carpenter: getting access control from here to there
TRANSCRIPT
GettingAccessControlFromHeretoThere:AretheRightPeopleTalkingTogether?
ToddA.CarpenterExecutiveDirector,NISOCNIBriefingSessionDecember13,2016
Isthisatechnicalproblemorasocialproblem?
SoManyIdentityManagementEfforts
OpenIDFoundationInternet2
NISTNSTICworkInternetIdentityWorkshop
Morethan2,200identityprovidersNIHeffort
GeneralwebaccesscontrolBanking/security
Accesscontrolatyourinstitution
HowwelldoesyourlibraryandyourITdepartmentinteract?IsIP-basedauthenticationtheeasiestwaytoNOTinteract?
IdentityManagementatyourinstitution
IdentityManagementandPrivacy
SAMLbaked-inprivacyfromthestartNISOPrivacyPrinciples
Betteraccessmanagementcanbedonewithoutcompromisingprivacy
Let’slearnfromeachother
SeveralSSObestpracticeshavebeendeveloped.Let’susethem!
Whatmoredoweneedtodobeyondimplementandimprove
technology?Thereissomuchmoretothisthanimplementingaspec
Howdoyougetpeopletoknowaboutitandtouseit?
Howdowemakethisanapproacheveryonecan
implement?Noteveryinstitution/publisherhasthesamestaffing,
skills,resources.SAMLimplementationisn’tplugandplaytechnology.
Canwesustainmomentumforyears?
Theonlywaytogetthereistogettheretogether
Let’stalk…
ToddA.CarpenterExecutiveDirector
NationalInformationStandardsOrganization(NISO)[email protected]
@TAC_NISO