Metadata and Trust Management
26
NORDUnet Nordic infrastructure for Research & Education NORDUnet Nordic Infrastructure for Research & Education Click to edit Master subtitle style 01-06-10 Metadata and Trust Management TNC2010/Leif Johansson/[email protected]
Transcript of Metadata and Trust Management
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
Metadata and Trust Management
TNC2010/Leif Johansson/[email protected]
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
Make things as simple as possible(but not any simpler!)
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
What is SAML Metadata?
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
SAML Metadata is...● Keys and endpoint information for SAML● Signed XML (xml-dsig)● Trust derived from signature on XML
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
So what is a good way to manage this?
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
Is it a database?
xml
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
A wise man said:
”Treat documents as documents”
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
Actually it was Ian Young :-)
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
So is it a document management system?
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
C'Mon! Please!
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
Lets take a step back and look at the interfaces
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
Metadata Access Interface
consumers
entityxml
entityxml
entityxml
entityxml
Storage
Access
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
● Access Interfaces alternatives● GET
– whole file download
● MDS– edugain 1.0 focuses on management
● MDX– RESTful soon-to-be Internet Draft
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
So is MDX the final word?
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
Lets take a stroll down memory lane...
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
LAN
LAN
LAN
Hey this LAN stuff is pretty neat!
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
LAN
LAN
LAN
Lets connect them up!
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
/28
/8
/16
/24
/26
/8
/24
/24
/8
/16
/16
/16/16
/16/16
/28
/24
Where did these guys come from?
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
BGP FTW!
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
InCommon
SWITCHaai
SWAMID
Hey this federation stuff is pretty neat!
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
D00d! Where is my BGP?
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
Opinions and Experience
(my very own and on this planet...)
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
● ORM RDBMS etc suck for XML● You absolutely need revision control● We have to stop with the whole file
downloads soon● MDX is the only viable option● Metadata operators need FIPS 140-3
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
Stuff I've written over the years...
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
● saml-md-manager● ORM+RDBMS+WebUI+... #abandoned
● saml-md-tools● bash+perl+xslt+libxmlsec #works-for-me
● saml-md-aggregator● Minimal implementation of MDX● Metadata kept in git/svn/mercurial/whatever● PKCS#11 based signer● neo4j used as an index● RSN
NORDUnetNordic infrastructure for Research & Education
NORDUnet Nordic Infrastructure for Research & Education
Click to edit Master subtitle style
01-06-10
git://git.nordu.net/saml-md-aggregator.githttp://git.nordu.net
