Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Consortium members Login

Introduction

Supporting and promoting scientific research and innovation as well enabling access to scientific information are key priorities for the European Commission and for the Member States.

The rapid development and adoption of Information and Communication Technologies (ICT) has changed the way researchers work, enabling almost instantaneous collaboration regardless of physical location and has provided access to an enormous amount of scientific information that can be processed on powerful computational platforms. This new way of working has generated and generates a huge volume of data, whose exchange and curation pose significant challenges.

To address this point. the High-Level Expert Group on Scientific Data (also known as HLEG on Scientific Data) recommends in its report (Riding the Wave )  the creation of a directive to set up a unified authentication and authorisation system, which they envision would pave the way to distributed and collaborative authentication, authorisation and accounting (AAA) for scientific data. As a result of the recommendation of the HLEG on Scientific Data, the European Commission has tendered to award funding to study the feasibility and impact of adapting the existing, widely used AAA platforms and services to be fully compliant with the requirements posed by the use of data/information resources (such as papers).

In December 2011 the call for tender was awarded to the Consortium composed of the following four partners:

  • TERENA (Trans European Research and Education Networking Association), the leading partner;
  • LIBER (Association of European Research Libraries);
  • UvA (Universiteit van Amsterdam hereafter called UvA);
  • DEENK (University and National Library of Debrecen)

The consortium will work together with the following experts:

  • Diego Lopez (Telefonica I+D)
  • Klaas Wierenga (Cisco Systems)
  • Torbjorn Wiberg (Umea University)
  • Nicole Harris (JISC Advance)

This study will run from Dec 2011 until August 2012.

 

Aim of the Study

The goal of this study is to provide recommendations for the development and deployment of a Scientific Data e-Infrastructure (SDI) that would enable access to heterogonous data for researchers and citizens alike. The SDI should be delivered integrating as much as possible existing AAA platforms (such as those used by the research and education community, or those used by the eScience community).

The study will therefore will identify use-cases for the SDI; it will assess existing AAA-infrastructures as well as the ability for the existing AAA-infrastructures to address these use-cases; the study will also examine the gaps in providing the necessary infrastructure to support the use-cases and explore the work that is being done in the existing AAA-infrastructures to address those needs.

Study on AAA Platforms For Scientific Resources in Europe

Image Added

In December 2011, a consortium of four partners and a number of external experts was awarded a contract by the European Commission to carry out a study into AAA (authentication, authorisation and accounting) platforms and services for scientific resources. The study, led by TERENA, was concluded in September 2012.   

The AAA Study Final Report is now available as pdf.


    

                                                                                                                                                                                                                                                                                                 

Aim of the AAA Study

The goal of the study was to evaluate the feasibility of delivering an integrated Authentication and Authorisation (and possibly accounting) Infrastructure (AAI) to help the emergence of a robust platform (Scientific Data Infrastructure(SDI)) for access to and preservation of scientific informationThe results of the study in the forms of technical and policy recommendations will be used in developing a strategy, in particular, for Scientific Data Infrastructures in Europe that will support science by providing access to quality services for researchers, funding agencies and for the public at large.

The targeted actors in the study are were the research and education communities, information service providers (data centres, libraries) and e-Infrastructure /technology providers.      

 

General Study Organization

The goal of the study will be achieved by meeting three different objectives:

Objective I – Identify use-cases and their requirements concerning AAA

During this phase of the study, use-cases will be identified via interviews with different user-groups; particularly LIBER and DEENK will collect the requirements from the library, the archive and the humanity communities on data access, data management and governance, data curation and long-term preservation as well as on AAA; TERENA and UvA will collect to requirements from the e-Science and to the networking communities.

The results of these interviews will be used to assess how the existing initiatives can meet the resulting requirements. The rationale for the SDI and its added value to access, store and preserve heterogeneous data will also be highlighted.

Objective II – Analyse existing and emerging infrastructures to address identified use-cases.

A strengths and weaknesses study (SWOT Analysis) of the existing infrastructures will be carry out; during this phase the support for the identified use-cases will also be assessed. Data protection, access issues and trust models will also be considered.

This part of the study will be driven mostly by TERENA, UvA and the experts.

This part of the study will also describe scenarios that would benefit from an integrated AAA and evaluate options to deliver an integrated and manageable AAA/AAI for the SDI (or e-Infrastructure).

The outcome of this part of the study will be:

  • A complete overview of the AAA landscape in Europe (with references to US and/or other regions) and the main current trends;
  • A description of the inter-operability features of the AAA systems surveyed in light of their suitability as elements of integrated infrastructures.
  • An evaluation of the user-friendliness of the considered AAA infrastructures.

Objective III – Recommendations to deliver the SDI

In the third part of the study options to deliver an integrated and manageable AAI for SDI (Objective 3) will be proposed.

The outcome of this study will be:

  • Provide recommendations for adapting the existing, widely used platforms and services to be fully compliant with the requirements posed by the use of data/information resources (papers, catalogues, raw data, images, etc)
  • Provide recommendations on how European regulations could support such an integrated SDI;
  • Provide technical recommendations for developers to favour specific technologies to ensure future inter-operability;
  • Address the (organizational, legal and technical) challenges to provide pan-Europe AAA/AAI for SDI/e-Infrastructure.

The role of new technologies and standards under development in relevant bodies such as IETF, OGF, OASIS, ISO/ITU-T, IEEE as well as industry technologies (social network and others)  and how these will impact of facilitate the provisioning of the SDI will be discussed.

     Image Added

The study was organised in two parts (see picture on the righhand side):  

  1. Collection use-cases to derive the AAI requirements;
  2. Evaluation of existing AAI as well as their gap analisys to identify their strengths and their challenges. The legal aspects of the different AAIs was also assessed.

The output of the study consists of a set of recommendations for the delivery of an integrated AAI to be used for SDI.

The recommendations highlight the following priorities:

  • The general assumption confirmed by this study is that an AAI for SDI should be built on standard technologies, using mechanisms to translate between various authentication and authorisation technologies, and that federated access plays an important role;
  • To fully benefit from federated access, more funding is needed to improve the reach of national identity federations in research an education;
  • Further research is needed to enhance authorisation and accounting mechanisms;
  • A common policy and trust framework for identity management is needed, as well as clarity on data protection laws – these should be coordinated at European level;
  • Relevant organisations such as eIRG, REFEDS (Research and Education Federations), IGTF, the EC and consortia of libraries and data centres should all work towards these goals.

Read more on the Organisation of the Study...

Results of the Study

The tables below summarises the list of high-priority recommendations as identified by the team.

Image Added

Image Added

 

Image Added

 

 

 

Image Added


The recommendations target different stakeholders:

  • The EC for the definition of a possible directive;
  • Developers to encourage them to use standard technologies to achieve interoperability;
  • Member States for creating the conditions for such an infrastructure at a national level;
  • Policy makers, particularly those involved in the Data Protection Directive, to create awareness of the impact of legislation on cross-boundary access management.

The involved stakeholders should act timely to address these points.

 

Milestones

...

and Meetings

The study will be done in the period from January 2012 till August 2012 with the following deliverables and timetable.

D1 - Inception report (February 2011) will elaborate on the methodology that will be used to carry out the study, will provide details on the resources and articulate the objectives.

D2 - Interim study report (April 2012) will cover the intermediate results for the objectives listed above, specifically:

Objective 1: the state-of-the-art survey will be in its final stage and complete.

TERENA and UvA will lead the work to assess the state-of-the art of the existing AAA infrastructures used by the research and education community.

Objective 2: some technical, organisational and legal obstacles will be identified in the analysed AAA Infrastructures and initial proposals will be formulated, specifically on how to overcome the barriers to effectively move towards the provision of common cross-domain and European-wide AAA services suitable for information resources.

The interim report will include initial set of use-cases collected by partners, in particular:

(i) LIBER and DEENK will collect the requirements from the library, the archive and the humanity communities on data access, data management and governance, data curation and long-term preservation as well as on AAA.

(ii) TERENA and UvA will collect to requirements from the e-Science and to the networking communities.

The initial requirements for the AAA infrastructure will be derived by the use-cases; the assessed AAA infrastructures will also be evaluated against the collected use-cases. A SWOT analysis of these infrastructures will be provided as part of this report.

D3 - Final study report (June 2012), including an executive summary, covering the final results for the objectives listed above. The final study report will take into account the discussions at the Final workshop (planned for July 2012) and final meeting as well as the use-communities identified and consulted by the consortium. An annex to the final study report will contain the raw data used in producing the study.

D4  - Technical report (July 2012) which will describe the use of resources in the performance of the contract including e.g. time-sheets on man/days consumption, travel details, use of consumables, etc.

...

NameDeadlineDescription
Draft Final Study ReportJune 2012

Draft AAA-Study-Report - To provide the draft final report of the study for comments. 

This version of the report was circulated before the final workshop (see below).

Partners' liaisons (i.e. REFEDS, TF-EMC2 and other relevant groups) were also consulted.

Beside the report, the consortium has made available an additional document 'FIM and Law'

This document covers  legal issues in federated access management.

Final WorkshopJuly 2012

To present the preliminary results to the study and receive feedback during the workshop.

The workshop was organised at the Commission’s premises in Brussels.

...

Final Study ReportSep 2012To include the feedback received during the final workshop.
Technical ReportAug 2012To report on the use of resources in the performance of the contract.

 

Contacts

If you have any question please do not hesitate to contact the study

Consortium

TERENA (http://www.terena.org) has extensive and consolidated experience in leading pan-European initiatives and large-scale studies. TERENA operates under a model in which experts with the appropriate competence and experience from the national academic networks and the research community collaborate in the well-established initiatives operating under the TERENA’s umbrella, such as the Research and Education FEDerationS (REFEDS) initiative, the task-force on European Middleware Coordination and Collaboration (TF-EMC2) and the task-force on Mobility and Network Middleware (TF-MNM). Through the leadership of these groups (who have committed to participating in this study) and through TERENA’s participation in the GÉANT project, TERENA can provide extraordinary resources and knowledge for the task at hand: assessing the AAA-infrastructures operated by (and for) the European R&E community, define the requirements of this community for the next decade and propose recommendations to build the Scientific Data infrastructure (SDI).

LIBER  (http://www.libereurope.eu) offers a network of 425 institutions (major research libraries in Europe) in more than 40 countries, which will prove very useful for consultation, dissemination and awareness raising; LIBER is also well positioned to offer a more political level consultation and outreach via the League of European Research Universities (LERU) and other major research institutes. Large scale survey experience is another main asset that LIBER will bring to the Consortium.

UvA (http://www.science.uva.nl/research/sne/) will contribute to the project study with expert knowledge in the area of Authentication and Authorisation Infrastructure (AAI) and emerging security models for Cloud and on-demand infrastructure services provisioning to achieve federated Authentication, Authorisation and Attributes management in heterogeneous distributed e-Science applications. Existing expertise will be effectively used for proposing a common integrated and/or federated AAA infrastructure for all components and layers of the Scientific Data infrastructure (SDI). UvA has developed generic authentication, authorisation and accounting (AAA) architecture and AAA Authorisation frameworks (described in RFC2903-2906) and provided practical implementation with the open source GAAA (Generic AAA) Toolkit Library used in a number of EU funded projects like GEYSERS (Generalised Architecture for Dynamic Infrastructure Services), Phosphorus (Lamba User Controlled Infrastructure for European Research), EGEE (Enabling Grid from E-sciencE) and others. UvA is active in many standardisation bodies including OGF (http://www.ogf.org), IETF (http://www.ietf.org) and NIST (http://www.nist.gov).

DEENK (http://www.lib.unideb.hu) is one of the leading university libraries with important national tasks in Hungary. DEENK operates the infrastructure of the National Document Supply System including the electronic document service. It provides technical support for the Hungarian Open Repository Network (HUNOR) and brings to the consortium a key role in open access initiatives both on national and international levels as well as the experience gained in developing an electronic archive to store scholarly outputs as one of the first universities in Hungary. It hosts the Open Access National website containing up-to-date information about open access events and projects.

External experts

A number of external experts have already been engaged in the preparation of this offer, namely:

Diego Lopez (Telefonica I+D), former (till October 2011) chair of the TERENA task-force on European Middleware Coordination and Collaboration and also member of the High Level Expert Group on Scientific Data e-Infrastructures;

Nicole Harris (JISC Advance) and co-coordinator for REFEDS;

Klaas Wierenga (Cisco Systems) and chair of the TERENA task-force on Mobility and Network Middleware as well as chair of the European Committee for Academic Middleware (ECAM), and

Torbjörn Wiberg (Umeå University) responsible for the Swedish Alliance of Middleware Infrastructure; they have committed to participate in the study as well.

Contribution to AAA Study

The study is open to all interested parties both as organisations and individuals. Study documents will be regularly published at the wiki with request for comments. Public presentations on the study progress and results will be announced in advance to solicit comments and discussion.   

Please contact the project coordinator Licia Florio (florio@terena.org) or TERENA (secretariat@terena.org).