strong authentication and authorisation. stork and stork2.0
DESCRIPTION
Presentation on Strong Authentication and Authorisation at EUNIS 2013 in Riga. This presentation gives also an overview of STORK results and STORK2.0 objectives regarding authorisation.TRANSCRIPT
University Information Systems and the need for strong authentication and authorisation.EUNIS Conference – Riga, Latvia – June 13th, 2013Vicente Andreu NavarroPaúl Santapau Nebot
Universitat Jaume IMember of STORK 2.0 Consortium
Leader of eLearning and Academic Pilot
Stork 2.0 is an EU co-funded project INFSO-ICT-PSP-297263
2
Summary
• Identification and Authentication• Authorisation• Attributes • EU LSPs
3
Identification and Authentication
Is the process of verifying that an identity is bound to the entity that makes an assertion or
claim of identity.
4
Identification and Authentication
This process involves one or several factors
5
Identification and Authentication
• Something you know.
6
Identification and Authentication
• Something you have.
7
Identification and Authentication
• Something you are.
8
Identification and Authentication
• Where you are.
9
Identification and Authentication
• Combination of factors – Something you know– Something you own– Something you are– Where you are
Identity card
Location
Biometrics
Password
TRUST
10
Authorisation
Is the function of specifying access rights to resources, generally associated to access control. It is also related to the enabling of someone to do something. – Access to a web admin panel– Driving license– Food handling permit– Medicine practitioner– …
11
Attributes
• Properties associated to an identity.
User
ID
Name
Surname
Address
Degree
Profession
Certificates
12
Attributes
• More specifically
User
Basic Id Attributes Extended Id Attributes
Name Address
Date of Birth
Academic Life
Financial Life
Health Life
Public Services
DegreesProfession
CertificationsLanguages
Official permits
…Specific Business Attributes
…
13
Identity Attributes
• Where are those attributes?
University
Banks Hospitals
Government
Police Companies
14
Large Scale Pilot - STORK
15
Large Scale Pilot - STORK
17 countries “PEPS/VIDP-Enabled” all over Europe
More than 30 services running
More than 40 different credentials supported
Results2008-2011
16
LSP – STORK 2.0
17
STORK 2.0: The Vision
STORK 2.0 will contribute to the realization of a single European electronic identification, authentication and authorisation area by:
– building on the results of STORK (2008 to 2011)– establishing interoperability of different approaches at national
and EU level, eID for persons, eID for legal entities and the facility to mandate
– Pilots: eLearning, eBanking, eHealth and Public Services for Businesses
Pilot Key Facts
• Participating Countries
18
Czech Republic Slovenia
Greece Spain
Iceland Sweden
Italy Turkey
Lithuania UK
Portugal
Pilot Key Facts
• Pilot Partners
19
Partner Name Full Name
CZ.NIC CZ.NIC, z.s.p.o
HMI Hellenic Ministry of Administration Reform and E-Governance
UAegean University of Aegean - Research Unit
IS-SKRA Registers Iceland
POLITO Politecnico di Torino
CSI CSI-Piemonte
LT-MOI Republic of Lithuanian Ministry of Interior
LT-IS State Enterprise Infostruktura
IST Instituto Superior Tecnico
Pilot Key Facts
• Pilot Partners
20
Partner Name Full Name
IJS Jozef Stefan Institute
ES-UJI Universitat Jaume I
MINHAP Ministerio de Hacienda y Administraciones Públicas
ES-UMU Universidad de Murcia
SE-SU University of Stockholm
TUBITAK Turkiye Bilimsel Arastirmalar Kurumu
TURKSAT Turksat Inc.
UK CO UK Cabinet Office
YAP Yorkshire Authentication Project
21
STORK 2.0 Pilots
eLearning & Academic Qualifications
Cross-border e-Learning environments
eLearning : Shared e-learning environment for joint degrees.
eSurvey Service: for designing and performing opinion surveys that target specific groups of individuals (students, professors, experts,…).
Academic Attribute Verification for Job Selection
TADS: to facilitate the attribute delivery to any party.
Job qualification Service: to facilitate verification of academic qualification for a job.
Job selection Service: to facilitate selection of workers to companies hiring foreign citizens with specific academic qualifications.
Attributes in STORK 2.0Diploma Supplement
22
Name and Surname
Name of Qualification
Main Field of Studies
Overall Qualification
…
Attributes in STORK 2.0
Attributes about current studies
23
Study Year
Current Grade
Courses
…
Attributes in STORK 2.0
Attributes indicating roles
24
Is Student?
Is Academic Staff?
…
Attributes in STORK 2.0
Other attributes– E-mail– Languages– …
25
Attributes in STORK 2.0
26
Nam
eSurname
eID
Date of Birth
Academic AttributesAP SP
STORK 2.0 Infrastructure
27
HOW TO GET INVOLVED…
• Visit STORK 2.0 website www.eid-stork2.eu !
• Subscribe to STORK 2.0 Newsletter!
• Participate & “like” Stork eID Facebook page!
• “Follow” us on Twitter @StorkEid !
• Connect to Stork 2.0 EID LinkedIn page!
• Register in STORK 2.0 online groups!
• Contact us at [email protected] !
Thank you for your attention! www.eid-stork2.eu
Stork 2.0 is an EU co-funded project INFSO-ICT-PSP-297263