Shibboleth 2'0 Update - PowerPoint PPT Presentation

1 / 11
About This Presentation
Title:

Shibboleth 2'0 Update

Description:

Support for SAML 2.0 AuthN, Logout, Attribute Artifact, and NameID management requests ... aggregating attributes from multiple sources, ... – PowerPoint PPT presentation

Number of Views:54
Avg rating:3.0/5.0
Slides: 12
Provided by: greg450
Learn more at: http://www.terena.org
Category:

less

Transcript and Presenter's Notes

Title: Shibboleth 2'0 Update


1
Shibboleth 2.0 Update
  • Ken Klingenstein

2
Topics
  • Shib v1.3 Status
  • SAML 2.0 -- new features
  • Shibboleth 2.0 Features
  • Shibboleth 2.x Features
  • We Need Feedback on
  • Shibboleth 2.0 -- Status, timeline

3
Shib v1.3 Status
  • ODBC cache plugin for the SP
  • Addons
  • GridShib
  • ADFS
  • LionShare

4
SAML 2.0 -- new features
  • Authn Request -- extended functionality
  • Single Logout
  • NameID Mapping and Management
  • Enhanced Client or Proxy (ECP) Profile
  • Encryption

5
Shibboleth 2.0 Features
  • What is the definition of Shibboleth 2.0? Is a
    new profile needed?
  • Convergence with commercial Liberty and SAML
    products
  • Support for the published Shibboleth profile
    (would not interoperate with Shibb v1.2?)
  • Support for SAML 2.0 AuthN, Logout, Attribute
    Artifact, and NameID management requests
  • everything but AuthnQuery and AuthzDecisionQuery)
  • how applications would influence the AuthnRequest
    process

6
Shibboleth 2.0 Features
  • Good/real targeted ID implementation
  • SP 2.0 ( implemented in C and Java
  • Is it a problem if the C follows the java
    version?
  • Authn Request
  • some of the extended SAML functionality
  • Shib will include some Authentication processing
    "in the box
  • interface to SSO systems to support new
    functionality in Authn Request
  • IdP be easily clusterable and should be stateless
    to the greatest extent possible

7
Shibboleth 2.0 Features
  • SP - clusterable
  • other new functionality?
  • Production ready WAYF providing both standalone
    and application-integrated functionality in at
    least Java
  • ask for input on current problems? (use shib-dev
    email list)

8
Shibboleth 2.x
  • Delegated Authentication
  • SAML NameID management requests account linking)

9
Need Feedback on
  • aggregating attributes from multiple sources,
  • something that's outside the bounds of the spec,
    but often discussed
  • define a WAYF protocol for getting/setting the
    IdP choice and returning to the SP with it
  • InfoCard support

10
Shibboleth 2.0 -- Status, timeline
  • coding currently underway on OpenSAML 2.0
  • will support both saml v1.1 and 2.0
  • about 50 done
  • expect to have beta in March timeframe
  • initial beta version of Shib 2.0 available
    May/June 2006

11
Questions?
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Shibboleth 2'0 Update" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!