Middleware Workshop
 Chairman :  Yasuo Okabe ( Kyoto University, Japan )
 Secretariat :  Reza Khoshdelniat ( MIMOS, Malaysia )
 Objectives :  TBD
 Target Audience :  Open for any attendees, especially researchers, application developers and operators working on academic networks, AAI and Grid.
 Expected Number of Participants :  TBD
 Agenda :   Session 1: 11.00 - 12.30 - Eduroam
  Chair: James Sankar - AARnet

   Canada eduroam - a new service for Canadian higher education institutions
   Stan Shaw & Jens Haeusser (via video) - 30 minutes   
  Bio - Stan Shaw   Stan Shaw - Bio & Abstract
  Stan Shaw is an IT professional with expertise in communications technologies, including videoconference systems. He is a certified project management professional (PMP), with strong interests in health care and higher education.Stan has been a key contributor to the medical school expansion program at the University of British Columbia, developing leading edge multi-media systems and working with a team of support staff in three Universities and six Health Authorities to teach medicine across the Province. Most recently, he has become increasingly involved in province-wide eHealth initiatives, including Telehealth. Stan was the project manager for the BCNET eduroam project, which has now become a Canada-wide service. Stan holds a PMP, a bachelor's degree in Medical Laboratory Science and a Ph.D. in molecular biochemistry. A complete bio can be found at http://sshaw.profiles.corbantechnology.com.
  Bio - Jens Haeusser   Stan Shaw - Bio & Abstract
  Jens Haeusser is the Director of Strategy in the Office of the Vice Provost, IT at the University of British Columbia. He is responsible for fostering outstanding IT solutions at UBC by developing creative and relevant IT strategies that anticipate and reflect broad campus needs, developing strategic relationships with faculties and administrative units, and building long-range plans for IT directions at UBC. Jens is an active participant many other organizations including EDUCAUSE, Internet2, CANHEIT, CIPS, BCNET, and as a Jasig and Fluid board member. He plays a leadership role on Identity Management as a member of the Middleware Architecture Committee for Education, and on the steering committees of both the Canadian Access Federation and the EDUCAUSE Identity Management Working Group. An advocate for the transformative role of Service Oriented Architecture in higher-ed, Jens is also involved in promoting and architecting Kuali Student. Prior to his current role, Jens spent a decade as a departmental IT administrator before becoming UBC¡¯s first Information Security Officer in 2003. A full bio can be found at http://www.educause.edu/Community/MemDir/Profiles/JensHaeusser/50001 .
  Abstract : Canada eduroam - a new service for Canadian higher education institutions   Abstract
  "eduroam" is a collaborative network that allows students, staff, researchers and faculty to access wireless services at participating higher education institutions across Canada and around the world, without the need for obtaining a guest account. Users visiting another institution to log-in using the same credentials they would at his or her home institutions. Since its inception in 2004, eduroam has grown rapidly into a world-wide community consisting of comprised of over 450 institutions across 25 countries in Europe, Asia and Australia.

 BCNET was the first organization in Canada to create eduroam links for wireless authentication between higher education institutions. Since then, BCNET has evolved its services to maintain Canada eduroam's national radius services on behalf of the Canadian University Council of CIO's - Conseil des dirigeants principaux de l'information des universit¨¦s canadiennes.

 This presentation will describe what Canada eduroam is, its remarkable development, and how institutions across the country are enabling their faculty, staff , students and visiting researchers to join the growing "eduroam" worldwide community.

   Eduroam in Australia - what's been achieved and where to from here
  - James Sankar ( AARNet ) & Conrad Dare Edwards ( Charles Sturt University )   
  Bio & Abstract - James Sankar "CLICK HERE FOR PRESENTATION"   James Sankar - Bio & Abstract
  James Sankar is Director for Applications and Services at AARNet. James has extensive experience in managing middleware, voip, video and content mgt development projects and services. Prior to joining AARNet, James worked for UKERNA (now known as JANET) . He has chaired the TF-Mobility group that developed eduroam, he has co-chaired of the APAN Middleware Working Group, and has been a Steering Committee member for Smart Services CRC. James is currently an Executive member of the Australian Access Federation and an active participant in the AARNet funded eduroam project group. Outside of work he is a father to two young children. He is also a member of the Australia India Business Council.

  Eduroam services in Australia have been provided by AARNet with the support of volunteers that have participated in two eduroam project groups (funded and supported by AARNet). My talk will explain the changes made to move to anycast servers and to RADSSEC and why we¡¯ll see a shift to stronger form of network security sooner than later. My talk will provide an overview of development work to create a real time end-to-end monitoring solution and the result of an eduroam port based trial solution that both aim to move the service to a full production service that can help pinpoint user issues and address the varied selection of authorisation services towards a uniform service users expect. The talk will conclude with some interesting data on use of eduroam services from a successful RADIUS authentication perspective and actual usage data from the port based trial. Thoughts on the future of eduroam from a 3G/wifi, alternative easier to support client and closer eduroam/shibboleth infrastructure perspective will be covered at the end of the talk.

   Eduroam Debate
   EduRoam Debate
An opportunity to discuss eduroam operational and policy matters within the APAN region to define matters such as the process for joining new member countries and how to handle any security or abuse matters and communicate/enforce policies at regional and national levels. The debate will also include a discussion on wireless security and any impacts that require changes to eduroam service delivery. The session will also include time for attendees to see technology such as QUT's "eduroam in a box - a 3G/wifi solution".

  Session 2: 14.00 - 15.30 - Shibboleth/SAML Federations
  Chair: Nate Klingenstein - Internet2

   The AAF journey
  - Heath Marks - AAF - 20 min "CLICK HERE FOR PRESENTATION"
  Bio & Abstract - Heath Marks   Heath Marks - Bio & Abstract
  Heath Marks has over 11 years experience in the delivery of Information Technology in the tertiary sector. His recent achievement was Project Manager of the Mobile Staff Productivity Project. A $1.36 million DEEWR funded collaborative project between Griffith University and Queensland University of Technology. The project successfully increased and measured workplace productivity through the use of mobile technologies, processes and work practices. Heath is currently appointed by CAUDIT as Project Manager of the Australian Access Federation Inc.

  The Australian Access Federation (AAF) www.aaf.edu.au brings together cutting edge technologies as a framework for trusted electronic communications and collaboration within and between universities and research institutions in Australia and overseas. The AAF promotes seamless researcher, teacher and student mobility and inter-university collaboration via automatic identification services which allow authentication of people and resources between participating institutions. Similar federations are operational in the international community and the framework is rapidly becoming the common approach for managing and sharing resources.

 The AAF Project is sponsored by the Australian Government's Department of Innovation, Industry, Science and Research (DIISR). The AAF Inc. is managed by an interim Executive Committee consisting of members from the Council of Australian University Directors of Information Technology (CAUDIT) and various other stakeholders from DIISR and the National Research Infrastructure Committee (NRIC). The AAF is expected to significantly grow in utilisation of federation services across both the Research and Higher Education sectors in the next 12 months.

 The presentation will provide an overview of the AAF and its journey and includes both a technical and policy perspective.

   The UK Access Management Federation - Chickens, eggs or omelettes?
  - Nicole Harris - JISC- 20 min
  Bio & Abstract - Nicole Harris   Nicole Harris - Bio & Abstract
  Nicole Harris is Federation Services Manager at JISC. Nicole is responsible for the implementation and roll-out of federated access management within the UK educational community. She has worked for JISC for over six years, and has managed a series of programmes of work in the fields of e-research, e-infrastructure, e-learning and open source developments. Nicole works closely with international partners such as Internet2 and TERENA on developments in access and identity management, and is a regular speaker on these topics at international conferences.

  The UK Access Management Federation has been in operation for three years and now has nearly 800 members. One of the challenges in implementing the UK federation was attracting both Identity Providers and Service Providers - services were unwilling to join if there was not clear customer demand and institutions would not migrate to the new platform from existing access management solutions if there were no services on offer. In this talk, Nicole will highlight some of the strategies employed by the JISC Access Management Team to attract the right balance of membership to the UK federation, including the challenges, failures and future plans as we move our focus from library resources in to other areas.

   ARCS Authorisation Services
  - Neil Witheridge - ARCS - 20 min
  Bio & Abstract - Neil Witheridge"CLICK HERE FOR PRESENTATION"   Neil Witheridge - Bio & Abstract
  Neil Witheridge is the manager of the Australian Research Collaboration Service (ARCS) Authorisation Services team. Neil holds a Bachelor of Electrical Engineering and Masters of Engineering Science degree from University of Sydney, Australia, and has 20+ years experience in software engineering for government and commercial R&D organisations. He has undertaken post-graduate study in Management at Wollongong University and Internet Technology at Macquarie University. Neil is based at Macquarie University, and occupied management roles in the Meta-Access Management System (MAMS) project during 2004-2008 before joining ARCS in 2008.

  The mission of the Australian Research Collaboration Service (ARCS) is to provide long-term, sustainable, nationally focused eResearch support, services and tools with the goal of enabling and enhancing national research outcomes. Current services and tools include:
  video-conferencing and web content management tools; the Australian Grid and a research Compute Cloud; the Data Fabric consisting of national data federation, interoperation, storage and sharing services; and authorisation and access services The ARCS Authorisation Services team is responsible for providing the access infrastructure delivering unified authentication and authorisation to ARCS tools and services, and providing similar support to other eResearch service providers and to nationally-focused research communities in meeting their access control needs. A key component of this unified strategy is reliance on the Australian Access Federation for broad access by Australian researchers and students. Integrating federated authentication with existing research infrastructures presents several challenges such as integrating Shibboleth-based federated access with the Australian Grid and non-web-based research tools and services, and managing authorisation rights. This presentation describes the current access infrastructure available to researchers and the strategy for addressing future challenges.

   Interconnecting federations
  - David Simonsen - WAYF - 20 min "CLICK HERE FOR PRESENTATION"
  ( memo: contact via sone )   
  Bio & Abstract - David Simonsen"CLICK HERE FOR PRESENTATION"   David Simonsen - Bio & Abstract
  working with the Danish eID federation, WAYF - Where Are You From since 2005, former co-chair of TF-mobility which initiated eduroam.

  As eID federations grow and mature a relevant question is how to interconnect these infrastructures. The five Nordic countries, Finland, Sweden, Norway, Denmark and Iceland have build the Kalmar Union ( www.kalmar2.org ) - which is the first cross border interconnection of eID federations. The talk will sketch up the different federation architectures involved and explain how they interoperate, what is easy and what is (still) hard in the growing field of interfederation.

  Session 3: 16.00 - 17.30 - GRID Middleware and PKI
  Chair: TBD - Hideaki Sone
   UPKI update from Japan
  - overview - Kazu Yamaji - NII
  - SP / IdP cases - Eisuke Ito - Kyushu University "CLICK HERE FOR PRESENTATION"
  - eduroam over Shibboleth - Hideaki Goto (VC) - Tohoku University "CLICK HERE FOR PRESENTATION"   
  Bio & Abstract - Kazu Yamaji   James Sankar - Bio & Abstract

  A series of short talks from Japan covering an overview of UPKI presented by Kazu Yamaji from NII; Identity and Service Provider Use cases presented by Eisuke Ito from Kyushu University; the latest developments on eduroam over Shibboleth presented by Hideaki Goto (VC) from Tohoku University.

  Bio & Abstract - Eisuke Ito   Eisuke Ito - Bio & Abstract
  Dr. Eisuke Ito is an assosiate professor of Research Institute for IT,Kyushu University, and a researcher of Kyushu University Library. He is also a guest researcher of NII. He received Ph.D (Informatics) from Kyushu University. He is a member of IEICE (The Institute of Electronics, Information and Communication Engineers), and IPSJ (Information Processing Society of Japan). His main interests are data services and data mining, and web based contents services. He researches content recommendation such as book or movie, and constructs contents service platforms such as an institutional repository in university library. Also, he works as the cheef of the campus authentication and authorization infrastructure task force in Kyushu University.

  The authors construct a shibboleth IdP/SP in Kyushu university. Kyushu University joins the UPKI federation, and the IdP of Kyushu University satisfies standards of UPKI-Fed. UPKI-Fed is a SAML based identity federation of Japanese universities and research organisations, and it is being deployed by NII, Japan. UPKI-Fed is moving into practical service operation in 2009. This presentation will show a case study of UPK-fed and Shibboleth middleware installation in Japan.

   Academic Grid infrastructure in Japan
   Eisaku Sakane - NII   -
  Bio & Abstract - Eisaku Sakane   Eisaku Sakane - Bio & Abstract
  2003 Doctor of Science, Graduate School of Science, Osaka City University

  The National Institute of Informatics (NII) and nine supercomputer centers in Japan constructed a grid environment for academic researches and started pilot grid operation. Through the pilot grid operation, several problems have been recognized. The presentation describes the role of the Grid Operation and Coordination team of NII, explains technical issues in the grid operation, and finally discusses a solution to them.

   International federations debate
   International Federations Debate
  A general discussions with the speakers on what is needed to create an inter-federation framework for access management and what APAN could/should do to facilitate that framework and create links to other regions such as TERENA/GEANT and Internet2. The discussions would cover issues on technology, contract and policy and operation matters.
 Remarks :  

© Copyright 2009 APAN | | Last updated: 17 May 2010