Events for all Levels and InterestsStay
Jump Start Your Career GrowthStay
Get on the Higher Ed IT MapStay
Uncommon Thinking for the Common Good™Stay
Filter by type
- Articles, Briefs, Papers, and Reports [x]
Filter by Publications
Filter by Library Taxonomy
Identity management refers to the policies, processes, and technologies that establish user identities and enforce rules about access to digital resources. In a campus setting, many information systems–such as e-mail, learning management systems, library databases, and grid computing applications–require users to authenticate themselves (typically with a username and password). An authorization process then determines which systems an authenticated user is permitted to access. With an enterprise identity management system, rather than having separate credentials for each system, a user can employ a single digital identity to access all resources to which the user is entitled. Federated identity management permits extending this approach above the enterprise level, creating a trusted authority for digital identities across multiple organizations. In a federated system, participating institutions share identity attributes based on agreed-upon standards, facilitating authentication from other members of the federation and granting appropriate access to online resources. This approach streamlines access to digital assets while protecting restricted resources. [Source: 7 Things You Should Know About Federated Identity Management]
- Toolkit for Developing an Identity and Access Management (IAM) Program, The IAM Program Outline has been created as a roadmap for institutions to use in developing an IAM program or to address gaps in their current offerings.
- 2011 ECAR Identity Management in Higher Education Report
- EDUCAUSE/InCommon Partnership: EDUCAUSE has partnered with the InCommon Federation to provide members who use our web resources, the benefits and ease of Federated Identity Management access.
- Identity & Access Management (IAM) Discussion Group: EDUCAUSE operates an open mailing list for general discussion of Identity and Access Management (IAM) topics and maintains a website with additional resources and links.
- IAM Tools & Effective Practices Wiki: This wiki provides a set of resources for IAM Architects to use in implementing a cohesive program on their respective campuses.
- IAM Online: IAM Online is a monthly series delivering interactive education on Identity and Access Management (IAM), including federated identity management essentials, advanced issues in IAM, and hot topics from the EDUCAUSE community. Experts will provide overviews, answer questions and lead discussions.
- InCommon: The InCommon Federation eliminates the need for researchers, students, and educators to maintain multiple passwords and usernames. Online service providers no longer need to maintain user accounts. Identity providers manage the levels of their users' privacy and information exchange. InCommon also offers a Certificate Service for the higher education community. InCommon also offers a Certificate Service for the higher education community, as well as a number of training and education programs such as CAMP.
- The Information Security Guide, maintained by the Higher Education Information Security Council (HEISC), includes a chapter on Access Control.
- National Strategy for Trusted Identities in Cyberspace (NSTIC): Resources include a July 2011 response to the Department of Commerce Notice of Inquiry for Models for a Governance Structure for NSTIC (prepared by EDUCAUSE, Internet2, and InCommon).
- Shibboleth®: The Shibboleth System is a standards based, open source software package for web single sign-on across or within organizational boundaries. It allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner.
- US Trust Federations: This community collaboration group is exploring the building of federations within and across state boundaries. Invited participants include StateNets and Higher Education Systems staff. This effort is supported by and .
Library Items on this Topic
EDUCAUSE Library Items for Identity and Access Management
- Catch a clue from an EDU: Universities that get security right
May 20, 2011
In these days of consumer gadgets and mobile access, corporations can learn a lot from how universities deploy multiple layers of security. In th…
- Domain 12: Guidance for Identity & Access Management V2.1
October 5, 2010
This publication discusses the following major IAM functions that are essential for successful and effective management of identities in the cloud: Identity provisioning/deprovisioning …
- Final Report of the 2007 Cybersecurity Summit
November 30, 2007
This is the final report for the 2007 NSF Cybersecurity Summit, held February 22 & 23rd, 2007, in Arlington, VA. This is the final report fo…
- What Higher Ed Leaders Need to Know about IdM
August 29, 2007
© 2007 Brian L. Hawkins. The text of this article is licensed under the Creative Commons Attribution-NonCommercial-NoDerivs 3.0 License ( http://creativecommons.org/licenses/by-nc-nd/3.0/…
- Unauthenticated Authentication: Null Bytes and the Affect on Web-based
January 1, 2006
This paper describes a vulnerability that may affect web-based applications that insecurely implement LDAP simple binds for the authentication of users. Web-based applications that fail to properly…
- A Report on the Identity Management Summit
January 1, 2006
As part of the EDUCAUSE 2006 Program Plan, EDUCAUSE is holding several summits on topics of importance to higher education designed to bring together thought leaders and experts in the community …
- Most Improved: How Four Institutions Developed Successful IT Security Programs
November 3, 2006
Researchers conducted this in-depth case study to complement the ECAR study, Safeguarding the Tower: IT Security in Higher Education 2006. The case study examines how four higher education instit…
- Safeguarding the Tower: IT Security in Higher Education 2006 – Key Findings
October 12, 2006
This document presents the key findings of the ECAR study, Safeguarding the Tower: IT Security in Higher Education 2006. When ECAR studied IT security in 2003, we discovered that despite efforts …
- Safeguarding the Tower: IT Security in Higher Education 2006 Roadmap
October 12, 2006
This roadmap synthesizes the important issues and recommended actions drawn from the ECAR study, Safeguarding the Tower: IT Security in Higher Education 2006. When ECAR studied IT security in 200…
- Safeguarding the Tower: IT Security in Higher Education 2006
October 12, 2006
Abstract When ECAR studied IT security in 2003, we discovered that despite efforts to develop a secure IT infrastructure in higher education, uneven management awareness and a culture that e…