Catch up the on the Trust Framework Model & IdM Summit presentations from our day at the EIC Conference last week.

• Introduction Opening Kantara Initiative Overview – Matthew Gardiner - slides
• Session 1: Open Identity Trust Framework Model, Kantara IAF, Assurance Certification & OIX Listing Service and Success Stories, Kantara and OIX full scale solution – John Bradley & Don Thibeau - slides
• Session 2: Privacy Framework overview and value proposition – Colin Wallis (on behalf of Mark Lizar) - slides
• Session 3a: Info Sharing and Individual Trust Frameworks – Iain Henderson – slides
• Session 3b: eGovernment Commonalities within Europe and beyond – Colin Wallis & Fulup Ar Foll - slides
• Session 4: TelCo Requirements on IdM Systems & Massively Scaleable IdM Architecture for TelCos – Ingo Friese & Fulup Ar Foll - slides
• Session 5: TAS3 – Trusted Architecture for Secure Shared Services (with Privacy) and Personal Data Store – Sampo Kellomaki - slides

Kantara Initiative today announced that identity management products from CA Technologies, IBM Corporation, SAP AG, and UNINETT passed the Kantara Initiative SAML 2.0 Full-Matrix Interoperability testing.

Piscataway, NJ – May 10, 2011 – Kantara Initiative sponsored the test event for the purpose of testing the interoperability of implementations in accordance with the SAML 2.0 specifications. The event was conducted by the Drummond Group Inc. (DGI) with oversight from the Kantara Interoperability Review Board (IRB). The Web-based full-matrix testing allows vendors to participate from anywhere in the world and features rigorous processes for ensuring products meet SAML 2.0 interoperability requirements for open, secure and privacy-respecting federated identity management. The testing itself was conducted from January 10 to March 1, 2011.

“SAML 2.0 has proven to be critical to how cross-domain security is enabled both between enterprises and between enterprises and cloud service providers,” said Matthew Gardiner, director at CA Technologies and president of Kantara Initiative. “Organizations can count on the Kantara Initiative testing process to certify products that have proven to meet rigorous interoperability requirements. This certification process should serve as a key business enabler as more and more sensitive applications cross Web domains.”

This is the first SAML full-matrix interoperability test event sponsored by the Kantara Initiative, continuing the program it inherited from the Liberty Alliance. Full-matrix testing is the best means to verify product group interoperability as it verifies that every product can successfully interact and interoperate with the other products in the test group using the test criteria. This test marked the second time the SAML 2.0 eGovernment (eGov) Profile, Version 1.5, was included in the event. The eGov profile was produced as a result of a multi-government effort to create a SAML conformance profile for government-centric identity management.

“CA Technologies is especially pleased to receive the Kantara Initiative’s SAML 2.0 certification for CA Federation Manager. CA Technologies supports the important role that the SAML standard has in providing enhanced security for organizations as they take advantage of the rapidly growing market for Cloud services and other identity-centric services on the Internet.” said Ellen Newlands, CA Technologies Product Manager and Kantara Interoperability Review Board Co-Chair.

“The SAML 2.0 interoperability certification is beneficial for vendors to test and validate standards based implementation of federation capabilities and help support customer’s heterogeneous IT environment and business needs,” said Ravi Srinivasan, Program Director, IBM Security Solutions.

“Support of identity federation and SAML 2.0 are critical to many SAP customers”, states Michael Friedrich, Vice President for Security and Identity Management at SAP AG, “and it is a crucial step to execute on SAP’s strategy to offer on demand applications and allow for secure access and Single Sign-On between on premise and on demand offerings in heterogeneous landscapes. With the SAML support in SAP NetWeaver Application Server ABAP 7.02 and with that also in the highest SAP Business Suite 7i2010 release as well as with the latest version of SAP NetWeaver Identity Management, SAP has done a major step in enhancing its products to allow customers to implement standards-based, interoperable and cross domain Single Sign-On and reduce administrative effort and TCO.”

“For UNINETT, complying with open standards is very important, and we’ve been working for open standards on the Internet ever since we were founded,” says CEO Petter Kongshaug, UNINETT. “UNINETT operates the national identity infrastructure for education and research, and for our customers it’s reassuring to know that our common infrastructure is based upon state of the art software. The Kantara testing programme has been very useful to us.”

View the Test Results

View the Final Report

List of Participants:
CA Technologies
· Implementation: CA Federation Manager – http://www.ca.com/products/detail/CA-Federation-Manager.aspx
· Specific model/version: 12.5
· Profiles: IdP Lite, SP Lite, eGov 1.5

IBM Corporation
· Implementation: IBM Tivoli Federated Identity Manager – http://www-01.ibm.com/software/tivoli/products/federated-identity-mgr/
· Specific model/version: Version 6 Release 2
· Profiles: IDP, IDP Lite, SP, SP Lite, eGov 1.5, POST Binding

SAP AG
· Implementation: NetWeaver Application Server – http://www.sdn.sap.com/irj/sdn/nw-identitymanagement
· Specific model/version: ABAP 7.02
· Profiles: SP Lite, eGov 1.5

SAP AG
· Implementation: NetWeaver Identity Management – http://www.sdn.sap.com/irj/sdn/nw-identitymanagement
· Specific model/version: 7.2
· Profiles: IDP, IDP Lite, SP, SP Lite, eGov 1.5, POST Binding

UNINETT
· Implementation: SimpleSAMLphp – http://simplesamlphp.org/
· Specific model/version: Version 1.8
· Profiles: IDP Lite, SP Lite

About Kantara Initiative
http://kantarainitiative.org/

About Drummond Group Inc. (DGI)
http://www.drummondgroup.com/

###

Media Contact
Dervla O’Reilly
+1-415-731-4487
dervla[at]kantarainitiative[dot]org

Thanks to Kantara Initiative’s Japan WG and their leadership, the Kantara Initiative Symposium 2010 in Japan is being held September 1, 2010, 13:00-18:00.

The workshop covers identity trust inclinations, identity control bases applied to numerous global governments, etc. Kantara Initiative’s President, Matthew Gardiner will report on the latest industry activity and identity case studies.

Due to a high level of interest this event has just reached capacity. Agenda details and content:
http://kantarainitiative.org/confluence/display/WGJ/Kantara+Initiative+Symposium+2010. We will share details of the event after September 1.

FuGen Solutions joins Kantara Initiative’s annual identity workshop at the RSA Conference, March 1, 2010, 8am-5pm.  NTT, Ping Identity and the U.S. Government showcase demonstration pods alongside FuGen Solutions.  Join us for a series of presentations, panels & demonstrations of common Cloud/SaaS scenarios from diverse market leaders.

Register now for our free workshop using the code: 1310KANEXPO for the Expo only pass and select Kantara Initiative from the ‘Registration Package’ page. This pass only allows access to Kantara Initiative workshop on March 1. Read details about the Conference events March 1-5.

Title: Technology, Policy, and Compliance for Identity Services in 2010 & Beyond

What: Kantara Initiative’s RSA Security Pre-Conference Workshop

When: Monday, March 1, 2010, 8:00am-5:00pm, Room 301

Where: Moscone Center, San Francisco, CA, USA

2010 brings new opportunities for identity services in the enterprise & consumer markets. This workshop is designed to equip attendees with the vital information required to ensure success in employing the right identity management approach with the proper considerations. Recent developments in identity assurance, multi-protocol interoperability, liability models, usability, privacy-enablement and identity services certification will be spotlighted by key market leaders including Google, Oracle, CA, Aetna, NTT and Ping Identity.

Agenda:

Kantara Initiative holds it’s annual identity workshop at the RSA Conference, March 1, 2010, 8am-5pm.  Gain state-of-identity insight through a series of presentations, panels & demonstrations of common Cloud/SaaS scenarios from diverse market leaders.

Title: Technology, Policy, and Compliance for Identity Services in 2010 & Beyond

What: Kantara Initiative’s RSA Security Pre-Conference Workshop

When: Monday, March 1, 2010, 8:00am-5:00pm, Room 301

Where: Moscone Center, San Francisco, CA, USA

2010 brings new opportunities for identity services in the enterprise & consumer markets. This workshop is designed to equip attendees with the vital information required to ensure success in employing the right identity management approach with the proper considerations. Recent developments in identity assurance, multi-protocol interoperability, liability models, usability, privacy-enablement and identity services certification will be spotlighted by key market leaders including Google, Oracle, CA, Aetna, NTT and Ping Identity.

Registration for the event has reached capacity.  Access will be granted to those who pre-registered.  We encourage you to arrive on Monday, March 1 and if we have not reached full room capacity will be be happy to have you join us.

Agenda:

Eric Sachs, Product Manager Google Security & Chris Messina, Open Web Advocate will discuss the business value of federated login for consumer websites, Enterprise SaaS vendors, and Enterprises. Google joins CA, NTT, Oracle Corporation & Ping Identity for a series of presentations, panels & demonstrations of common Cloud/SaaS scenarios from diverse market leaders. Kantara’s annual workshop takes place March 1, 2010, 8am-5pm at the RSA Conference. View the full agenda online.

Register now for this free workshop.  Please use the code: 1310KANEXPO for the Expo only pass and select Kantara Initiative from the ‘Registration Package’ page.  This pass only allows access to Kantara Initiative workshop on March 1. Read details about the Conference events March 1-5.

Kantara Initiative continues it’s annual workshop at the RSA Conference, March 1, 2010, 8am-5pm.  The workshop titled Technology, Policy, and Compliance for Identity Services in 2010 & Beyond highlights deployers and providers.  Gain state-of-identity insight through a series of presentations, panels & demonstrations of common Cloud/SaaS scenarios from diverse market leaders (CA, NTT, Ping Identity, Oracle Corporation to name a few).   Matthew Gardiner, Director of Product Marketing, CA & Chris Sharp, Director of Application Development, MEDecision will discuss CA’s Identity as Security Glue for the Cloud in the morning portion of the workshop.

Register now for our free workshop.  Please use the code: 1310KANEXPO for the Expo only pass and select Kantara Initiative from the ‘Registration Package’ page.  This pass only allows access to Kantara Initiative workshop on March 1. Read details about the Conference events March 1-5.

The Kantara Initiative yesterday announced the formation of the Identity Assurance Review Board (ARB).  This is a tangible example of the Kantara Initiative delivering on the non-technology related, identity meta-issues that I alluded to in my last Kantara Initiative blog.  

I think in a few years we will look back to this and see it as a key step toward making the Internet a more useful and safe place for conducting commerce.  And when I say commerce I don’t mean just buying and selling stuff on the Internet. I mean using the Internet to provide the underlying wiring for cross-organizational ecosystems – supply chains, distribution partnerships, outsourcing – all needing to operate in real-time and without organizational boundaries getting in the way. 

That is a place where I believe tremendous economic value is currently trapped – between organizations.  I believe this inter-organizational friction holds back billions of dollars in potential value.  Organizations certainly do interoperate today using the Internet as the communication network, but it is currently way too hard, expensive, and slow to make this happen for large value release.  The force of friction won’t let this ball really start rolling.

Why is this type of commerce hard?  In part it is due to the existence of non-standard technologies and APIs on both sides which are tricky to integrate.  But this issue is fading with standards and APIs which often leverage XML.  So in many ways the technology hurdles for interoperation on the Internet have been addressed. 

What hasn’t been sufficiently addressed is trust and the establishment of trust.  If you are with an organization that would like to interoperate in real-time with your 100 distribution partners, a key problem is how you establish and enforce trust across this particular ecosystem?  And it needs set it up in days, not years. 

Today we don’t even have a common way of communicating certain facts which can lead to the establishment of trust, let alone the fast establishment of trust itself.  If we solve this in a widely deployable way, the tremendous economic value I mentioned can be released.  More grease will be applied to this friction problem through the establishment of the ARB.

Check out Matthew’s blog at  http://tinyurl.com/ner8cf