JISC Access Management Team

Nicole Harris writes

The team is currently attending and speaking (lots) at the Fall Internet2 meeting in San Diego.

Day One we are focusing on Identity Management and Collaborative Tools. My very brief presentation followed on from some really interesting overviews by Ken Klingenstein and Michael Gettes (Internet2) and James Dalziel (AARnet).

All of our presentations focused on the need for:

• taking identity management out of services, and managing separately in a federated approach.
• providing tools for users and managers to cope with the complexity of managing identities, groups, attributes etc.

I was really happy, as nobody talked about having multiple identities, but the complexity of our relationships and rights in relation to member institutions and services.

Interesting developments are the COmanage and IAMSuite tools. These are bringing together a host of promising, but not complete solution tools: ShARPE, Grouper, Signet, MyVOCs and beginning to address some of the real interesting use cases behind the interest in more high profile tools such as OpenID and CardSpace.

Definitely a space to watch and one that will be growing.

Other points and questions from the session:

• Moving away from the idea of shib-enabled, iamsuite-enabled, federated etc. We just want well-behaved aps that will consume external identities and identity information. SAML compliance is clearly important here, but perhaps not the final answer.
• What should be on my identity management ‘dashboard’ to actually help me managed my identity?
• Should all group management tools be able to provide and release information about all group members?