UK e-Infrastructure Security & Access Management WG

Last updated: 
3 days 12 hours ago
Group Manager

At the request of the Research Councils UK e-Infrastructure group, Janet established a working group from 2013-2016 to support those providing and using e-infrastructure services in achieving an approach that both protects services from threats and is usable by practitioners. More detail about the group can be found in the Terms of Reference

The Working Group published the following papers:

Information about the Working Group's activities, as well as discussion documents, links and recommendations is linked under the following categories. Unless marked otherwise, all items are works-in-progress and we very much welcome your comments and contributions.

Meetings   Presentations
Case Studies Discussions Technologies
References    

Andrew Cormack (WG Chair)

Log in to request membershipHide group description
Blog Article

What does successful industrial collaboration look like?

I sat in on an interesting session at the CASC-HPCSIG meeting in Oxford last week, looking at different models for university-industry cooperation in high-performance computing. All considered that people, support and expertise are at least as important to a successful liaison as processors, so were slightly puzzled that publicity, bids and even informal discussions tend to focus almost entirely on size of hardware.

eScience
collaboration
17 July 2015 at 9:03am
Andrew Cormack
Blog Article

Managing Federated Authorisation for Research

Research, and particularly the on-line collaborative research referred to as e-science, creates a new challenge for federated access management systems. In teaching, the authoritative statement whether an individual is entitled to access an on-line resource comes from their home organisation: are they a member of that course? are they covered by that institutional licence? Thus it is natural to provide a source of authorisation attributes alongside, or even as part of, the home organisation's authentication systems.

Access Management
#TNC2014
17 June 2014 at 4:22pm
Andrew Cormack
Blog Article

Level of Assurance: are we approaching a limit?

I've had several conversations this week that related to what's commonly referred to as "level of assurance": how confident we can be that an account or other information about an on-line user actually relates to the person currently sitting at the keyboard. Governments may be concerned with multiple forms of documentary proof but I suspect that for most common uses in the education sector that may be over-complicating things.

Access Management
passwords
eIWG discussion
11 March 2014 at 2:03pm
Andrew Cormack
Article

Federated Authentication Policies

In discussions with e-Infrastructures we’ve spoken quite a bit about federated authentication, so I thought it was worth a quick summary of the federated authentication schemes already available on Janet. And, in particular, what the policies of those federations already offer to Service Providers by way of guarantees.

eIWG discussion
Access Management
Andrew Cormack
28/02/14 9.02am
Prev | Next