Glossary

REFEDs’ (the Voice of Research and Education identity Federations): The mission of REFEDS is to be the voice that articulates the mutual needs of research and education identity federations worldwide. The group represents the requirements of research and education in the ever-growing space of access and identity management.

Federation: a union of institutes that share services and identities with each other.

SP (Service Provider): a company that is part of the federation that provides resources/services/content to the federation users.

IdP (Identity Provider): a service that provides users with an identity with which they can enter all federation platforms and use all its services.

eduroam (Education Roaming): a service that allows students, researchers and staff from participating institutions to obtain Internet connectivity across campus and when visiting other participating institutions by simply opening their laptop.

eduGAIN (Education and Global Authentication Infrastructure): The eduGAIN service is intended to enable the trustworthy exchange of information related to identity, authentication and authorisation between the GEANT (GN3plus) Partners’ federations.

SSO (Single Sign-On): A property that allows a user to log in once and then be able to move from platform to platform, even changing operating systems, while keeping the same identity and without having to ever enter username and password again at each of them.

IDP Discovery (formerly known as WAYF – Where Are You From): In deployments having more than one identity provider, the IDP Discovery Service allows service providers to determine which identity provider a principal uses with the Web Browser SSO profile. The IDP Discovery Service relies on a cookie written in a domain common to all identity providers and service providers in a circle of trust. This predetermined domain is known as the common domain, and the cookie containing the list of identity providers to choose from is known as the common domain cookie.

AAI (Authentication and Authorization Infrastructure): refers to a service and a process to allow members of different institutions access to protected information services, which are located on different Web servers.

SHA (Secure Hash Algorithm): a set of cryptographic hash functions

Subscribe to IUCC Newsletter

Connect with IUCC

tw32 fb32 in32   IUCC-POSTs

Search this site