Comments for UK Access Management Focus http://access.jiscinvolve.org/wp federating access management Wed, 18 Jan 2012 08:35:24 +0000 http://wordpress.org/?v=2.9.2 hourly 1 Comment on On Frictionless Sharing by Brian Kelly http://access.jiscinvolve.org/wp/on-frictionless-sharing/comment-page-1/#comment-37507 Brian Kelly Wed, 18 Jan 2012 08:35:24 +0000 http://access.jiscinvolve.org/wp/?p=520#comment-37507 Many thanks for your contribution to this discussion. I agree with your comment that "<em>If we want to see frictionless sharing, it is likely that we are probably compromising on personal data security</em>". Of course it may be that society decides it is prepared to make such compromises even if, as Amber suggests, the middle classses are dismissive of such developments. The phrase "<em>if you’re not the customer, you’re the service</em>" always reminds me of ITV - a good example of a well-established service in which the viewer is the product. Programmes on ITV are there to fill in the gaps between the adverts, as that's the way ITV is financed. And for 50 years we have accepted that. What's new? Many thanks for your contribution to this discussion.

I agree with your comment that “If we want to see frictionless sharing, it is likely that we are probably compromising on personal data security“. Of course it may be that society decides it is prepared to make such compromises even if, as Amber suggests, the middle classses are dismissive of such developments.

The phrase “if you’re not the customer, you’re the service” always reminds me of ITV – a good example of a well-established service in which the viewer is the product. Programmes on ITV are there to fill in the gaps between the adverts, as that’s the way ITV is financed. And for 50 years we have accepted that. What’s new?

]]> Comment on How can we create an identity economy for research and education? by Adrift on a choppy sea « Digital Literacy @ University of Worcester http://access.jiscinvolve.org/wp/how-can-we-create-an-identity-economy-for-research-and-education/comment-page-1/#comment-37467 Adrift on a choppy sea « Digital Literacy @ University of Worcester Tue, 17 Jan 2012 14:52:11 +0000 http://access.jiscinvolve.org/wp/?p=515#comment-37467 [...] of JISC Advance. It’s not a very regular blog but interesting stuff appears there, like this post. The post doesn’t have a very inspiring title, “How can we create an identity economy [...] [...] of JISC Advance. It’s not a very regular blog but interesting stuff appears there, like this post. The post doesn’t have a very inspiring title, “How can we create an identity economy [...]

]]> Comment on On Frictionless Sharing by dkernohan http://access.jiscinvolve.org/wp/on-frictionless-sharing/comment-page-1/#comment-37463 dkernohan Tue, 17 Jan 2012 14:09:31 +0000 http://access.jiscinvolve.org/wp/?p=520#comment-37463 I did not know about UMA. I now do. You have made my life better. Thank you! I did not know about UMA. I now do. You have made my life better. Thank you!

]]> Comment on How can we create an identity economy for research and education? by UK Access Management Focus · On Frictionless Sharing http://access.jiscinvolve.org/wp/how-can-we-create-an-identity-economy-for-research-and-education/comment-page-1/#comment-37460 UK Access Management Focus · On Frictionless Sharing Tue, 17 Jan 2012 13:46:15 +0000 http://access.jiscinvolve.org/wp/?p=515#comment-37460 [...] academic space – the Google Scholar approach is just not taking off. This is something I talked about at the FAM11 [...] [...] academic space – the Google Scholar approach is just not taking off. This is something I talked about at the FAM11 [...]

]]> Comment on You Can’t Sue Unicorns by dkernohan http://access.jiscinvolve.org/wp/you-cant-sue-unicorns/comment-page-1/#comment-36752 dkernohan Thu, 05 Jan 2012 15:48:35 +0000 http://access.jiscinvolve.org/wp/?p=517#comment-36752 Love it! Love it!

]]> Comment on You Can’t Sue Unicorns by foo http://access.jiscinvolve.org/wp/you-cant-sue-unicorns/comment-page-1/#comment-36578 foo Tue, 03 Jan 2012 07:25:48 +0000 http://access.jiscinvolve.org/wp/?p=517#comment-36578 You had me almost laughing already, but the "...or Sicillians" got me ;) You had me almost laughing already, but the “…or Sicillians” got me ;)

]]> Comment on You Can’t Sue Unicorns by IngridM http://access.jiscinvolve.org/wp/you-cant-sue-unicorns/comment-page-1/#comment-35084 IngridM Fri, 16 Dec 2011 12:45:28 +0000 http://access.jiscinvolve.org/wp/?p=517#comment-35084 In my experience there are more relevant parts of Job's book when working on federation policy. Not the least being http://www.biblegateway.com/passage/?search=Job%2039:5&version=KJV or http://www.biblegateway.com/passage/?search=Job+40:7-8&version=KJV Leaving guidelines and values aside, the practical advise would be to include a part of the policy stating "Any unicorns delivered by the Service Provider may be freely ridden by end user, but must be returned when the login session expires (or upon explicit logout, if logout is available). Unicorns available for the user from the Identity Provider are subject to local ICT policy at your educational institution, restrictions may apply. Unicorns must not have access to PII on royal blood lines or virginity." The liability and risk assessment of that phrasing should fly. In my experience there are more relevant parts of Job’s book when working on federation policy. Not the least being http://www.biblegateway.com/passage/?search=Job%2039:5&version=KJV or http://www.biblegateway.com/passage/?search=Job+40:7-8&version=KJV

Leaving guidelines and values aside, the practical advise would be to include a part of the policy stating “Any unicorns delivered by the Service Provider may be freely ridden by end user, but must be returned when the login session expires (or upon explicit logout, if logout is available). Unicorns available for the user from the Identity Provider are subject to local ICT policy at your educational institution, restrictions may apply. Unicorns must not have access to PII on royal blood lines or virginity.” The liability and risk assessment of that phrasing should fly.

]]> Comment on Waterboarding? Nope, just ‘Hey’ by Paul S. http://access.jiscinvolve.org/wp/waterboarding-nope-just-hey/comment-page-1/#comment-34461 Paul S. Thu, 08 Dec 2011 13:48:07 +0000 http://access.jiscinvolve.org/wp/?p=513#comment-34461 I feel your pain. Just as often, it's libraries being blamed by their users for the shortcomings of suppliers. Trouble is, we (that's academic libraries and JISC!) often actively invite our users to complain; [some] service providers aren't so open to customer feedback. I think some of my (and others') reactions to the frustrations of access management are though an instinctive analogy to access to print resources, i.e.: Access to full text ≈ reference access. We don't really need to know <em>who</em> you are, just <em>where</em> you are. When it's too difficult to navigate, full-blown authentication just doesn't feel worth the full-text payback. So we're happy with the (imperfect, non-personalised, but <strong>simple</strong>) solution of the proxy. Personalised authentication ≈ borrowing rights. We want to check your personal credentials before we let you walk off with the goods. Paul I feel your pain. Just as often, it’s libraries being blamed by their users for the shortcomings of suppliers. Trouble is, we (that’s academic libraries and JISC!) often actively invite our users to complain; [some] service providers aren’t so open to customer feedback.

I think some of my (and others’) reactions to the frustrations of access management are though an instinctive analogy to access to print resources, i.e.:

Access to full text ≈ reference access. We don’t really need to know who you are, just where you are. When it’s too difficult to navigate, full-blown authentication just doesn’t feel worth the full-text payback. So we’re happy with the (imperfect, non-personalised, but simple) solution of the proxy.

Personalised authentication ≈ borrowing rights. We want to check your personal credentials before we let you walk off with the goods.

Paul

]]> Comment on How can we create an identity economy for research and education? by Guest post: Digital Identity Management is ‘Fundamental’ « Eduserv: blog http://access.jiscinvolve.org/wp/how-can-we-create-an-identity-economy-for-research-and-education/comment-page-1/#comment-34286 Guest post: Digital Identity Management is ‘Fundamental’ « Eduserv: blog Tue, 06 Dec 2011 15:21:05 +0000 http://access.jiscinvolve.org/wp/?p=515#comment-34286 [...] transcript of my talk is available on my blog if you want to read up some more. It’s a line of thinking that I’m really hoping to pursue and [...] [...] transcript of my talk is available on my blog if you want to read up some more. It’s a line of thinking that I’m really hoping to pursue and [...]

]]> Comment on Student developers by Paul S. http://access.jiscinvolve.org/wp/student-developers/comment-page-1/#comment-32484 Paul S. Tue, 15 Nov 2011 15:00:06 +0000 http://access.jiscinvolve.org/wp/?p=511#comment-32484 Awww, we would have <em>loved</em> an AIM-themed competition! Genuinely. I had a couple of conversations with student teams on the Saturday; they were both struggling with the notion of how an application could take advantage of 'devolving' authentication to multiple universities. And I'm sorry we didn't approach you for sponsorship <strong>:-|</strong> There should be another DevXS next year (albeit not necessarily at Lincoln) - I'll make sure we/they get in touch early on. Paul Awww, we would have loved an AIM-themed competition! Genuinely. I had a couple of conversations with student teams on the Saturday; they were both struggling with the notion of how an application could take advantage of ‘devolving’ authentication to multiple universities.

And I’m sorry we didn’t approach you for sponsorship :-| There should be another DevXS next year (albeit not necessarily at Lincoln) – I’ll make sure we/they get in touch early on.

Paul

]]>