Science Collaboration Zone (SCZ)Many research services are so specific that relatively few people per institution use them. Enabling safe access is a lot of (specialized) work for institutions. SURF's Science Collaboration Zone (SCZ) project is intended to solve this problem: many research specific services are already linked to this environment.
Why: helping researchers to log in securely
Researchers often experience problems logging in to research services. In order to make logging in safe, easy and efficient, SURF is conducting pilots with approximately 10 institutions with an authorisation and authentication service optimised for researchers: the Science Collaboration Zone (SCZ). The SCZ tries to solve a number of specific challenges faced by researchers:
- How do you arrange access to non-web resources (such as SSH) based on an institution account?
- How can 'guests' from other institutions, companies or outside the Netherlands make use of research services?
- How is group management arranged?
- How do we deal with specific research attributes?
- How do you arrange consent and logging of access so that you comply with the GDPR?
- How can institutions limit the administrative workload resulting from having to create guest accounts, 0-hour contracts, etc.?
What: a pilot environment for federated login to research services
Based on the questions above, SURF has developed a pilot environment that allows researchers to log in federative, i.e. with their institutional account. The environment is a proxy and offers opportunities to link web-based services, but also services that are normally not accessible via a webbrowser, like service you access via SSH. The latter services are particularly important for researchers. These services were linked to SCZ in the pilot project.
The SCZ uses various techniques, such as LDAP, COmanage and SAML. More detailed information about this can be found on the wiki of the Science Collaboration Zone .
Current status: pilot until the end of 2018
A pilot project with various parties will run until the end of 2018, in which different scenarios will be investigated and the technology will be optimized. At the end of 2018 it will be decided whether the pilot will be further developed into a production service.
Read on and more information
Trust & Identity Infrastructure: GroupsResearchers and students from different research universities often work together. Institutions need to be able to manage different groups and their members well. We work on projects that make group management easier and more efficient.Read more
Trust & Identity Infrastructure: Guest UseUsers use SURFconext to log into services with their own institution details. Sometimes institutions also want to give third parties access to a service. This topic researches how this can be done.Read more
Trust & Identity Infrastructure: AuthorisationWhat can a person do within a service; what rights does a user have? Can I invite people from other institutions to my group and what if I want to make my service more secure? This topic explores secure and smart authorisation solutions.Read more
Trust & Identity Infrastructure: Student MobilityMore and more students are taking courses at another institution or studying abroad for a while. To ensure that they have access to the services and systems they need there, we are researching identities that are not institution-related, such as an eID or an account issued by the education sector.Read more
Trust & Identity Infrastructure: Non-webSURFconext works well for browser-based services. We want the services that do not involve a web browser to also benefit from federated authentication. We develop standards, we adapt software and we help developers with their programming code to that effect.Read more
Trust & Identity Infrastructure: ResearchResearchers are increasingly collaborating online and sharing services with each other, yet this does not often take place in a standard way. Within the Research category, we look at how we can help researchers in this respect, for example by devising a generic infrastructure and promoting the use of uniform IAA methods.Read more