Projects

OpenSSO

The Open Web SSO project provides core identity services to simplify the implementation of transparent single sign-on as a security component in a network infrastructure. It provides the foundation for integrating diverse web applications that might typically operate against a disparate set of ... [More] identity repositories and are hosted on a variety of platforms such as web and application servers. [Less]

Enterprise Sign On Engine

The Enterprise Sign On Engine (ESOE) is an advanced system which allows an enterprise to meet it's individual goals for integrated identity management, single sign on, authorization, federation and accountability for resource access in a very extensible manner. The ESOE is built using the ... [More] OASIS SAML 2.0 specification, and the ESOE's powerful authorization engine is built around a reduced version of the OASIS XACML 2.0 standard which we have called Lightweight eXtensible Authorization Control Markup Language or "LXACML". The ESOE can integrate identity from unlimited repositories, automatically create sessions for users whom are logged into Active Directory (true single sign on), provide for centralized authorization policy management and natively federate with technologies such as Shibbo [Less]

ShARPE

ShARPE is developed as part of the collaboration between MAMS and Shibboleth. ShARPE's aim is to manage the creation and maintenance of user's attributes as defined by Attribute Release Policy (ARP) mechanism of Shibboleth. In particular, ShARPE allows admins and users to easily manage ... [More] their release attribute policy in a way that conforms to their privacy and satisfaction of users in gaining the services that they want (on service provider end) To do the crosswalk between different directory schemas mappings have to be defined. This can be achieved using the Crosswalker. ShARPE is also an extension of Shibboleth providing other functionalities that are not existence in current Shibboleth as well as improving current practices in Shibboleth [Less]

Autograph

Autograph makes privacy in a Shibboleth® federation transparent and manageable. It allows members of an Identity Provider (e.g. students of a university) to configure their own Attribute Release Policy, or, in Autograph terms, their own idCards. Utilizing Autograph Shibboleth obeys the first two ... [More] of Kim Cameron's "Laws of Identity": It reveals personal information only with the user's consent and it discloses only the information which is needed. [Less]