (June 2009 – Dec 2011) – AAF subscription base to meet critical mass for self sustainability – AAF business model developed for self sustainability • As of 31 December 2011 – 67 Subscribers – 68+ services registered in the AAF
  • 3. Subscriber Growth 100% AU unis Identity Provider Identity Provider & Service Provider Service Provider
  • 4. Key Streams of Activity Policy, procedures and frameworks Technology, infrastructure and its support Marketing and communication Running the business (AAF Incorporated)
  • 6. Policy: Federation Rules Federation Rules containing Subscriber responsibilities – Rules for Identity Providers – Rules for Service Providers – Data protection and privacy (the Australian Privacy Act 1988) – Limitation of liability, termination, cessation, changes to rules, dispute resolution .. etc.
  • 7. Policy: Core Attributes • “8.3 Identity Providers must collect or generate the Core Attributes as defined by the Federation Subscriber responsibilities” – auEduPersonSharedToken  – displayName Attribute release – eduPersonAffiliation filters in place – eduPersonEntitlement – eduPersonScopedAffiliation – eduPersonTargetedID – AuthenticationMethod – eduPersonAssurance – cn – o – mail
  • 8. Other Policy and Procedures • Test and production federation usage policy • Test federation terms of use • Logo usage policy • Change management • Software release policy • Operational policies & frameworks
  • 9. Compliance Program • Annual compliance statement 30 required: Organisations confirm that they have Jun examined the compliance of their e system, process and documentation against its obligations under the Federation Rules. • Non-compliance activities in place • Additional compliance statement required for organisations asserting
  • 10. LoA Framework Concepts of Assurance • Identity Assurance: eduPersonAssurance urn:mace:aaf.edu.au:iap:id:.[level], where level is a value from 1 to 2. • Token and Credential Management Assurance: AuthenticationMethod urn:mace:aaf.edu.au:iap:authn:[level], where level is a value from 0 to 2 NIST SP 800-63 – LoA 1 and LoA 2. http://www.aaf.edu.au/technical/levels-of-assurance/
  • 12. AAF Infrastructure WAYF Perth WAYF Brisbane WAYF Melbourne • Test and Production Federations • ANYCast • Core infrastructure hosted by our subscribers with agreements in place. • National Server Program for eResearch • Services in the cloud
  • 13. AAF Technology A Central point of registration, management and reporting for identity and service providers participating in a standards compliant SAML 2 identity federation. http://wiki.aaf.edu.au/fe derationregistry/
  • 14. Good Practice Program • Continuous improvement: – Rule compliance – Current deployment – Prod quality – Attribute release filters – Contacts and administrators – Test Federation policies – High Availability IdP – LoA – Relationship building
  • 16. Business Model Principles: – The AAF should aim to break even; – AAF subscribers vary greatly in their size and usage of the AAF and the subscription should apportion costs fairly and equitably; – The subscription fees should be flexible and adaptable so that as the AAF evolves, the fees can be readily adjusted to reflect changing cost structures and subscriber diversity.
  • 17. Subscription Fees Subscription Component 2012- AUD One-time joining fee $4,500 Basic annual fee (1* IdP + $4,628 10 SPs) Universities and Fee per FTE $2.02 Research Extra 10 Service Fee $3,250 Extra 1 IdP Fee $5,850 Subscription Component 2012- AUD Commercia One-time joining fee $4,550 l (3 year Annual fee per service $3,900 discount available) Annual fee per IdP $13,000
  • 18. Steady State = 3.8 people Manager Technical Manager Communications Manager Technical Architect .8
  • 20. Key Messages • The AAF is a significant and growing part of the Australian eResearch infrastructure landscape. • Its core value proposition is that it is operating as a shared service for the Australian research and education sector. It minimises the cost and effort for each individual subscriber of managing federated identity. • The AAF has achieved a critical mass of Identity Providers. This has given service providers access to over one million identities and proved to be a catalyst for service growth in the Federation.
  • 21. Key Messages • The Federation is being funded primarily by Universities and large government research organisations • A vibrant and successful Federation will have many services, some will be heavily used and some will be lightly used. .
  • 22. What next • Measuring our success in 2012 will focus on continuing to build the value proposition by the services that are available via the AAF. • Super Science initiatives • AAF infrastructure for: ? National Entitlement Server for fine grained authorisation